dependabot[bot]
d0610feb9b
🌱 Bump github.com/spf13/cobra from 1.7.0 to 1.8.0 ( #3644 )
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.7.0 to 1.8.0.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.7.0...v1.8.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-06 11:31:50 -05:00
dependabot[bot]
b0c782a187
🌱 Bump cloud.google.com/go/bigquery from 1.56.0 to 1.57.1 ( #3638 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.56.0 to 1.57.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.56.0...bigquery/v1.57.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-02 10:16:13 -07:00
dependabot[bot]
3cce5ad6c2
🌱 Bump github.com/onsi/gomega from 1.28.1 to 1.29.0 ( #3624 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.28.1 to 1.29.0.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.28.1...v1.29.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-01 13:25:11 -07:00
dependabot[bot]
1b2c4cfc97
🌱 Bump github.com/go-git/go-git/v5 from 5.9.0 to 5.10.0 ( #3623 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.9.0 to 5.10.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.9.0...v5.10.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-01 20:10:52 +00:00
dependabot[bot]
dac01dbdbb
🌱 Bump github.com/go-logr/logr from 1.2.4 to 1.3.0 ( #3622 )
...
Bumps [github.com/go-logr/logr](https://github.com/go-logr/logr ) from 1.2.4 to 1.3.0.
- [Release notes](https://github.com/go-logr/logr/releases )
- [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-logr/logr/compare/v1.2.4...v1.3.0 )
---
updated-dependencies:
- dependency-name: github.com/go-logr/logr
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-01 18:56:41 +00:00
dependabot[bot]
45c5c6501c
🌱 Bump github.com/docker/docker ( #3627 )
...
Bumps [github.com/docker/docker](https://github.com/docker/docker ) from 24.0.4+incompatible to 24.0.7+incompatible.
- [Release notes](https://github.com/docker/docker/releases )
- [Commits](https://github.com/docker/docker/compare/v24.0.4...v24.0.7 )
---
updated-dependencies:
- dependency-name: github.com/docker/docker
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-01 17:18:57 +00:00
dependabot[bot]
ab7d3645a2
🌱 Bump github.com/moby/buildkit from 0.12.2 to 0.12.3 ( #3589 )
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.12.2 to 0.12.3.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.12.2...v0.12.3 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-28 00:15:16 +00:00
dependabot[bot]
f72b774d31
🌱 Bump github.com/google/osv-scanner from 1.4.1 to 1.4.2 ( #3608 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.4.1 to 1.4.2.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.4.1...v1.4.2 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-27 23:59:46 +00:00
dependabot[bot]
a3495dd6df
🌱 Bump google.golang.org/grpc from 1.57.0 to 1.57.1 ( #3611 )
...
Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go ) from 1.57.0 to 1.57.1.
- [Release notes](https://github.com/grpc/grpc-go/releases )
- [Commits](https://github.com/grpc/grpc-go/compare/v1.57.0...v1.57.1 )
---
updated-dependencies:
- dependency-name: google.golang.org/grpc
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-27 22:36:17 +00:00
dependabot[bot]
6fb5f8a56e
🌱 Bump github.com/onsi/gomega from 1.28.0 to 1.28.1 ( #3597 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.28.0 to 1.28.1.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.28.0...v1.28.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23 15:17:53 -07:00
dependabot[bot]
8959d3f08a
🌱 Bump github.com/xanzy/go-gitlab from 0.93.1 to 0.93.2 ( #3593 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.93.1 to 0.93.2.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/main/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.93.1...v0.93.2 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-23 14:46:56 -07:00
dependabot[bot]
836c040177
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2 ( #3575 )
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.7.0 to 2.8.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.7.0...v2.8.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-19 20:27:09 +00:00
dependabot[bot]
e5955d0889
🌱 Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 ( #3557 )
...
Bumps [github.com/google/go-cmp](https://github.com/google/go-cmp ) from 0.5.9 to 0.6.0.
- [Release notes](https://github.com/google/go-cmp/releases )
- [Commits](https://github.com/google/go-cmp/compare/v0.5.9...v0.6.0 )
---
updated-dependencies:
- dependency-name: github.com/google/go-cmp
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-12 06:07:11 +00:00
dependabot[bot]
3b63938f8b
🌱 Bump github.com/onsi/ginkgo/v2 from 2.12.1 to 2.13.0 ( #3551 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.12.1 to 2.13.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.12.1...v2.13.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-11 21:26:56 -07:00
dependabot[bot]
bada6585d9
🌱 Bump golang.org/x/net from 0.16.0 to 0.17.0 ( #3563 )
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/net/compare/v0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-11 19:17:18 -07:00
dependabot[bot]
74c57cd1bc
🌱 Bump cloud.google.com/go/bigquery from 1.55.0 to 1.56.0 ( #3538 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.55.0 to 1.56.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.55.0...bigquery/v1.56.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09 19:24:55 +00:00
dependabot[bot]
c2cf090276
🌱 Bump github.com/xanzy/go-gitlab from 0.93.0 to 0.93.1 ( #3546 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.93.0 to 0.93.1.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.93.0...v0.93.1 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09 11:10:34 -07:00
dependabot[bot]
9619d4eddf
🌱 Bump golang.org/x/oauth2 from 0.12.0 to 0.13.0 ( #3545 )
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.12.0 to 0.13.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.12.0...v0.13.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09 10:45:46 -07:00
dependabot[bot]
64c491baf1
🌱 Bump github.com/xanzy/go-gitlab from 0.92.3 to 0.93.0 ( #3537 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.92.3 to 0.93.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.92.3...v0.93.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-05 11:03:45 -07:00
dependabot[bot]
5e05661ec5
🌱 Bump github.com/google/osv-scanner from 1.4.0 to 1.4.1 ( #3536 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.4.0 to 1.4.1.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.4.0...v1.4.1 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-05 09:50:11 -07:00
dependabot[bot]
71078d82b9
🌱 Bump github.com/otiai10/copy from 1.12.0 to 1.14.0 ( #3527 )
...
Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy ) from 1.12.0 to 1.14.0.
- [Release notes](https://github.com/otiai10/copy/releases )
- [Commits](https://github.com/otiai10/copy/compare/v1.12.0...v1.14.0 )
---
updated-dependencies:
- dependency-name: github.com/otiai10/copy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-04 09:16:59 -07:00
dependabot[bot]
3c275977cc
🌱 Bump github.com/xanzy/go-gitlab from 0.92.1 to 0.92.3 ( #3528 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.92.1 to 0.92.3.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.92.1...v0.92.3 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-04 02:01:49 +00:00
dependabot[bot]
86aed2c625
🌱 Bump github.com/onsi/gomega from 1.27.10 to 1.28.0 ( #3523 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.27.10 to 1.28.0.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.27.10...v1.28.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-03 11:42:58 -07:00
Spencer Schrock
c061367a8b
🌱 Bump github.com/rhysd/actionlint from 1.6.15 to 1.6.26 ( #3489 )
...
* bump actionlint.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* fix unit tests.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* include latest update.
Signed-off-by: Spencer Schrock <sschrock@google.com>
---------
Signed-off-by: Spencer Schrock <sschrock@google.com>
2023-10-02 14:21:40 -07:00
dependabot[bot]
703430609b
🌱 Bump github.com/xanzy/go-gitlab from 0.91.1 to 0.92.1 ( #3517 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.91.1 to 0.92.1.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.91.1...v0.92.1 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-26 10:12:07 -04:00
dependabot[bot]
7a94273ba1
🌱 Bump github.com/onsi/ginkgo/v2 from 2.12.0 to 2.12.1 ( #3496 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.12.0 to 2.12.1.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.12.0...v2.12.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-25 21:33:43 +00:00
dependabot[bot]
fdac84ae3d
🌱 Bump github.com/google/osv-scanner from 1.3.6 to 1.4.0 ( #3481 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.6 to 1.4.0.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.3.6...v1.4.0 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18 18:39:16 -07:00
dependabot[bot]
59da3b3ffd
🌱 Bump github.com/go-git/go-git/v5 from 5.8.1 to 5.9.0 ( #3479 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.8.1 to 5.9.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.8.1...v5.9.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-18 16:42:24 -07:00
dependabot[bot]
9c9c84b020
🌱 Bump cloud.google.com/go/bigquery from 1.54.0 to 1.55.0 ( #3471 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.54.0 to 1.55.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.54.0...bigquery/v1.55.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-12 20:10:18 -07:00
dependabot[bot]
a51f0af3f0
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2 ( #3467 )
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.6.0 to 2.7.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.6.0...v2.7.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-13 02:45:55 +00:00
Spencer Schrock
60615cefa8
🌱 Remove go.mod replaces ( #3440 )
...
* remove old replace directives.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* Remove dgrijalva/jwt-go replace.
Project now maintained at github.com/golang-jwt/jwt. So it's unused.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* remove replace on unused github.com/buger/jsonparser
Signed-off-by: Spencer Schrock <sschrock@google.com>
* remove unused github.com/gorilla/handlers replace.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* remove unused github.com/miekg/dns
Signed-off-by: Spencer Schrock <sschrock@google.com>
* remove unused github.com/ulikunitz/xz
Signed-off-by: Spencer Schrock <sschrock@google.com>
* remove unused github.com/satori/go.uuid
Signed-off-by: Spencer Schrock <sschrock@google.com>
* replace directive no longer needed for github.com/opencontainers/image-spec.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* potentially unneeded replace for github.com/emicklei/go-restful
Signed-off-by: Spencer Schrock <sschrock@google.com>
* potentially unneeded replace for github.com/docker/distribution
Signed-off-by: Spencer Schrock <sschrock@google.com>
---------
Signed-off-by: Spencer Schrock <sschrock@google.com>
2023-09-12 17:55:50 -07:00
dependabot[bot]
52a4843bf1
🌱 Bump golang.org/x/oauth2 from 0.11.0 to 0.12.0 ( #3456 )
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.11.0 to 0.12.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.11.0...v0.12.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-06 09:38:31 -07:00
dependabot[bot]
975dfb0cda
🌱 Bump github.com/xanzy/go-gitlab from 0.90.0 to 0.91.1 ( #3445 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.90.0 to 0.91.1.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.90.0...v0.91.1 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-09-04 17:48:26 -07:00
dependabot[bot]
08e7fb89f4
🌱 Bump gocloud.dev from 0.33.0 to 0.34.0 ( #3430 )
...
Bumps [gocloud.dev](https://github.com/google/go-cloud ) from 0.33.0 to 0.34.0.
- [Release notes](https://github.com/google/go-cloud/releases )
- [Commits](https://github.com/google/go-cloud/compare/v0.33.0...v0.34.0 )
---
updated-dependencies:
- dependency-name: gocloud.dev
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-29 09:21:28 -07:00
dependabot[bot]
b50bd6b44a
🌱 Bump github.com/moby/buildkit from 0.12.1 to 0.12.2 ( #3421 )
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.12.1 to 0.12.2.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.12.1...v0.12.2 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-28 16:57:20 -07:00
dependabot[bot]
51fbe15d81
🌱 Bump github.com/onsi/ginkgo/v2 from 2.11.0 to 2.12.0 ( #3422 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.11.0 to 2.12.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.11.0...v2.12.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-24 10:20:36 -07:00
dependabot[bot]
70e077fc0a
🌱 Bump cloud.google.com/go/bigquery from 1.53.0 to 1.54.0 ( #3400 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.53.0 to 1.54.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.53.0...bigquery/v1.54.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-18 10:11:15 -07:00
dependabot[bot]
0455675c54
🌱 Bump github.com/xanzy/go-gitlab from 0.89.0 to 0.90.0
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.89.0 to 0.90.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.89.0...v0.90.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-08 09:09:09 +00:00
dependabot[bot]
f59130b39d
🌱 Bump golang.org/x/oauth2 from 0.10.0 to 0.11.0
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.10.0 to 0.11.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.10.0...v0.11.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-08 08:56:48 +00:00
dependabot[bot]
ebeb0b938f
🌱 Bump github.com/google/go-containerregistry
...
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry ) from 0.15.2 to 0.16.1.
- [Release notes](https://github.com/google/go-containerregistry/releases )
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml )
- [Commits](https://github.com/google/go-containerregistry/compare/v0.15.2...v0.16.1 )
---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-03 18:42:42 +00:00
dependabot[bot]
4fce3562f0
🌱 Bump github.com/moby/buildkit from 0.12.0 to 0.12.1
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.12.0 to 0.12.1.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.12.0...v0.12.1 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-08-03 18:32:51 +00:00
dependabot[bot]
42e000ced4
🌱 Bump gocloud.dev from 0.32.0 to 0.33.0 ( #3338 )
...
Bumps [gocloud.dev](https://github.com/google/go-cloud ) from 0.32.0 to 0.33.0.
- [Release notes](https://github.com/google/go-cloud/releases )
- [Commits](https://github.com/google/go-cloud/compare/v0.32.0...v0.33.0 )
---
updated-dependencies:
- dependency-name: gocloud.dev
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-02 19:35:45 -05:00
dependabot[bot]
da89487e91
🌱 Bump github.com/xanzy/go-gitlab from 0.88.0 to 0.89.0 ( #3332 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.88.0 to 0.89.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.88.0...v0.89.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-31 23:05:26 +00:00
Pete Wagner
b992be36e0
🌱 Bump github.com/google/go-github from v38.1.0 to v53.2.0 ( #3327 )
...
Signed-off-by: Peter Wagner <peter.wagner@shopify.com>
2023-07-28 17:05:32 +00:00
dependabot[bot]
707fe05890
🌱 Bump github.com/go-git/go-git/v5 from 5.8.0 to 5.8.1 ( #3325 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.8.0 to 5.8.1.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.8.0...v5.8.1 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-28 11:48:14 -05:00
dependabot[bot]
c855ebc56a
🌱 Bump cloud.google.com/go/bigquery from 1.52.0 to 1.53.0
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.52.0 to 1.53.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.52.0...bigquery/v1.53.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-26 14:14:35 +00:00
dependabot[bot]
abbd90f509
🌱 Bump cloud.google.com/go/pubsub from 1.32.0 to 1.33.0
...
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go ) from 1.32.0 to 1.33.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.32.0...pubsub/v1.33.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-26 14:05:26 +00:00
dependabot[bot]
543c52336f
🌱 Bump github.com/onsi/gomega from 1.27.9 to 1.27.10 ( #3305 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.27.9 to 1.27.10.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.27.9...v1.27.10 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-26 08:56:29 -05:00
dependabot[bot]
2a0df5ad8e
🌱 Bump github.com/onsi/gomega from 1.27.8 to 1.27.9 ( #3298 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.27.8 to 1.27.9.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.27.8...v1.27.9 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-24 15:28:31 +00:00
dependabot[bot]
8935558fe1
🌱 Bump github.com/go-git/go-git/v5 from 5.7.0 to 5.8.0 ( #3297 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.7.0 to 5.8.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.7.0...v5.8.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-24 10:18:10 -05:00
dependabot[bot]
13dd3063e1
🌱 Bump github.com/xanzy/go-gitlab from 0.86.0 to 0.88.0
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.86.0 to 0.88.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.86.0...v0.88.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-20 20:59:22 +00:00
dependabot[bot]
6c47b0e104
🌱 Bump gocloud.dev from 0.30.0 to 0.32.0 ( #3284 )
...
Bumps [gocloud.dev](https://github.com/google/go-cloud ) from 0.30.0 to 0.32.0.
- [Release notes](https://github.com/google/go-cloud/releases )
- [Commits](https://github.com/google/go-cloud/compare/v0.30.0...v0.32.0 )
---
updated-dependencies:
- dependency-name: gocloud.dev
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-20 09:20:31 -05:00
dependabot[bot]
c60fe5b53a
🌱 Bump github.com/google/osv-scanner from 1.3.5 to 1.3.6 ( #3281 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.5 to 1.3.6.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.3.5...v1.3.6 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-19 15:48:18 +00:00
Spencer Schrock
7cc6482680
🌱 Delete unused project-update functionality. ( #3269 )
...
Signed-off-by: Spencer Schrock <sschrock@google.com>
2023-07-18 21:58:19 +00:00
dependabot[bot]
16ff3eccfc
🌱 Bump github.com/moby/buildkit from 0.11.6 to 0.12.0 ( #3264 )
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.11.6 to 0.12.0.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.11.6...v0.12.0 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-13 17:41:32 -05:00
dependabot[bot]
c50d76fcfa
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2 ( #3260 )
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.5.0 to 2.6.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.5.0...v2.6.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-12 09:08:34 -05:00
dependabot[bot]
86ae5c16b0
🌱 Bump golang.org/x/tools from 0.10.0 to 0.11.0
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.10.0 to 0.11.0.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.10.0...v0.11.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-07-10 17:30:08 +00:00
dependabot[bot]
10ff05d530
🌱 Bump golang.org/x/oauth2 from 0.9.0 to 0.10.0 ( #3244 )
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.9.0 to 0.10.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.9.0...v0.10.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-07 12:36:19 -05:00
dependabot[bot]
87b1c4cd6e
🌱 Bump golang.org/x/text from 0.10.0 to 0.11.0 ( #3243 )
...
Bumps [golang.org/x/text](https://github.com/golang/text ) from 0.10.0 to 0.11.0.
- [Release notes](https://github.com/golang/text/releases )
- [Commits](https://github.com/golang/text/compare/v0.10.0...v0.11.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/text
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-07-06 00:17:37 +00:00
dependabot[bot]
b1b1c4fd07
🌱 Bump cloud.google.com/go/pubsub from 1.31.0 to 1.32.0 ( #3233 )
...
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go ) from 1.31.0 to 1.32.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.31.0...pubsub/v1.32.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-30 00:24:56 +00:00
dependabot[bot]
5e3f8aee7b
🌱 Bump github.com/google/osv-scanner from 1.3.4 to 1.3.5
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.4 to 1.3.5.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.3.4...v1.3.5 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-28 13:58:27 +00:00
dependabot[bot]
40a1a88975
🌱 Bump cloud.google.com/go/bigquery from 1.51.2 to 1.52.0
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.51.2 to 1.52.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.51.2...bigquery/v1.52.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-28 13:46:03 +00:00
dependabot[bot]
54f7f1a42c
🌱 Bump google.golang.org/protobuf from 1.30.0 to 1.31.0 ( #3224 )
...
Bumps google.golang.org/protobuf from 1.30.0 to 1.31.0.
---
updated-dependencies:
- dependency-name: google.golang.org/protobuf
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-28 08:22:21 -05:00
Spencer Schrock
87bacb995e
🌱 Bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible ( #3197 )
...
Signed-off-by: Spencer Schrock <sschrock@google.com>
2023-06-21 16:33:57 +00:00
dependabot[bot]
6a033c7101
🌱 Bump gocloud.dev from 0.29.0 to 0.30.0
...
Bumps [gocloud.dev](https://github.com/google/go-cloud ) from 0.29.0 to 0.30.0.
- [Release notes](https://github.com/google/go-cloud/releases )
- [Commits](https://github.com/google/go-cloud/compare/v0.29.0...v0.30.0 )
---
updated-dependencies:
- dependency-name: gocloud.dev
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-21 12:46:10 +00:00
dependabot[bot]
74fbee9fa6
🌱 Bump github.com/xanzy/go-gitlab from 0.85.0 to 0.86.0
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.85.0 to 0.86.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.85.0...v0.86.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-21 12:34:38 +00:00
dependabot[bot]
18b70b294b
🌱 Bump github.com/otiai10/copy from 1.11.0 to 1.12.0
...
Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy ) from 1.11.0 to 1.12.0.
- [Release notes](https://github.com/otiai10/copy/releases )
- [Commits](https://github.com/otiai10/copy/compare/v1.11.0...v1.12.0 )
---
updated-dependencies:
- dependency-name: github.com/otiai10/copy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-20 20:31:37 +00:00
dependabot[bot]
09505d8a61
🌱 Bump github.com/onsi/ginkgo/v2 from 2.10.0 to 2.11.0
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.10.0 to 2.11.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.10.0...v2.11.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-20 20:19:16 +00:00
dependabot[bot]
a9765401d6
🌱 Bump mvdan.cc/sh/v3 from 3.6.0 to 3.7.0
...
Bumps [mvdan.cc/sh/v3](https://github.com/mvdan/sh ) from 3.6.0 to 3.7.0.
- [Release notes](https://github.com/mvdan/sh/releases )
- [Changelog](https://github.com/mvdan/sh/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mvdan/sh/compare/v3.6.0...v3.7.0 )
---
updated-dependencies:
- dependency-name: mvdan.cc/sh/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-20 20:08:06 +00:00
dependabot[bot]
692f085f0d
🌱 Bump golang.org/x/tools from 0.9.3 to 0.10.0
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.9.3 to 0.10.0.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.9.3...v0.10.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-17 15:29:35 +00:00
dependabot[bot]
ff68bfbef7
🌱 Bump golang.org/x/oauth2 from 0.8.0 to 0.9.0 ( #3163 )
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.8.0 to 0.9.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.8.0...v0.9.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-14 07:33:49 -05:00
dependabot[bot]
bc3bb2ebda
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2 ( #3160 )
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.4.0 to 2.5.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.4.0...v2.5.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-13 23:19:48 +00:00
dependabot[bot]
b3b93443ba
🌱 Bump github.com/xanzy/go-gitlab from 0.84.0 to 0.85.0 ( #3149 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.84.0 to 0.85.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.84.0...v0.85.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-13 17:52:06 +00:00
dependabot[bot]
aef28d998d
🌱 Bump github.com/onsi/gomega from 1.27.7 to 1.27.8
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.27.7 to 1.27.8.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.27.7...v1.27.8 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-08 13:20:45 +00:00
dependabot[bot]
829de1bd8f
🌱 Bump github.com/onsi/ginkgo/v2 from 2.9.7 to 2.10.0
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.9.7 to 2.10.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.7...v2.10.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-08 13:09:17 +00:00
dependabot[bot]
4c255a7771
🌱 Bump github.com/google/osv-scanner from 1.3.3 to 1.3.4
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.3 to 1.3.4.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.3.3...v1.3.4 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-08 12:56:34 +00:00
dependabot[bot]
082c79306b
🌱 Bump github.com/sirupsen/logrus from 1.9.2 to 1.9.3 ( #3121 )
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.9.2 to 1.9.3.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.2...v1.9.3 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-07 09:10:48 +00:00
dependabot[bot]
743ef52dc0
🌱 Bump golang.org/x/tools from 0.9.2 to 0.9.3
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.9.2 to 0.9.3.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.9.2...v0.9.3 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-02 16:55:20 +00:00
dependabot[bot]
174aaa266f
🌱 Bump golang.org/x/tools from 0.9.1 to 0.9.2
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.9.1 to 0.9.2.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.9.1...v0.9.2 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-01 17:47:38 +00:00
dependabot[bot]
1dd627eebc
🌱 Bump github.com/xanzy/go-gitlab from 0.83.0 to 0.84.0 ( #3106 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.83.0 to 0.84.0.
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.83.0...v0.84.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-06-01 17:34:37 +00:00
dependabot[bot]
bfd5357553
🌱 Bump github.com/onsi/ginkgo/v2 from 2.9.5 to 2.9.7 ( #3093 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.9.5 to 2.9.7.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.5...v2.9.7 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-31 15:45:31 +00:00
dependabot[bot]
24b06263c4
🌱 Bump cloud.google.com/go/pubsub from 1.30.1 to 1.31.0 ( #3065 )
...
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go ) from 1.30.1 to 1.31.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.30.1...pubsub/v1.31.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-25 14:20:44 +00:00
dependabot[bot]
e8bfa39583
🌱 Bump github.com/go-git/go-git/v5 from 5.6.1 to 5.7.0 ( #3057 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.6.1 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.6.1...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-24 15:23:00 +00:00
dependabot[bot]
cd0bc8f6c7
🌱 Bump github.com/onsi/gomega from 1.27.6 to 1.27.7 ( #3040 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.27.6 to 1.27.7.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.27.6...v1.27.7 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-19 09:40:33 -05:00
dependabot[bot]
b9927b21d8
🌱 Bump github.com/google/osv-scanner
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.3-0.20230509011216-baae1796eeea to 1.3.3.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/commits/v1.3.3 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-18 18:22:12 +00:00
dependabot[bot]
b126d0c4d1
🌱 Bump github.com/sirupsen/logrus from 1.9.1 to 1.9.2 ( #3031 )
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.9.1 to 1.9.2.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.1...v1.9.2 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-18 13:06:43 -05:00
dependabot[bot]
1bb97a544e
🌱 Bump github.com/sirupsen/logrus from 1.9.0 to 1.9.1
...
