build(deps): bump the gomod group with 5 updates #240

dependabot · 2024-04-05T13:25:11Z

Bumps the gomod group with 5 updates:

Package	From	To
github.com/go-git/go-git/v5	`5.9.0`	`5.12.0`
github.com/go-logr/logr	`1.2.4`	`1.4.1`
github.com/rs/zerolog	`1.30.0`	`1.32.0`
github.com/stretchr/testify	`1.8.4`	`1.9.0`
golang.org/x/mod	`0.13.0`	`0.17.0`

Updates github.com/go-git/go-git/v5 from 5.9.0 to 5.12.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.12.0

What's Changed

git: Worktree.AddWithOptions: add skipStatus option when providing a specific path by @moranCohen26 in go-git/go-git#994

git: Signer: fix usage of crypto.Signer interface by @wlynch in go-git/go-git#1029

git: Remote, fetch, adds the prune option. by @juliens in go-git/go-git#366

git: Add crypto.Signer option to CommitOptions. by @wlynch in go-git/go-git#996

git: Worktree checkout tag hash id (#959) by @aymanbagabas in go-git/go-git#966

git: Worktree, Don't panic on empty or root path when checking if it is valid by @tim775 in go-git/go-git#1042

git: Add commit validation for Reset by @pjbgf in go-git/go-git#1048

git: worktree_commit, Fix amend commit to apply changes. Fixes #1024 by @onee-only in go-git/go-git#1045

git: Implement Merge function with initial FastForwardMerge support by @pjbgf in go-git/go-git#1044

plumbing: object, Make first commit visible on logs filtered with filename. Fixes #191 by @onee-only in go-git/go-git#1036

plumbing: no panic in printStats function. Fixes #177 by @nodivbyzero in go-git/go-git#971

plumbing: object, Optimize logging with file. by @onee-only in go-git/go-git#1046

plumbing: object, check legitimacy in (*Tree).Encode by @niukuo in go-git/go-git#967

plumbing: format/gitattributes, close file in ReadAttributesFile by @prskr in go-git/go-git#1018

plumbing: check setAuth error. Fixes #185 by @nodivbyzero in go-git/go-git#969

plumbing: object, fix variable defaultUtf8CommitMessageEncoding name spell error by @Jerry-yz in go-git/go-git#987

utils: merkletrie, calculate filesystem node's hash lazily. by @candid82 in go-git/go-git#825

utils: update comment in node.go's Hash() by @codablock in go-git/go-git#992

_example: fix 404 link and added ssh-agent clone link by @grinish21 in go-git/go-git#1022

_example: checkout-branch example by @dlambda in go-git/go-git#446

_example: example for git clone using ssh-agent by @pjbgf in go-git/go-git#998

New Contributors

@candid82 made their first contribution in go-git/go-git#825

@codablock made their first contribution in go-git/go-git#992

@Jerry-yz made their first contribution in go-git/go-git#987

@wlynch made their first contribution in go-git/go-git#996

@moranCohen26 made their first contribution in go-git/go-git#994

@grinish21 made their first contribution in go-git/go-git#1022

@prskr made their first contribution in go-git/go-git#1018

@dlambda made their first contribution in go-git/go-git#446

@juliens made their first contribution in go-git/go-git#366

@onee-only made their first contribution in go-git/go-git#1036

@tim775 made their first contribution in go-git/go-git#1042

@niukuo made their first contribution in go-git/go-git#967

@avoidalone made their first contribution in go-git/go-git#1047

Full Changelog: go-git/go-git@v5.11.0...v5.12.0

v5.11.0

What's Changed

git: validate reference names (#929) by @aymanbagabas in go-git/go-git#950

git: stop iterating at oldest shallow when pulling. Fixes #305 by @dhoizner in go-git/go-git#939

plumbing: object, enable renames in getFileStatsFromFilePatches by @djmoch in go-git/go-git#941

storage: filesystem, Add option to set a specific FS for alternates by @pjbgf in go-git/go-git#953

Align worktree validation with upstream and remove build warnings by @pjbgf in go-git/go-git#958

... (truncated)

