Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the go-deps group with 8 updates #16

Merged
merged 1 commit into from
Oct 16, 2023
Merged

chore(deps): bump the go-deps group with 8 updates #16

merged 1 commit into from
Oct 16, 2023

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Oct 16, 2023

Bumps the go-deps group with 8 updates:

Package From To
github.com/docker/docker 24.0.5+incompatible 24.0.6+incompatible
github.com/go-gormigrate/gormigrate/v2 2.1.0 2.1.1
golang.org/x/crypto 0.12.0 0.14.0
golang.org/x/tools 0.12.0 0.14.0
gorm.io/driver/mysql 1.5.1 1.5.2
gorm.io/driver/postgres 1.5.2 1.5.3
gorm.io/driver/sqlite 1.5.3 1.5.4
gorm.io/gorm 1.25.4 1.25.5

Updates github.com/docker/docker from 24.0.5+incompatible to 24.0.6+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v24.0.6

24.0.6

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

Bug fixes and enhancements

  • containerd storage backend: Fix docker ps failing when a container image is no longer present in the content store. moby/moby#46095
  • containerd storage backend: Fix docker ps -s -a and docker container prune failing when a container image config is no longer present in the content store. moby/moby#46097
  • containerd storage backend: Fix docker inspect failing when a container image config is no longer (or was never) present in the content store. moby/moby#46244
  • containerd storage backend: Fix diff and export with the overlayfs snapshotter by using reference-counted rootfs mounts. moby/moby#46266
  • containerd storage backend: Fix a misleading error message when the image platforms available locally do not match the desired platform. moby/moby#46300
  • containerd storage backend: Fix the FROM scratch Dockerfile instruction with the classic builder. moby/moby#46302
  • containerd storage backend: Fix mismatched image rootfs and manifest layers errors with the classic builder. moby/moby#46310
  • Warn when pulling Docker Image Format v1, and Docker Image manifest version 2, schema 1 images from all registries. moby/moby#46290
  • Fix live-restore of volumes with custom volume options. moby/moby#46366
  • Fix incorrectly dropping capabilities bits when running a container as a non-root user (note: this change was already effectively present due to a regression). moby/moby#46221
  • Fix network isolation iptables rules preventing IPv6 Neighbor Solicitation packets from being exchanged between containers. moby/moby#46214
  • Fix dockerd.exe --register-service not working when the binary is in the current directory on Windows. moby/moby#46215
  • Add a hint suggesting the use of a PAT to docker login against Docker Hub. docker/cli#4500
  • Improve shell startup time for users of Bash completion for the CLI. docker/cli#4517
  • Improve the speed of some commands by skipping GET /_ping when possible. docker/cli#4508
  • Fix credential scopes when using a PAT to docker manifest inspect an image on Docker Hub. docker/cli#4512
  • Fix docker events not supporting --format=json. docker/cli#4544

Packaging updates

Commits
  • 1a79695 Merge pull request #46366 from thaJeztah/24.0_backport_volume-local-restore-m...
  • c35376c volume/local: Don't unmount, restore mounted status
  • 5d4cc0b integration/liveRestore: Check volume content
  • c78abd9 Merge pull request #46330 from thaJeztah/24.0_backport_api_docs_update_urls
  • 6282d95 Merge pull request #46331 from thaJeztah/24.0_backport_update_golangci_lint
  • 1d983e2 update golangci-lint to v1.54.2
  • d2e9a19 CONTRIBUTING.md: update links to golang docs and blog
  • 73f6053 api: swagger: update link to Go documentation
  • de13951 docs/api: update links to Go documentation
  • 7741a89 Merge pull request #46325 from thaJeztah/24.0_backport_hack_less_redirects
  • Additional commits viewable in compare view

Updates github.com/go-gormigrate/gormigrate/v2 from 2.1.0 to 2.1.1

Release notes

Sourced from github.com/go-gormigrate/gormigrate/v2's releases.

v2.1.1

Changed

  • Update dependencies
Changelog

Sourced from github.com/go-gormigrate/gormigrate/v2's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[Unreleased]