Bumps [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus ) from 1.9.0 to 1.9.1.
- [Release notes](https://github.com/sirupsen/logrus/releases )
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sirupsen/logrus/compare/v1.9.0...v1.9.1 )
---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-17 15:40:24 +00:00
dependabot[bot]
a880f42c4a
🌱 Bump github.com/google/go-containerregistry ( #3025 )
...
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry ) from 0.15.1 to 0.15.2.
- [Release notes](https://github.com/google/go-containerregistry/releases )
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml )
- [Commits](https://github.com/google/go-containerregistry/compare/v0.15.1...v0.15.2 )
---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-17 15:23:19 +00:00
dependabot[bot]
1b9deaaa1b
🌱 Bump github.com/onsi/ginkgo/v2 from 2.9.4 to 2.9.5
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.9.4 to 2.9.5.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.4...v2.9.5 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-17 09:11:30 +00:00
dependabot[bot]
dedae921b5
🌱 Bump golang.org/x/oauth2 from 0.7.0 to 0.8.0 ( #3005 )
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.7.0 to 0.8.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.7.0...v0.8.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-15 16:20:15 +00:00
dependabot[bot]
f30709d212
🌱 Bump github.com/cloudflare/circl from 1.1.0 to 1.3.3 ( #2994 )
...
Bumps [github.com/cloudflare/circl](https://github.com/cloudflare/circl ) from 1.1.0 to 1.3.3.
- [Release notes](https://github.com/cloudflare/circl/releases )
- [Commits](https://github.com/cloudflare/circl/compare/v1.1.0...v1.3.3 )
---
updated-dependencies:
- dependency-name: github.com/cloudflare/circl
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-12 13:14:55 +00:00
Laurent Savaete
025c4fbb9f
🐛 Update osv-scanner dependency to include Vulnerabilities check fixes ( #2981 )
...
* Update osv-scanner dependency to include Vulnerabilities check fixes
Signed-off-by: Laurent Savaëte <laurent@where.tf>
* Run go mod tidy
Signed-off-by: Laurent Savaëte <laurent@where.tf>
---------
Signed-off-by: Laurent Savaëte <laurent@where.tf>
2023-05-11 15:53:34 +00:00
dependabot[bot]
622ae353ca
🌱 Bump golang.org/x/tools from 0.9.0 to 0.9.1
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.9.0 to 0.9.1.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.9.0...v0.9.1 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-11 15:33:33 +00:00
dependabot[bot]
f13abc49f0
🌱 Bump cloud.google.com/go/bigquery from 1.51.1 to 1.51.2 ( #2984 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.51.1 to 1.51.2.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.51.1...bigquery/v1.51.2 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-11 15:19:29 +00:00
dependabot[bot]
d7229e0fa4
🌱 Bump golang.org/x/tools from 0.8.0 to 0.9.0 ( #2976 )
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.8.0 to 0.9.0.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.8.0...v0.9.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-09 09:02:07 -05:00
dependabot[bot]
bc615e3f21
🌱 Bump github.com/google/go-containerregistry
...
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry ) from 0.12.1 to 0.15.1.
- [Release notes](https://github.com/google/go-containerregistry/releases )
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml )
- [Commits](https://github.com/google/go-containerregistry/compare/v0.12.1...v0.15.1 )
---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-08 23:36:59 +00:00
dependabot[bot]
1b862e82a7
🌱 Bump cloud.google.com/go/bigquery from 1.51.0 to 1.51.1 ( #2958 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.51.0 to 1.51.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.51.0...bigquery/v1.51.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-05 13:25:57 +00:00
dependabot[bot]
dbd6894296
🌱 Bump cloud.google.com/go/pubsub from 1.30.0 to 1.30.1
...
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go ) from 1.30.0 to 1.30.1.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.30.0...pubsub/v1.30.1 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-04 11:31:46 +00:00
dependabot[bot]
dafae1592e
🌱 Bump github.com/onsi/ginkgo/v2 from 2.9.3 to 2.9.4
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.9.3 to 2.9.4.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.3...v2.9.4 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-05-04 11:18:26 +00:00
dependabot[bot]
d4624f7fa4
🌱 Bump github.com/onsi/ginkgo/v2 from 2.9.2 to 2.9.3 ( #2937 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.9.2 to 2.9.3.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.9.2...v2.9.3 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-03 14:14:35 +00:00
dependabot[bot]
3d0c5e0c14
🌱 Bump github.com/google/osv-scanner ( #2914 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.2-0.20230418234519-2c101c1b0e63 to 1.3.2.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/commits/v1.3.2 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-26 21:19:16 +00:00
dependabot[bot]
c9140decab
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.3.0 to 2.4.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.3.0...v2.4.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-26 11:54:55 +00:00
Spencer Schrock
a4e72a8696
🐛 Give inconclusive Vulnerabilities score when osv-scanner panics ( #2896 )
...
* Recover from osv-scanner panics.
This allows us to give an inconclusive score instead of crashing.
Signed-off-by: Spencer Schrock <sschrock@google.com>
* Bump osv-scanner to include performance increase.
https://github.com/google/osv-scanner/pull/346
Signed-off-by: Spencer Schrock <sschrock@google.com>
---------
Signed-off-by: Spencer Schrock <sschrock@google.com>
2023-04-24 17:26:20 +00:00
dependabot[bot]
99751c0241
🌱 Bump github.com/moby/buildkit from 0.11.5 to 0.11.6
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.11.5 to 0.11.6.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.11.5...v0.11.6 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-21 11:48:25 +00:00
dependabot[bot]
953e68c822
🌱 Bump github.com/otiai10/copy from 1.10.0 to 1.11.0 ( #2890 )
...
Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/otiai10/copy/releases )
- [Commits](https://github.com/otiai10/copy/compare/v1.10.0...v1.11.0 )
---
updated-dependencies:
- dependency-name: github.com/otiai10/copy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-20 08:21:00 -05:00
dependabot[bot]
6506930fa1
🌱 Bump cloud.google.com/go/bigquery from 1.50.0 to 1.51.0
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.50.0 to 1.51.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.50.0...bigquery/v1.51.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-18 16:06:46 +00:00
dependabot[bot]
81e6c21132
🌱 Bump github.com/xanzy/go-gitlab from 0.82.0 to 0.83.0
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.82.0 to 0.83.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases )
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.82.0...v0.83.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-18 15:49:29 +00:00
dependabot[bot]
f3c480f214
🌱 Bump github.com/Masterminds/semver/v3 from 3.2.0 to 3.2.1
...
Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver ) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/Masterminds/semver/releases )
- [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Masterminds/semver/compare/v3.2.0...v3.2.1 )
---
updated-dependencies:
- dependency-name: github.com/Masterminds/semver/v3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-13 17:11:29 +00:00
dependabot[bot]
21e1950fdb
🌱 Bump github.com/spf13/cobra from 1.6.1 to 1.7.0
...
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra ) from 1.6.1 to 1.7.0.
- [Release notes](https://github.com/spf13/cobra/releases )
- [Commits](https://github.com/spf13/cobra/compare/v1.6.1...v1.7.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/cobra
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-13 16:56:51 +00:00
dependabot[bot]
4809b20cbf
🌱 Bump github.com/xanzy/go-gitlab from 0.81.0 to 0.82.0
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.81.0 to 0.82.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases )
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.81.0...v0.82.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-12 19:32:39 +00:00
dependabot[bot]
192d704d49
🌱 Bump golang.org/x/tools from 0.7.0 to 0.8.0 ( #2855 )
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.7.0 to 0.8.0.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.7.0...v0.8.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-12 06:36:50 -05:00
dependabot[bot]
4898b5c474
🌱 Bump github.com/otiai10/copy from 1.9.0 to 1.10.0
...
Bumps [github.com/otiai10/copy](https://github.com/otiai10/copy ) from 1.9.0 to 1.10.0.
- [Release notes](https://github.com/otiai10/copy/releases )
- [Commits](https://github.com/otiai10/copy/compare/v1.9.0...v1.10.0 )
---
updated-dependencies:
- dependency-name: github.com/otiai10/copy
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-11 15:31:14 +00:00
dependabot[bot]
b17f83a71e
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2 ( #2847 )
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.2.0 to 2.3.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.2.0...v2.3.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-11 10:12:31 -05:00
dependabot[bot]
2f0e8d971f
🌱 Bump github.com/xeipuuv/gojsonschema
...
Bumps [github.com/xeipuuv/gojsonschema](https://github.com/xeipuuv/gojsonschema ) from 0.0.0-20180618132009-1d523034197f to 1.2.0.
- [Release notes](https://github.com/xeipuuv/gojsonschema/releases )
- [Commits](https://github.com/xeipuuv/gojsonschema/commits/v1.2.0 )
---
updated-dependencies:
- dependency-name: github.com/xeipuuv/gojsonschema
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-10 15:33:53 +00:00
dependabot[bot]
b81a70e0ea
🌱 Bump cloud.google.com/go/bigquery from 1.49.0 to 1.50.0 ( #2818 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.49.0 to 1.50.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.49.0...bigquery/v1.50.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-04 13:59:10 -05:00
dependabot[bot]
b6362b14ee
🌱 Bump github.com/go-logr/logr from 1.2.3 to 1.2.4 ( #2813 )
...
Bumps [github.com/go-logr/logr](https://github.com/go-logr/logr ) from 1.2.3 to 1.2.4.
- [Release notes](https://github.com/go-logr/logr/releases )
- [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md )
- [Commits](https://github.com/go-logr/logr/compare/v1.2.3...v1.2.4 )
---
updated-dependencies:
- dependency-name: github.com/go-logr/logr
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-04-03 10:28:25 -05:00
dependabot[bot]
6c65ffbb19
🌱 Bump cloud.google.com/go/bigquery from 1.48.0 to 1.49.0
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.48.0 to 1.49.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.48.0...bigquery/v1.49.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-02 17:56:39 +00:00
dependabot[bot]
cba58b32b2
🌱 Bump github.com/onsi/gomega from 1.27.0 to 1.27.6 ( #2807 )
2023-03-31 23:03:52 +00:00
dependabot[bot]
ce916313b4
🌱 Bump github.com/google/osv-scanner from 1.3.0 to 1.3.1 ( #2810 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.3.0 to 1.3.1.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/compare/v1.3.0...v1.3.1 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-31 09:02:56 -05:00
dependabot[bot]
727d7e8d27
🌱 Bump github.com/moby/buildkit from 0.11.4 to 0.11.5 ( #2809 )
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.11.4 to 0.11.5.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.11.4...v0.11.5 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-30 16:47:31 -07:00
dependabot[bot]
ef16fd8ae0
🌱 Bump cloud.google.com/go/pubsub from 1.28.0 to 1.30.0 ( #2804 )
...
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go ) from 1.28.0 to 1.30.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.28.0...pubsub/v1.30.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-29 19:15:39 -07:00
dependabot[bot]
4626c278de
🌱 Bump github.com/bradleyfalzon/ghinstallation/v2 ( #2805 )
...
Bumps [github.com/bradleyfalzon/ghinstallation/v2](https://github.com/bradleyfalzon/ghinstallation ) from 2.1.0 to 2.2.0.
- [Release notes](https://github.com/bradleyfalzon/ghinstallation/releases )
- [Commits](https://github.com/bradleyfalzon/ghinstallation/compare/v2.1.0...v2.2.0 )
---
updated-dependencies:
- dependency-name: github.com/bradleyfalzon/ghinstallation/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-29 18:37:45 -07:00
dependabot[bot]
92a07f5513
🌱 Bump github.com/google/osv-scanner ( #2803 )
...
Bumps [github.com/google/osv-scanner](https://github.com/google/osv-scanner ) from 1.2.1-0.20230302232134-592acbc2539b to 1.3.0.
- [Release notes](https://github.com/google/osv-scanner/releases )
- [Changelog](https://github.com/google/osv-scanner/blob/main/CHANGELOG.md )
- [Commits](https://github.com/google/osv-scanner/commits/v1.3.0 )
---
updated-dependencies:
- dependency-name: github.com/google/osv-scanner
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-29 11:41:56 -07:00
dependabot[bot]
d2a3caa3d8
🌱 Bump github.com/xanzy/go-gitlab from 0.78.0 to 0.81.0 ( #2737 )
...
* 🌱 Bump github.com/xanzy/go-gitlab from 0.78.0 to 0.81.0
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.78.0 to 0.81.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases )
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.78.0...v0.81.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* Bump google.golang.org/protobuf to v1.30.0 to satisfy dependency analysis.
Signed-off-by: Spencer Schrock <sschrock@google.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Spencer Schrock <sschrock@google.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Spencer Schrock <sschrock@google.com>
2023-03-28 19:41:09 -07:00
dependabot[bot]
dd86ce8df8
🌱 Bump golang.org/x/tools from 0.6.0 to 0.7.0 ( #2769 )
2023-03-29 00:22:33 +00:00
dependabot[bot]
1f3f9ef318
🌱 Bump gocloud.dev from 0.26.0 to 0.29.0 ( #2722 )
...
* 🌱 Bump gocloud.dev from 0.26.0 to 0.29.0
Bumps [gocloud.dev](https://github.com/google/go-cloud ) from 0.26.0 to 0.29.0.
- [Release notes](https://github.com/google/go-cloud/releases )
- [Commits](https://github.com/google/go-cloud/compare/v0.26.0...v0.29.0 )
---
updated-dependencies:
- dependency-name: gocloud.dev
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
* Switch pubsubpb import path.
See cf7063dc4d/migration.md
for more details.
Signed-off-by: Spencer Schrock <sschrock@google.com>
---------
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Spencer Schrock <sschrock@google.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Spencer Schrock <sschrock@google.com>
2023-03-17 10:16:29 -07:00
Azeem Shaikh
8966abdceb
Initial implementation of go-git client ( #2720 )
...
Signed-off-by: Azeem Shaikh <azeemshaikh38@gmail.com>
2023-03-15 21:28:09 +00:00
dependabot[bot]
2e6347f133
🌱 Bump github.com/moby/buildkit from 0.10.3 to 0.11.4 ( #2735 )
...
Bumps [github.com/moby/buildkit](https://github.com/moby/buildkit ) from 0.10.3 to 0.11.4.
- [Release notes](https://github.com/moby/buildkit/releases )
- [Commits](https://github.com/moby/buildkit/compare/v0.10.3...v0.11.4 )
---
updated-dependencies:
- dependency-name: github.com/moby/buildkit
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-08 19:03:26 -06:00
Rex P
170af75618
🐛 Updates osv-scanner dependency to 1.2.0. ( #2704 )
...
* Updates osv-scanner dependency to 1.2.0.
The 1.0 release changed the return value for osv-scanner to output an error
when vulnerabilities are found, modified to handle this error correctly.
Signed-off-by: Rex Pan <rexpan@google.com>
* Add some additional comments
Signed-off-by: Rex Pan <rexpan@google.com>
* Update osv-scanner to include SBOM and logging fixes
Signed-off-by: Rex Pan <rexpan@google.com>
---------
Signed-off-by: Rex Pan <rexpan@google.com>
2023-03-09 00:04:11 +00:00
dependabot[bot]
0bed3da7f1
🌱 Bump github.com/jszwec/csvutil from 1.7.1 to 1.8.0 ( #2698 )
...
Bumps [github.com/jszwec/csvutil](https://github.com/jszwec/csvutil ) from 1.7.1 to 1.8.0.
- [Release notes](https://github.com/jszwec/csvutil/releases )
- [Commits](https://github.com/jszwec/csvutil/compare/v1.7.1...v1.8.0 )
---
updated-dependencies:
- dependency-name: github.com/jszwec/csvutil
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-03-06 12:48:08 -06:00
dependabot[bot]
034add12c1
🌱 Bump k8s.io/client-go from 0.18.8 to 0.20.0
...
Bumps [k8s.io/client-go](https://github.com/kubernetes/client-go ) from 0.18.8 to 0.20.0.
- [Release notes](https://github.com/kubernetes/client-go/releases )
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md )
- [Commits](https://github.com/kubernetes/client-go/compare/v0.18.8...v0.20.0 )
---
updated-dependencies:
- dependency-name: k8s.io/client-go
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-02-23 19:11:51 +00:00
dependabot[bot]
24b779f7e2
🌱 Bump mvdan.cc/sh/v3 from 3.5.1 to 3.6.0 ( #2615 )
...
Bumps [mvdan.cc/sh/v3](https://github.com/mvdan/sh ) from 3.5.1 to 3.6.0.
- [Release notes](https://github.com/mvdan/sh/releases )
- [Changelog](https://github.com/mvdan/sh/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mvdan/sh/compare/v3.5.1...v3.6.0 )
---
updated-dependencies:
- dependency-name: mvdan.cc/sh/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-22 10:35:24 -06:00
dependabot[bot]
48813a3c38
🌱 Bump golang.org/x/net from 0.5.0 to 0.7.0 ( #2680 )
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.5.0 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases )
- [Commits](https://github.com/golang/net/compare/v0.5.0...v0.7.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-20 07:55:55 -06:00
Naveen
5e6a5212f4
🌱 Update deps for fixing GHSA-r48q-9g5r-8q2h ( #2675 )
...
- Update dependencies `github.com/emicklei/go-restful` to fix this https://osv.dev/vulnerability/GHSA-r48q-9g5r-8q2h
Signed-off-by: naveensrinivasan <172697+naveensrinivasan@users.noreply.github.com>
2023-02-16 15:38:44 -08:00
dependabot[bot]
1c6ab16e45
🌱 Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.2 ( #2600 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.4.2 to 5.5.2.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.4.2...v5.5.2 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-25 18:00:44 +00:00
dependabot[bot]
2704fc5de9
🌱 Bump github.com/xanzy/go-gitlab from 0.77.0 to 0.78.0 ( #2591 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.77.0 to 0.78.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases )
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.77.0...v0.78.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-15 14:15:09 -06:00
dependabot[bot]
b30bc79e80
🌱 Bump golang.org/x/tools from 0.4.0 to 0.5.0 ( #2592 )
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.4.0 to 0.5.0.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.4.0...v0.5.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-11 09:44:04 -08:00
dependabot[bot]
75adffeb6d
🌱 Bump github.com/onsi/gomega from 1.24.1 to 1.24.2 ( #2562 )
...