Commits

302ddde Merge pull request #1060 from go-git/dependabot/go_modules/github.com/gliderl...
6bba34d build: bump github.com/gliderlabs/ssh from 0.3.6 to 0.3.7
feaeb36 Merge pull request #937 from matejrisek/feature/rename-short-fields
7959a42 Merge pull request #1052 from go-git/dependabot/go_modules/github.com/skeema/...
4c17ce7 build: bump github.com/skeema/knownhosts from 1.2.1 to 1.2.2
3f77e6f Merge pull request #1048 from pjbgf/fix-reset-validation
6af38e0 Merge pull request #1047 from avoidalone/master
e6c3e58 Merge pull request #1044 from pjbgf/ff-merge
04f7b23 *: fix some comments
f4f1a87 Merge pull request #971 from nodivbyzero/fix-177-diff-print-file-stats
Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.2.4 to 1.4.1

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.1

What's Changed

slogr: fix unintended API break in v1.4.0 by @pohly in go-logr/logr#253

Full Changelog: go-logr/logr@v1.4.0...v1.4.1

v1.4.0

This release dramatically improves interoperability with Go's log/slog package. In particular, logr.NewContext and logr.NewContextWithSlogLogger use the same context key, which allows logr.FromContext and logr.FromContextAsSlogLogger to return logr.Logger or *slog.Logger respectively, including transparently converting each to the other as needed.

Functions logr/slogr.NewLogr and logr/slogr.ToSlogHandler have been superceded by logr.FromSlogHandler and logr.ToSlogHandler respectively, and type logr/slogr.SlogSink has been superceded by logr.SlogSink. All of the old names in logr/slogr remain, for compatibility.

Package logr/funcr now supports logr.SlogSink, meaning that it's output passes all but one of the Slog conformance tests (that exception being that funcr handles the timestamp itself).

Users who have a logr.Logger and need a *slog.Logger can call slog.New(logr.ToSlogHandler(...)) and all output will go through the same stack.

Users who have a *slog.Logger or slog.Handler can call logr.FromSlogHandler(...) and all output will go through the same stack.

What's Changed

slog context support by @pohly in go-logr/logr#237

slog support: fix WithGroup + WithValues combination by @pohly in go-logr/logr#243

Add tests for context with slog by @thockin in go-logr/logr#246

sloghandler: unnamed groups should be inlined by @thockin in go-logr/logr#245

Add SlogSink support to funcr by @thockin in go-logr/logr#241

funcr: Add LogInfoLevel Option to skip logging level in the info log by @spacewander in go-logr/logr#240

New Contributors

@spacewander made their first contribution in go-logr/logr#240

Full Changelog: go-logr/logr@v1.3.0...v1.4.0

v1.3.0

This release adds support for slog in a new, self-contained logr/slogr package. Implementers of a logr.LogSink are encouraged, but not required, to extend their implementation to improve the quality of log output coming from a slog API call.

Breaking change: the call depth for LogSink.Enabled when called via Logger.Enabled was fixed to be the same as for other call paths. Implementers of a LogSink who have worked around this bug will need to remove their workarounds.

Security best practices were improved. Only Go versions >= 1.18 are supported by this release.

What's Changed

Fix golangci-lint fails by @thockin in go-logr/logr#173

Add minimal permissions to workflows by @pnacht in go-logr/logr#177

Add a security policy by @pnacht in go-logr/logr#178

Update security email by @thockin in go-logr/logr#181

docs: explain relationship between Logger{} and Discard() by @pohly in go-logr/logr#182

Add the OpenSSF Scorecard workflow by @pnacht in go-logr/logr#186

README: show of OpenSSF Scorecard badge by @pohly in go-logr/logr#187

Hash-pin workflow Actions by @pnacht in go-logr/logr#189

Bump go versions to 1.18+ by @thockin in go-logr/logr#203

slogr: add glue code for logging to slog.Handler and with slog.Logger by @pohly in go-logr/logr#205

slogr: restore original backend when converting back and forth by @pohly in go-logr/logr#210

slogr: add SlogSink by @pohly in go-logr/logr#211

... (truncated)

Commits

dcdc3f2 slogr: fix unintended API break in v0.8.0 (#253)
5d88f52 funcr: Add LogInfoLevel Option to skip logging level in the info log (#240)
177005d build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0
e7f489a build(deps): bump github/codeql-action from 2.22.9 to 3.22.11
cf56c3b build(deps): bump actions/setup-go from 4 to 5
2ad296e build(deps): bump github/codeql-action from 2.22.8 to 2.22.9
d55b4e2 Merge pull request #241 from thockin/master
98ee9d9 Clean up slog testing and restore coverage
b228ba8 Break examples to new file
6432877 Add benchmarks for slogSink
Additional commits viewable in compare view

