Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0 #220
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
…esting Reference: #220 Consuming developers should not directly need to worry about `github.com/hashicorp/go-version` unless they want to use that Go module. Provider-defined functions testing was releasing in this template repository before the Terraform 1.8.0 version variable in the terraform-plugin-testing `tfversion` package was available. Now that the variable is present, we can remove go-version as a direct dependency, simplifying both the code and dependency management slightly.
|
#221 should prevent these Dependabot go-version updates going forward (unless there's a security issue). |
…esting (#221) Reference: #220 Consuming developers should not directly need to worry about `github.com/hashicorp/go-version` unless they want to use that Go module. Provider-defined functions testing was releasing in this template repository before the Terraform 1.8.0 version variable in the terraform-plugin-testing `tfversion` package was available. Now that the variable is present, we can remove go-version as a direct dependency, simplifying both the code and dependency management slightly.
Bumps [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) from 1.6.0 to 1.7.0. - [Release notes](https://github.com/hashicorp/go-version/releases) - [Changelog](https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md) - [Commits](hashicorp/go-version@v1.6.0...v1.7.0) --- updated-dependencies: - dependency-name: github.com/hashicorp/go-version dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/go_modules/github.com/hashicorp/go-version-1.7.0
branch
from
6914bbb
to
da57d86
Compare
|
Indirect dependency update is not immediately necessary and especially no longer needed after #221 -- this update will naturally happen when terraform-plugin-testing or another direct dependency starts using it. 👍 |
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
bot
deleted the
dependabot/go_modules/github.com/hashicorp/go-version-1.7.0
branch
Bumps github.com/hashicorp/go-version from 1.6.0 to 1.7.0.
Release notes
Sourced from github.com/hashicorp/go-version's releases.
Changelog
Sourced from github.com/hashicorp/go-version's changelog.
Commits
fcaa532Update CHANGELOG.mdb85381aUpdate CHANGELOG.mdd55f214Implement the Scan and driver.Value SQL interfaces (#133)e04a866remove reflection dependency (#91)94bab9e[COMPLIANCE] Add Copyright and License Headers (#115)73ddc63github: Change Dependabot to only manage HashiCorp-owned Actionsbf1144eSEC-090: Automated trusted workflow pinning (2023-04-05) (#124)644291dBump actions/cache from 3.0.11 to 3.2.5 (#116)8f6487bBump actions/upload-artifact from 3.1.1 to 3.1.2 (#112)7f856b8Bump actions/checkout from 3.2.0 to 3.3.0 (#111)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)