-
Notifications
You must be signed in to change notification settings - Fork 135
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Bump the all group with 13 updates #917
Conversation
Bumps the all group with 13 updates: | Package | From | To | | --- | --- | --- | | [github.com/grafeas/grafeas](https://github.com/grafeas/grafeas) | `0.2.2` | `0.2.3` | | [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) | `2.1.1` | `2.2.0` | | [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.2.2` | `1.3.0` | | [github.com/sigstore/sigstore](https://github.com/sigstore/sigstore) | `1.7.2` | `1.7.3` | | [github.com/sigstore/sigstore/pkg/signature/kms/aws](https://github.com/sigstore/sigstore) | `1.7.2` | `1.7.3` | | [github.com/sigstore/sigstore/pkg/signature/kms/azure](https://github.com/sigstore/sigstore) | `1.7.2` | `1.7.3` | | [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore) | `1.7.2` | `1.7.3` | | [github.com/sigstore/sigstore/pkg/signature/kms/hashivault](https://github.com/sigstore/sigstore) | `1.7.2` | `1.7.3` | | [github.com/tektoncd/pipeline](https://github.com/tektoncd/pipeline) | `0.50.1` | `0.51.0` | | [gocloud.dev/docstore/mongodocstore](https://github.com/google/go-cloud) | `0.33.0` | `0.34.0` | | [gocloud.dev/pubsub/kafkapubsub](https://github.com/google/go-cloud) | `0.33.0` | `0.34.0` | | [golang.org/x/crypto](https://github.com/golang/crypto) | `0.12.0` | `0.13.0` | | [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.57.0` | `1.58.0` | Updates `github.com/grafeas/grafeas` from 0.2.2 to 0.2.3 - [Release notes](https://github.com/grafeas/grafeas/releases) - [Changelog](https://github.com/grafeas/grafeas/blob/master/CHANGELOG.md) - [Commits](grafeas/grafeas@v0.2.2...v0.2.3) Updates `github.com/sigstore/cosign/v2` from 2.1.1 to 2.2.0 - [Release notes](https://github.com/sigstore/cosign/releases) - [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md) - [Commits](sigstore/cosign@v2.1.1...v2.2.0) Updates `github.com/sigstore/rekor` from 1.2.2 to 1.3.0 - [Release notes](https://github.com/sigstore/rekor/releases) - [Changelog](https://github.com/sigstore/rekor/blob/main/CHANGELOG.md) - [Commits](sigstore/rekor@v1.2.2...v1.3.0) Updates `github.com/sigstore/sigstore` from 1.7.2 to 1.7.3 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.7.2...v1.7.3) Updates `github.com/sigstore/sigstore/pkg/signature/kms/aws` from 1.7.2 to 1.7.3 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.7.2...v1.7.3) Updates `github.com/sigstore/sigstore/pkg/signature/kms/azure` from 1.7.2 to 1.7.3 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.7.2...v1.7.3) Updates `github.com/sigstore/sigstore/pkg/signature/kms/gcp` from 1.7.2 to 1.7.3 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.7.2...v1.7.3) Updates `github.com/sigstore/sigstore/pkg/signature/kms/hashivault` from 1.7.2 to 1.7.3 - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](sigstore/sigstore@v1.7.2...v1.7.3) Updates `github.com/tektoncd/pipeline` from 0.50.1 to 0.51.0 - [Release notes](https://github.com/tektoncd/pipeline/releases) - [Changelog](https://github.com/tektoncd/pipeline/blob/main/releases.md) - [Commits](tektoncd/pipeline@v0.50.1...v0.51.0) Updates `gocloud.dev/docstore/mongodocstore` from 0.33.0 to 0.34.0 - [Release notes](https://github.com/google/go-cloud/releases) - [Commits](google/go-cloud@v0.33.0...v0.34.0) Updates `gocloud.dev/pubsub/kafkapubsub` from 0.33.0 to 0.34.0 - [Release notes](https://github.com/google/go-cloud/releases) - [Commits](google/go-cloud@v0.33.0...v0.34.0) Updates `golang.org/x/crypto` from 0.12.0 to 0.13.0 - [Commits](golang/crypto@v0.12.0...v0.13.0) Updates `google.golang.org/grpc` from 1.57.0 to 1.58.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.57.0...v1.58.0) --- updated-dependencies: - dependency-name: github.com/grafeas/grafeas dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/cosign/v2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: github.com/sigstore/rekor dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: github.com/sigstore/sigstore dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/aws dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/azure dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/hashivault dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all - dependency-name: github.com/tektoncd/pipeline dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: gocloud.dev/docstore/mongodocstore dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: gocloud.dev/pubsub/kafkapubsub dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all ... Signed-off-by: dependabot[bot] <[email protected]>
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Hi @dependabot[bot]. Thanks for your PR. I'm waiting for a tektoncd member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
@dependabot[bot]: The following tests failed, say
Full PR test history. Your PR dashboard. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here. |
Looks like these dependencies are updatable in another way, so this is no longer needed. |
Bumps the all group with 13 updates:
0.2.2
0.2.3
2.1.1
2.2.0
1.2.2
1.3.0
1.7.2
1.7.3
1.7.2
1.7.3
1.7.2
1.7.3
1.7.2
1.7.3
1.7.2
1.7.3
0.50.1
0.51.0
0.33.0
0.34.0
0.33.0
0.34.0
0.12.0
0.13.0
1.57.0
1.58.0
Updates
github.com/grafeas/grafeas
from 0.2.2 to 0.2.3Release notes
Sourced from github.com/grafeas/grafeas's releases.
Changelog
Sourced from github.com/grafeas/grafeas's changelog.
Commits
9879eca
Merge pull request #602 from wkozlik/master9f3420d
Release v0.2.31fe2449
Merge pull request #599 from yeshwanth1993/master2c5c15c
Add vulnerabilityId field to the VexAssessment Note and VexAssessment proto i...d273654
Merge pull request #598 from sherzberg-1/sbom5ee9a40
More test updates.8c2079f
Fix test description8d48f5b
Fix failing test420da5c
Add intotslsaprovenancev1 to the build proto.fe5c9c1
Merge pull request #597 from sherzberg-1/sbomUpdates
github.com/sigstore/cosign/v2
from 2.1.1 to 2.2.0Release notes
Sourced from github.com/sigstore/cosign/v2's releases.
Changelog
Sourced from github.com/sigstore/cosign/v2's changelog.
Commits
546f1c5
add changelog for v2.2.0 (#3198)126474c
add mTLS to TSA for sign-blob command (#3200)5f747c2
chore(deps): bump github.com/buildkite/agent/v3 from 3.52.0 to 3.52.1 (#3204)2c5efb8
chore(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#3203)d557f47
Add SECURITY.md file (#3201)1e9bac4
chore(deps): bump github.com/sigstore/timestamp-authority (#3199)beefa3b
Docs/update links (#3196)b6c986f
chore(deps): bump go.step.sm/crypto from 0.34.0 to 0.35.0 (#3194)8df14d8
chore(deps): bump google.golang.org/api from 0.137.0 to 0.138.0 (#3195)fdb1496
chore(deps): bump github.com/buildkite/agent/v3 from 3.51.0 to 3.52.0 (#3193)Updates
github.com/sigstore/rekor
from 1.2.2 to 1.3.0Release notes
Sourced from github.com/sigstore/rekor's releases.
... (truncated)
Changelog
Sourced from github.com/sigstore/rekor's changelog.