Updates github.com/rs/zerolog from 1.30.0 to 1.32.0

Commits

147ae65 Fix prettylog piping (#644)
4d78dc5 Add forwarding close methods to several writer implementations (#636)
c1ab4ed Make Log.Fatal() call Close on the writer before os.Exit(1) (#634)
417580d add: ContextLogger Interface LogObjectMarshaler (#623)
602e90a Fixed failing tests (#626)
a9ec232 Add stacktrace to Context (#630)
3e8ae07 Refactor: change Hook(h Hook) to Hook(hooks ...Hook) (#629)
7fa45a4 fixed documentation for tracing hook (#621)
93fb5cb Add TriggerLevelWriter. (#602)
83e03c7 stop using deprecated io/ioutils package (#620) (#620)
Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.8.4 to 1.9.0

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.9.0

What's Changed

Fix Go modules version by @SuperQ in stretchr/testify#1394

Document that require is not safe to call in created goroutines by @programmer04 in stretchr/testify#1392

Remove myself from MAINTAINERS.md by @mvdkleijn in stretchr/testify#1367

Correct spelling/grammar by @echarrod in stretchr/testify#1389

docs: Update URLs in README by @davidjb in stretchr/testify#1349

Update mockery link to Github Pages in README by @LandonTClipp in stretchr/testify#1346

docs: Fix typos in tests and comments by @alexandear in stretchr/testify#1410

CI: tests from go1.17 by @SuperQ in stretchr/testify#1409

Fix adding ? when no values passed by @lesichkovm in stretchr/testify#1320

codegen: use standard header for generated files by @dolmen in stretchr/testify#1406

mock: AssertExpectations log reason only on failure by @hikyaru-suzuki in stretchr/testify#1360

assert: fix flaky TestNeverTrue by @dolmen in stretchr/testify#1417

README: fix typos "set up" vs "setup" by @ossan-dev in stretchr/testify#1428

mock: move regexp compilation outside of Called by @aud10slave in stretchr/testify#631

assert: refactor internal func getLen() by @dolmen in stretchr/testify#1445

mock: deprecate type AnythingOfTypeArgument (#1434) by @dolmen in stretchr/testify#1441

Remove no longer needed assert.canConvert by @alexandear in stretchr/testify#1470

assert: ObjectsAreEqual: use time.Equal for time.Time types by @tscales in stretchr/testify#1464

Bump actions/checkout from 3 to 4 by @dependabot in stretchr/testify#1466

Bump actions/setup-go from 3.2.0 to 4.1.0 by @dependabot in stretchr/testify#1451

fix: make EventuallyWithT concurrency safe by @czeslavo in stretchr/testify#1395

assert: fix httpCode and HTTPBody occur panic when http.Handler read Body by @hidu in stretchr/testify#1484

assert.EqualExportedValues: fix handling of arrays by @zrbecker in stretchr/testify#1473

.github: use latest Go versions by @kevinburkesegment in stretchr/testify#1489

assert: Deprecate EqualExportedValues by @HaraldNordgren in stretchr/testify#1488

suite: refactor test assertions by @alexandear in stretchr/testify#1474

suite: fix SetupSubTest and TearDownSubTest execution order by @linusbarth in stretchr/testify#1471

docs: Fix deprecation comments for http package by @alexandear in stretchr/testify#1335

Add map support doc comments to Subset and NotSubset by @jedevc in stretchr/testify#1306

TestErrorIs/TestNotErrorIs: check error message contents by @craig65535 in stretchr/testify#1435

suite: fix subtest names (fix #1501) by @dolmen in stretchr/testify#1504

assert: improve unsafe.Pointer tests by @dolmen in stretchr/testify#1505

assert: simplify isNil implementation by @dolmen in stretchr/testify#1506

assert.InEpsilonSlice: fix expected/actual order and other improvements by @dolmen in stretchr/testify#1483

Fix dependency cycle with objx #1292 by @dolmen in stretchr/testify#1453

mock: refactor TestIsArgsEqual by @dolmen in stretchr/testify#1444

mock: optimize argument matching checks by @dolmen in stretchr/testify#1416

assert: fix TestEventuallyTimeout by @dolmen in stretchr/testify#1412

CI: add go 1.21 in GitHub Actions by @dolmen in stretchr/testify#1450

suite: fix recoverAndFailOnPanic to report test failure at the right location by @dolmen in stretchr/testify#1502

Update maintainers by @brackendawson in stretchr/testify#1533

assert: Fix EqualValues to handle overflow/underflow by @arjunmahishi in stretchr/testify#1531

assert: better formatting for Len() error by @kevinburkesegment in stretchr/testify#1485

