chore: bump github.com/in-toto/archivista from 0.5.1 to 0.5.3 #321

dependabot · 2024-08-05T16:43:51Z

Bumps github.com/in-toto/archivista from 0.5.1 to 0.5.3.

Release notes

Sourced from github.com/in-toto/archivista's releases.

v0.5.3

Changelog

What's Changed

Add config options for http read and write timeouts by @jkjell in in-toto/archivista#345

Full Changelog: in-toto/archivista@v0.5.2...v0.5.3

v0.5.2

Changelog

What's Changed

chore: bump step-security/harden-runner from 2.8.0 to 2.8.1 by @dependabot in in-toto/archivista#303

chore: bump github/codeql-action from 3.25.7 to 3.25.8 by @dependabot in in-toto/archivista#302

chore: bump actions/dependency-review-action from 4.3.2 to 4.3.3 by @dependabot in in-toto/archivista#301

chore: bump github.com/minio/minio-go/v7 from 7.0.70 to 7.0.71 by @dependabot in in-toto/archivista#300

chore: bump github.com/99designs/gqlgen from 0.17.47 to 0.17.48 by @dependabot in in-toto/archivista#299

chore: bump golang from 9bdd569 to 6522f0c by @dependabot in in-toto/archivista#313

chore: bump testifysec/witness-run-action from 0.1.5 to 0.2.0 by @dependabot in in-toto/archivista#306

chore: bump github.com/vektah/gqlparser/v2 from 2.5.12 to 2.5.15 by @dependabot in in-toto/archivista#314

chore: bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by @dependabot in in-toto/archivista#311

chore: bump codecov/codecov-action from 4.4.1 to 4.5.0 by @dependabot in in-toto/archivista#308

chore: bump actions/checkout from 4.1.6 to 4.1.7 by @dependabot in in-toto/archivista#307

chore: bump github/codeql-action from 3.25.8 to 3.25.10 by @dependabot in in-toto/archivista#305

chore: bump github.com/in-toto/go-witness from 0.4.0 to 0.6.0 by @dependabot in in-toto/archivista#312

chore: bump github.com/99designs/gqlgen from 0.17.48 to 0.17.49 by @dependabot in in-toto/archivista#309

chore: bump alpine from 3.20.0 to 3.20.1 by @dependabot in in-toto/archivista#316

chore: bump golang from 6522f0c to ace6cc3 by @dependabot in in-toto/archivista#315

chore: bump github.com/minio/minio-go/v7 from 7.0.71 to 7.0.72 by @dependabot in in-toto/archivista#317

chore: bump peter-evans/create-pull-request from 6.0.5 to 6.1.0 by @dependabot in in-toto/archivista#318

chore: bump github/codeql-action from 3.25.10 to 3.25.11 by @dependabot in in-toto/archivista#320

chore: bump golang from 1.22.4-alpine to 1.22.5-alpine by @dependabot in in-toto/archivista#323

chore: bump actions/upload-artifact from 4.3.3 to 4.3.4 by @dependabot in in-toto/archivista#324

chore: bump github.com/minio/minio-go/v7 from 7.0.72 to 7.0.73 by @dependabot in in-toto/archivista#325

feat: allow envFrom for specifying environment variables from configmap/secrets by @ericwyles in in-toto/archivista#326

chore: bump github/codeql-action from 3.25.11 to 3.25.12 by @dependabot in in-toto/archivista#327

chore: bump actions/dependency-review-action from 4.3.3 to 4.3.4 by @dependabot in in-toto/archivista#328

chore: bump actions/setup-go from 5.0.1 to 5.0.2 by @dependabot in in-toto/archivista#329

chore: bump actions/setup-python from 5.1.0 to 5.1.1 by @dependabot in in-toto/archivista#330

chore(ci): build images with dockerfile instead of ko by @mikhailswift in in-toto/archivista#332

chore: bump alpine from 3.20.1 to 3.20.2 by @dependabot in in-toto/archivista#337

chore: bump golang from 8c9183f to ff45d87 by @dependabot in in-toto/archivista#336

chore: bump github/codeql-action from 3.25.12 to 3.25.13 by @dependabot in in-toto/archivista#334

chore: bump step-security/harden-runner from 2.8.1 to 2.9.0 by @dependabot in in-toto/archivista#333

chore: bump github.com/minio/minio-go/v7 from 7.0.73 to 7.0.74 by @dependabot in in-toto/archivista#331

chore: bump docker/login-action from 3.2.0 to 3.3.0 by @dependabot in in-toto/archivista#335

chore: bump golang from ff45d87 to 0d3653d by @dependabot in in-toto/archivista#338

chore: bump entgo.io/ent from 0.13.1 to 0.14.0 by @dependabot in in-toto/archivista#340

chore: bump ossf/scorecard-action from 2.3.3 to 2.4.0 by @dependabot in in-toto/archivista#342

... (truncated)

Commits

b2ace76 Add config options for http read and write timeouts (#345)
3b8f3e8 build: restrict db migrations to related db changes (#344)
60a63ff Update README.md (#339)
47d399f chore: bump github/codeql-action from 3.25.13 to 3.25.15 (#343)
5fce8cd chore: bump ossf/scorecard-action from 2.3.3 to 2.4.0 (#342)
45fe536 chore: bump entgo.io/ent from 0.13.1 to 0.14.0 (#340)
6ac9b62 chore: bump golang from ff45d87 to 0d3653d (#338)
3b0695c chore: bump docker/login-action from 3.2.0 to 3.3.0 (#335)
8db289d chore: bump github.com/minio/minio-go/v7 from 7.0.73 to 7.0.74 (#331)
af9e13d chore: bump step-security/harden-runner from 2.8.1 to 2.9.0 (#333)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/in-toto/archivista](https://github.com/in-toto/archivista) from 0.5.1 to 0.5.3. - [Release notes](https://github.com/in-toto/archivista/releases) - [Changelog](https://github.com/in-toto/archivista/blob/main/.goreleaser.yaml) - [Commits](in-toto/archivista@v0.5.1...v0.5.3) --- updated-dependencies: - dependency-name: github.com/in-toto/archivista dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Aug 5, 2024

jkjell force-pushed the dependabot/go_modules/github.com/in-toto/archivista-0.5.3 branch from ec299ce to 0c0ffb0 Compare August 12, 2024 02:02

jkjell approved these changes Aug 12, 2024

View reviewed changes

jkjell merged commit b4fe2de into main Aug 12, 2024
16 checks passed

jkjell deleted the dependabot/go_modules/github.com/in-toto/archivista-0.5.3 branch August 12, 2024 02:05

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore: bump github.com/in-toto/archivista from 0.5.1 to 0.5.3 #321

chore: bump github.com/in-toto/archivista from 0.5.1 to 0.5.3 #321

dependabot bot commented on behalf of github Aug 5, 2024

chore: bump github.com/in-toto/archivista from 0.5.1 to 0.5.3 #321

chore: bump github.com/in-toto/archivista from 0.5.1 to 0.5.3 #321

Conversation

dependabot bot commented on behalf of github Aug 5, 2024

v0.5.3

Changelog

What's Changed

v0.5.2

Changelog

What's Changed