Added

  • Add to test suite pure-go sqlite implementation: github.com/glebarez/sqlite

Changed

  • Update databases for ci pipelines and local development
  • Extract integration tests and their deps into different integration-test package
  • Refactor raw sql query into native Gorm method chain, for better compatibility with all dialects
Commits
  • 56c66f9 Merge pull request #214 from go-gormigrate/update-deps
  • 5467ee2 ci: add go 1.21 to integration-test job's matrix
  • aa5142b Bump go deps
  • 293e5ee Add missing entries to changelog
  • f90a53b Merge pull request #210 from go-gormigrate/refactor-raw-sql-into-native-gorm
  • 6ecae48 Refactor raw sql query into native gorm method chain, for better compatibilit...
  • 905c727 Merge pull request #209 from go-gormigrate/refactor-tests
  • caeca82 Refactor integration-test: avoid hardcoding driver features in the test, keep...
  • 21a38fc Merge pull request #208 from go-gormigrate/test-pure-go-sqlite
  • 8e1db40 integration-test: add pure-go sqlite implementation
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.12.0 to 0.14.0

Commits
  • e3cc52e go.mod: update golang.org/x dependencies
  • 833695f ssh: add server side support for [email protected] protocol extension
  • ec07f4e chacha20: drop Go 1.10 compatibility for arm64
  • b665ba6 all: use crypto/ed25519 instead of golang.org/x/crypto/ed25519
  • a1aeb9b ssh: add test cases for compatibility with old (buggy) clients
  • 28c53ff ssh: add MultiAlgorithmSigner
  • 3f0842a sha3: have ShakeHash extend hash.Hash
  • e90f1e1 cryptobyte: add uint48 methods
  • d359caa ssh: support for marshaling keys using the OpenSSH format
  • c5370d2 ssh: check the declared public key algo against decoded one
  • Additional commits viewable in compare view

Updates golang.org/x/tools from 0.12.0 to 0.14.0

Release notes

Sourced from golang.org/x/tools's releases.

gopls/v0.13.2

golang/go#61813

gopls/v0.13.1

This is a patch release to fix three issues with the v0.13.0 release:

  • golang/go#61670: broken imports due to corrupted export data
  • golang/go#61693: panic in stubmethods with variadic args
  • golang/go#61692: gofumpt integration panics when used with the new go directive syntax in go.mod files (e.g. go 1.21rc3)

Incidentally, this release also picks up a few fixes for references and renaming. See the milestone for the complete list of resolved issues.

Thank you to all who reported bugs. If are still encountering problems, please file an issue.

gopls/v0.13.0

These are release notes are identical to that of [email protected]. Thanks to all who tested the prerelease!

go install golang.org/x/tools/[email protected]

This release fixes several bugs and mitigates a few performance regressions. It also somewhat reduces the latency and CPU cost of most operations, and includes a few small additional features.

Performance improvements

While [email protected] drastically reduced memory usage, several operations got around 50% slower due to additional I/O reading from the filesystem and time spent decoding indexes. This release optimizes those additional operations to (in most cases) achieve parity or better with the equivalent operation in [email protected]. Additionally, this release reduces total CPU while typing or performing common operations.

Faster code actions

This release includes a particularly large performance improvement in the evaluation of code actions (including formatting/goimports on save). In the past, there have been several reasons why this operation was expensive -- VS Code users may recognize the getting code actions from "Go" pop-up. This release fundamentally changes the way code actions are evaluated so that almost all of the work is pre-computed. As a result, formatting and adding or removing imports on save should be much faster.

Analysis performance

A notable exception to CPU performance parity with [email protected] is running static analysis. In this case, the additional cost incurred by [email protected] was not a regression, but rather the cost of analyzing many more packages to enable "deep" static analysis (see "Improved static analysis" in the [email protected] release notes.

In smaller repositories, the cost of this additional analysis is negligible -- analysis does not run until you stop typing, and typically just re-evaluates the changed package. However, it was discovered that in large workspaces that import low-level packages with a very large API surface (such as a cloud provider SDK or proto library), certain quadratic factors involved with the encoding/decoding of analysis results can dominate the cost of analysis, and result in enormous resource consumption: overloading the CPU and exhausting all memory.

This release partially mitigates those quadratic factors, significantly reducing their cost and limiting concurrency so that they do not exhaust all resources. However, fully eliminating these factors will require additional work to fix their quadratic nature. Until that is done, analysis may continue to be costly on certain repos, especially if "staticcheck" is enabled (because staticcheck does more deep analysis than the default set of analyzers).

In the meantime, a notification is added to make you aware when analysis is slow, and provide an update on the progress of indexing "deep" analysis results. Canceling this notification will cancel the ongoing analysis, but it will resume after the next change. If you don't want to see these notifications, you can set the new "analysisProgressReporting" setting to "false". image.