Ensure AssertExpectations does not fail in skipped tests by @ianrose14 in stretchr/testify#1331

suite: fix deadlock in suite.Require()/Assert() by @arjunmahishi in stretchr/testify#1535

Revert "assert: ObjectsAreEqual: use time.Equal for time.Time type" by @brackendawson in stretchr/testify#1537

[chore] Add issue templates by @arjunmahishi in stretchr/testify#1538

Update the build status badge by @brackendawson in stretchr/testify#1540

... (truncated)

Commits

bb548d0 Merge pull request #1552 from stretchr/dependabot/go_modules/github.com/stret...
814075f build(deps): bump github.com/stretchr/objx from 0.5.1 to 0.5.2
e045612 Merge pull request #1339 from bogdandrutu/uintptr
5b6926d Merge pull request #1385 from hslatman/not-implements
9f97d67 Merge pull request #1550 from stretchr/release-notes
bcb0d3f Include the auto-release notes in releases
fb770f8 Merge pull request #1247 from ccoVeille/typos
85d8bb6 fix typos in comments, tests and github templates
e2741fa Merge pull request #1548 from arjunmahishi/msgAndArgs
6e59f20 http_assertions: assert that the msgAndArgs actually works in tests
Additional commits viewable in compare view

Updates golang.org/x/mod from 0.13.0 to 0.17.0

Commits

aa51b25 modfile: do not collapse if there are unattached comments within blocks
87140ec sumdb/tlog: make NewTiles only generate strictly necessary tiles
18d3f56 modfile: fix crash on AddGoStmt in empty File
766dc5d modfile: use new go version string format in WorkFile.add error
fa1ba42 sumdb: replace globsMatchPath with module.MatchPrefixPatterns
6e58e47 modfile: improve directory path detection and error text consistency
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the gomod group with 5 updates: | Package | From | To | | --- | --- | --- | | [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.9.0` | `5.12.0` | | [github.com/go-logr/logr](https://github.com/go-logr/logr) | `1.2.4` | `1.4.1` | | [github.com/rs/zerolog](https://github.com/rs/zerolog) | `1.30.0` | `1.32.0` | | [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.8.4` | `1.9.0` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.13.0` | `0.17.0` | Updates `github.com/go-git/go-git/v5` from 5.9.0 to 5.12.0 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.9.0...v5.12.0) Updates `github.com/go-logr/logr` from 1.2.4 to 1.4.1 - [Release notes](https://github.com/go-logr/logr/releases) - [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md) - [Commits](go-logr/logr@v1.2.4...v1.4.1) Updates `github.com/rs/zerolog` from 1.30.0 to 1.32.0 - [Commits](rs/zerolog@v1.30.0...v1.32.0) Updates `github.com/stretchr/testify` from 1.8.4 to 1.9.0 - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.8.4...v1.9.0) Updates `golang.org/x/mod` from 0.13.0 to 0.17.0 - [Commits](golang/mod@v0.13.0...v0.17.0) --- updated-dependencies: - dependency-name: github.com/go-git/go-git/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: github.com/go-logr/logr dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: github.com/rs/zerolog dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: golang.org/x/mod dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-05-22T13:15:26Z

Superseded by #250.

dependabot bot requested a review from wfscheper as a code owner April 5, 2024 13:25

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 5, 2024

dependabot bot mentioned this pull request Apr 5, 2024

build(deps): bump the gomod group with 5 updates #239

Closed

dependabot bot closed this May 22, 2024

dependabot bot deleted the dependabot/go_modules/gomod-fc90cbec09 branch May 22, 2024 13:15

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the gomod group with 5 updates #240

build(deps): bump the gomod group with 5 updates #240

dependabot bot commented on behalf of github Apr 5, 2024 •

edited

Loading

dependabot bot commented on behalf of github May 22, 2024

build(deps): bump the gomod group with 5 updates #240

build(deps): bump the gomod group with 5 updates #240

Conversation

dependabot bot commented on behalf of github Apr 5, 2024 • edited Loading

v5.12.0

What's Changed

New Contributors

v5.11.0

What's Changed

v1.4.1

What's Changed

v1.4.0

What's Changed

New Contributors

v1.3.0

What's Changed

v1.9.0

What's Changed

dependabot bot commented on behalf of github May 22, 2024

dependabot bot commented on behalf of github Apr 5, 2024 •

edited

Loading