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.24.1 to 1.24.2.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.24.1...v1.24.2 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-10 22:47:58 -08:00
dependabot[bot]
63ffde8505
🌱 Bump github.com/onsi/ginkgo/v2 from 2.5.1 to 2.7.0 ( #2590 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.5.1 to 2.7.0.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.5.1...v2.7.0 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-01-11 05:54:06 +00:00
dependabot[bot]
c6d76807b7
🌱 Bump github.com/xanzy/go-gitlab from 0.76.0 to 0.77.0 ( #2563 )
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.76.0 to 0.77.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases )
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.76.0...v0.77.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-22 08:31:50 -08:00
dependabot[bot]
7e64b3654e
🌱 Bump golang.org/x/tools from 0.3.0 to 0.4.0 ( #2525 )
...
Bumps [golang.org/x/tools](https://github.com/golang/tools ) from 0.3.0 to 0.4.0.
- [Release notes](https://github.com/golang/tools/releases )
- [Commits](https://github.com/golang/tools/compare/v0.3.0...v0.4.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/tools
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-21 22:50:11 -08:00
Rex P
f983480ba2
⚠️ OSV scanner integration ( #2509 )
...
* Improve OSV scanning integration (squashed)
Signed-off-by: Rex P <rexpan@google.com>
* Add support for grouping vulnerabilities and aliases
Signed-off-by: Rex P <rexpan@google.com>
* Updated documentation, spit vulnerability output to multiple warnings
Signed-off-by: Rex P <rexpan@google.com>
* Updated documentation, spit vulnerability output to multiple warnings
Signed-off-by: Rex P <rexpan@google.com>
* Add its own codebase into docs
Signed-off-by: Rex P <rexpan@google.com>
* Update scorecard test to not prevent known vulns
Signed-off-by: Rex P <rexpan@google.com>
Signed-off-by: Rex P <rexpan@google.com>
Co-authored-by: laurentsimon <64505099+laurentsimon@users.noreply.github.com>
2022-12-12 16:46:43 -08:00
dependabot[bot]
d11772da53
🌱 Bump cloud.google.com/go/bigquery from 1.43.0 to 1.44.0 ( #2504 )
...
Bumps [cloud.google.com/go/bigquery](https://github.com/googleapis/google-cloud-go ) from 1.43.0 to 1.44.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/bigquery/v1.43.0...bigquery/v1.44.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/bigquery
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-01 12:29:44 -08:00
dependabot[bot]
6fe248c97b
🌱 Bump cloud.google.com/go/pubsub from 1.26.0 to 1.27.0 ( #2503 )
...
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go ) from 1.26.0 to 1.27.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases )
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md )
- [Commits](https://github.com/googleapis/google-cloud-go/compare/pubsub/v1.26.0...pubsub/v1.27.0 )
---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-12-01 11:37:37 -08:00
dependabot[bot]
c61f6bc297
🌱 Bump github.com/Masterminds/semver/v3 from 3.1.1 to 3.2.0 ( #2498 )
...
Bumps [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver ) from 3.1.1 to 3.2.0.
- [Release notes](https://github.com/Masterminds/semver/releases )
- [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Masterminds/semver/compare/v3.1.1...v3.2.0 )
---
updated-dependencies:
- dependency-name: github.com/Masterminds/semver/v3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-30 10:54:05 -08:00
raghavkaul
4c7066e3b6
🌱 attestor: module -> subpackage ( #2464 )
...
* Enable cilint checking on attestor and fix cilint errors
Signed-off-by: Raghav Kaul <raghavkaul@google.com>
* Make attestor a subpackage of scorecard
* Move e2e test
* Use scorecard logger
Signed-off-by: Raghav Kaul <raghavkaul@google.com>
Signed-off-by: Raghav Kaul <raghavkaul@google.com>
2022-11-30 10:22:00 -08:00
dependabot[bot]
4926241f69
🌱 Bump github.com/xanzy/go-gitlab from 0.74.0 to 0.76.0
...
Bumps [github.com/xanzy/go-gitlab](https://github.com/xanzy/go-gitlab ) from 0.74.0 to 0.76.0.
- [Release notes](https://github.com/xanzy/go-gitlab/releases )
- [Changelog](https://github.com/xanzy/go-gitlab/blob/master/releases_test.go )
- [Commits](https://github.com/xanzy/go-gitlab/compare/v0.74.0...v0.76.0 )
---
updated-dependencies:
- dependency-name: github.com/xanzy/go-gitlab
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-21 16:34:39 +00:00
dependabot[bot]
a3255e353a
🌱 Bump github.com/onsi/ginkgo/v2 from 2.5.0 to 2.5.1 ( #2467 )
...
Bumps [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo ) from 2.5.0 to 2.5.1.
- [Release notes](https://github.com/onsi/ginkgo/releases )
- [Changelog](https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/ginkgo/compare/v2.5.0...v2.5.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/ginkgo/v2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-11-21 09:59:32 -06:00
dependabot[bot]
469216299a
🌱 Bump github.com/onsi/gomega from 1.24.0 to 1.24.1 ( #2449 )
...
* 🌱 Bump github.com/onsi/gomega from 1.24.0 to 1.24.1
Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega ) from 1.24.0 to 1.24.1.
- [Release notes](https://github.com/onsi/gomega/releases )
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md )
- [Commits](https://github.com/onsi/gomega/compare/v1.24.0...v1.24.1 )
---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* go mod tidy
Signed-off-by: Spencer Schrock <sschrock@google.com>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Spencer Schrock <sschrock@google.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Spencer Schrock <sschrock@google.com>
2022-11-17 23:06:34 -08:00
dependabot[bot]
d7543170e1
🌱 Bump github.com/google/go-containerregistry
...
Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry ) from 0.12.0 to 0.12.1.
- [Release notes](https://github.com/google/go-containerregistry/releases )
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml )
- [Commits](https://github.com/google/go-containerregistry/compare/v0.12.0...v0.12.1 )
---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-11-16 21:04:08 +00:00