Commits
ed3d0b1
changelog for v1.3.0 (#1657)f0fe617
Update openapi.yaml (#1655)be96b95
build(deps): Bump google/cloud-sdk from4769605
to648eb94
(#1656)a0a4820
build(deps): Bump google/cloud-sdk fromf656d61
to4769605
(#1654)4c6df3e
pass transient errors through retrieveLogEntry (#1653)f3d6483
return full entryID on HTTP 409 responses (#1650)2934605
set min go version to 1.21 (#1651)a9f538d
build(deps): Bump github.com/go-playground/validator/v10 (#1648)3a89ae4
build(deps): Bump google/cloud-sdk from 443.0.0 to 444.0.0 (#1647)6208b39
build(deps): Bump google.golang.org/api from 0.135.0 to 0.138.0 (#1646)Updates
github.com/sigstore/sigstore
from 1.7.2 to 1.7.3Release notes
Sourced from github.com/sigstore/sigstore's releases.
Commits
e759e0f
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1371)c6f738b
build(deps): bump hashicorp/vault from 1.14.1 to 1.14.2 in /test/e2e (#1370)74a4c9a
add VerifySignature test, cleanup other tests and print statements (#1369)01dd5d4
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1368)bf2d820
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1367)df3ca86
build(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#1362)0007deb
build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1364)901129e
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1366)f3fef76
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azk...b103efe
build(deps): bump github.com/jellydator/ttlcache/v3 (#1358)Updates
github.com/sigstore/sigstore/pkg/signature/kms/aws
from 1.7.2 to 1.7.3Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/aws's releases.
Commits
e759e0f
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1371)c6f738b
build(deps): bump hashicorp/vault from 1.14.1 to 1.14.2 in /test/e2e (#1370)74a4c9a
add VerifySignature test, cleanup other tests and print statements (#1369)01dd5d4
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1368)bf2d820
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1367)df3ca86
build(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#1362)0007deb
build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1364)901129e
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1366)f3fef76
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azk...b103efe
build(deps): bump github.com/jellydator/ttlcache/v3 (#1358)Updates
github.com/sigstore/sigstore/pkg/signature/kms/azure
from 1.7.2 to 1.7.3Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/azure's releases.
Commits
e759e0f
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1371)c6f738b
build(deps): bump hashicorp/vault from 1.14.1 to 1.14.2 in /test/e2e (#1370)74a4c9a
add VerifySignature test, cleanup other tests and print statements (#1369)01dd5d4
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1368)bf2d820
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1367)df3ca86
build(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#1362)0007deb
build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1364)901129e
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1366)f3fef76
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azk...b103efe
build(deps): bump github.com/jellydator/ttlcache/v3 (#1358)Updates
github.com/sigstore/sigstore/pkg/signature/kms/gcp
from 1.7.2 to 1.7.3Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/gcp's releases.
Commits
e759e0f
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1371)c6f738b
build(deps): bump hashicorp/vault from 1.14.1 to 1.14.2 in /test/e2e (#1370)74a4c9a
add VerifySignature test, cleanup other tests and print statements (#1369)01dd5d4
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1368)bf2d820
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1367)df3ca86
build(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#1362)0007deb
build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1364)901129e
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1366)f3fef76
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azk...b103efe
build(deps): bump github.com/jellydator/ttlcache/v3 (#1358)Updates
github.com/sigstore/sigstore/pkg/signature/kms/hashivault
from 1.7.2 to 1.7.3Release notes
Sourced from github.com/sigstore/sigstore/pkg/signature/kms/hashivault's releases.
Commits
e759e0f
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1371)c6f738b
build(deps): bump hashicorp/vault from 1.14.1 to 1.14.2 in /test/e2e (#1370)74a4c9a
add VerifySignature test, cleanup other tests and print statements (#1369)01dd5d4
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1368)bf2d820
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1367)df3ca86
build(deps): bump actions/checkout from 3.5.3 to 3.6.0 (#1362)0007deb
build(deps): bump github.com/aws/aws-sdk-go-v2/config (#1364)901129e
build(deps): bump github.com/aws/aws-sdk-go in /pkg/signature/kms/aws (#1366)f3fef76
build(deps): bump github.com/Azure/azure-sdk-for-go/sdk/security/keyvault/azk...b103efe
build(deps): bump github.com/jellydator/ttlcache/v3 (#1358)Updates
github.com/tektoncd/pipeline
from 0.50.1 to 0.51.0Release notes
Sourced from github.com/tektoncd/pipeline's releases.
... (truncated)
Commits
2299b15
Bump github.com/golangci/golangci-lint from 1.54.1 to 1.54.2 in /tools445734d
Add webhook validation for remote Tasks7884311
fix: refine error resean with invalid pipelinename in taskrunspecs7554dcd
Add service for Resolvers - metrics, probes and tracingfff25b1
docs: Update references to examples from v1beta1 to v11335e0e
Bump github.com/golangci/golangci-lint from 1.54.0 to 1.54.1 in /tools6a857f7
[TEP-0135] Improve workspace related documentation9698ef7
Fix release pipeline (publish-to-bucket)e62bb60
Bump github.com/golangci/golangci-lint from 1.53.3 to 1.54.0 in /tools6117b7a
fix: add taskRunTemplate field validationUpdates
gocloud.dev/docstore/mongodocstore
from 0.33.0 to 0.34.0Release notes
Sourced from gocloud.dev/docstore/mongodocstore's releases.
Commits
22c0c79
all: prelease (#3308)55ed7f7
aws/rds: Switch AWS RDS CA bundle to the officially documented URL (#3307)d6f90a4
Clean up deployment instructions a bit moredfd6143
Update website deployment instructions62841e7
blob/gcsblob: Don't hard-fail if no DefaultCredentials are found (#3306)1b4bd15
blob/s3blob: Fix example (#3305)7298f99
all: update to go 1.21 (#3301)dee61a5
blob/fileblob: Fix for URL parameter for no_tmp_dir option. (#3300)cfe20ca
blob/fileblob: Add docstring about tempdirs (#3296)9b62f46
blob/fileblob: Add an option to avoid using os.TempDir for temp files (#3295)Updates
gocloud.dev/pubsub/kafkapubsub
from 0.33.0 to 0.34.0Release notes
Sourced from gocloud.dev/pubsub/kafkapubsub's releases.
Commits
22c0c79
all: prelease (#3308)55ed7f7
aws/rds: Switch AWS RDS CA bundle to the officially documented URL (#3307)d6f90a4
Clean up deployment instructions a bit moredfd6143
Update website deployment instructions62841e7
blob/gcsblob: Don't hard-fail if no DefaultCredentials are found (#3306)1b4bd15
blob/s3blob: Fix example (#3305)7298f99
all: update to go 1.21 (#3301)dee61a5
blob/fileblob: Fix for URL parameter for no_tmp_dir option. (#3300)cfe20ca
blob/fileblob: Add docstring about tempdirs (#3296)9b62f46
blob/fileblob: Add an option to avoid using os.TempDir for temp files (#3295)Updates
golang.org/x/crypto
from 0.12.0 to 0.13.0Commits
0d375be
go.mod: update golang.org/x dependenciesUpdates
google.golang.org/grpc
from 1.57.0 to 1.58.0Release notes
Sourced from google.golang.org/grpc's releases.
Commits
c2b0797
Change version to 1.58.0 (#6579)0467e47
balancer/leastrequest: Cache atomic load and also add concurrent rpc test (#6...5d1c0ae
leastrequest: fix data race in leastrequest picker (#6606)e26457d
stream: swallow Header errors as we used to; RecvMsg can still return it (#6591)4c9777c
clusterresolver: fix deadlock when dns resolver responds inline with update o...81b9df2
idle: move idleness manager to separate package and ~13s of tests into it (#6...7d35b8e
test: speed up TestServiceConfigTimeoutTD from 1.8s to 0.03s (#6571)d51b3f4
interop/grpc_testing: update protos from grpc-proto repo (#6567)fe1519e
client: fix ClientStream.Header() behavior (#6557)8a2c220
cdsbalancer: test cleanup part 2/N (#6554)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignor...Description has been truncated