New Features

Highlight deprecated symbols

Deprecated symbols and packages are now marked as such. To turn off this feature, disable the "deprecated" analysis.

image

... (truncated)

Commits
  • 3f4194e go.mod: update golang.org/x dependencies
  • 1e4ce7c internal/refactor/inline: yet more tweaks to everything test
  • ee20ddf internal/refactor/inline: permit return conversions in tailcall
  • db1d1e0 gopls/internal/lsp: go to definition from embed directive
  • 2be977e internal/refactor/inline: work around channel type misformatting
  • 0ba9c84 internal/fuzzy: several improvements for symbol matching
  • c2725ad gopls: update x/telemetry dependency
  • e8722c0 go/types/internal/play: show types.Selection information
  • a819c61 internal/refactor/inline: eliminate unnecessary binding decl
  • 102b64b internal/refactor/inline: tweak everything-test docs again
  • Additional commits viewable in compare view

Updates gorm.io/driver/mysql from 1.5.1 to 1.5.2

Commits
  • 2a61ba0 When adding a new column to a table, include a primary key if the field is ei...
  • 386f545 Update README.md (#126)
  • d04acd7 build(deps): bump actions/checkout from 3 to 4 (#133)
  • 48b6526 feat: reference for error codes added
  • 3f88908 feat: ErrForeignKeyViolated implemented
  • 91dcda2 ci: added build & test jobs (#121)
  • See full diff in compare view

Updates gorm.io/driver/postgres from 1.5.2 to 1.5.3

Commits

Updates gorm.io/driver/sqlite from 1.5.3 to 1.5.4

Commits

Updates gorm.io/gorm from 1.25.4 to 1.25.5

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the go-deps group with 8 updates
682d0d2 
Bumps the go-deps group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/docker/docker](https://github.com/docker/docker) | `24.0.5+incompatible` | `24.0.6+incompatible` |
| [github.com/go-gormigrate/gormigrate/v2](https://github.com/go-gormigrate/gormigrate) | `2.1.0` | `2.1.1` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.12.0` | `0.14.0` |
| [golang.org/x/tools](https://github.com/golang/tools) | `0.12.0` | `0.14.0` |
| [gorm.io/driver/mysql](https://github.com/go-gorm/mysql) | `1.5.1` | `1.5.2` |
| [gorm.io/driver/postgres](https://github.com/go-gorm/postgres) | `1.5.2` | `1.5.3` |
| [gorm.io/driver/sqlite](https://github.com/go-gorm/sqlite) | `1.5.3` | `1.5.4` |
| [gorm.io/gorm](https://github.com/go-gorm/gorm) | `1.25.4` | `1.25.5` |


Updates `github.com/docker/docker` from 24.0.5+incompatible to 24.0.6+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v24.0.5...v24.0.6)

Updates `github.com/go-gormigrate/gormigrate/v2` from 2.1.0 to 2.1.1
- [Release notes](https://github.com/go-gormigrate/gormigrate/releases)
- [Changelog](https://github.com/go-gormigrate/gormigrate/blob/master/CHANGELOG.md)
- [Commits](go-gormigrate/gormigrate@v2.1.0...v2.1.1)

Updates `golang.org/x/crypto` from 0.12.0 to 0.14.0
- [Commits](golang/crypto@v0.12.0...v0.14.0)

Updates `golang.org/x/tools` from 0.12.0 to 0.14.0
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](golang/tools@v0.12.0...v0.14.0)

Updates `gorm.io/driver/mysql` from 1.5.1 to 1.5.2
- [Commits](go-gorm/mysql@v1.5.1...v1.5.2)

Updates `gorm.io/driver/postgres` from 1.5.2 to 1.5.3
- [Commits](go-gorm/postgres@v1.5.2...v1.5.3)

Updates `gorm.io/driver/sqlite` from 1.5.3 to 1.5.4
- [Commits](go-gorm/sqlite@v1.5.3...v1.5.4)

Updates `gorm.io/gorm` from 1.25.4 to 1.25.5
- [Release notes](https://github.com/go-gorm/gorm/releases)
- [Commits](go-gorm/gorm@v1.25.4...v1.25.5)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: github.com/go-gormigrate/gormigrate/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: golang.org/x/crypto
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: golang.org/x/tools
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: gorm.io/driver/mysql
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: gorm.io/driver/postgres
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: gorm.io/driver/sqlite
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: gorm.io/gorm
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Oct 16, 2023
@github-actions github-actions bot merged commit 00a51fa into master Oct 16, 2023
3 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/go-deps-c3f62450b5 branch October 16, 2023 15:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants