chore(deps)(deps): bump the patch-and-minor group across 1 directory with 7 updates#44
Open
dependabot[bot] wants to merge 1 commit into
Open
Conversation
…with 7 updates Bumps the patch-and-minor group with 5 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/coreos/go-oidc/v3](https://github.com/coreos/go-oidc) | `3.18.0` | `3.20.0` | | [github.com/go-webauthn/webauthn](https://github.com/go-webauthn/webauthn) | `0.17.3` | `0.17.4` | | [github.com/pion/webrtc/v4](https://github.com/pion/webrtc) | `4.2.12` | `4.2.16` | | [github.com/wneessen/go-mail](https://github.com/wneessen/go-mail) | `0.7.3` | `0.8.1` | | [gorm.io/gorm](https://github.com/go-gorm/gorm) | `1.31.1` | `1.31.2` | Updates `github.com/coreos/go-oidc/v3` from 3.18.0 to 3.20.0 - [Release notes](https://github.com/coreos/go-oidc/releases) - [Commits](coreos/go-oidc@v3.18.0...v3.20.0) Updates `github.com/go-webauthn/webauthn` from 0.17.3 to 0.17.4 - [Release notes](https://github.com/go-webauthn/webauthn/releases) - [Changelog](https://github.com/go-webauthn/webauthn/blob/master/CHANGELOG.md) - [Commits](go-webauthn/webauthn@v0.17.3...v0.17.4) Updates `github.com/pion/webrtc/v4` from 4.2.12 to 4.2.16 - [Release notes](https://github.com/pion/webrtc/releases) - [Commits](pion/webrtc@v4.2.12...v4.2.16) Updates `github.com/wneessen/go-mail` from 0.7.3 to 0.8.1 - [Release notes](https://github.com/wneessen/go-mail/releases) - [Commits](wneessen/go-mail@v0.7.3...v0.8.1) Updates `golang.org/x/crypto` from 0.51.0 to 0.54.0 - [Commits](golang/crypto@v0.51.0...v0.54.0) Updates `golang.org/x/sys` from 0.44.0 to 0.47.0 - [Commits](golang/sys@v0.44.0...v0.47.0) Updates `gorm.io/gorm` from 1.31.1 to 1.31.2 - [Release notes](https://github.com/go-gorm/gorm/releases) - [Commits](go-gorm/gorm@v1.31.1...v1.31.2) --- updated-dependencies: - dependency-name: github.com/coreos/go-oidc/v3 dependency-version: 3.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: patch-and-minor - dependency-name: github.com/go-webauthn/webauthn dependency-version: 0.17.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-and-minor - dependency-name: github.com/pion/webrtc/v4 dependency-version: 4.2.16 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-and-minor - dependency-name: github.com/wneessen/go-mail dependency-version: 0.8.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: patch-and-minor - dependency-name: golang.org/x/crypto dependency-version: 0.54.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: patch-and-minor - dependency-name: golang.org/x/sys dependency-version: 0.47.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: patch-and-minor - dependency-name: gorm.io/gorm dependency-version: 1.31.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: patch-and-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Contributor
Author
LabelsThe following labels could not be found: Please fix the above issues or remove invalid values from |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the patch-and-minor group with 5 updates in the / directory:
3.18.03.20.00.17.30.17.44.2.124.2.160.7.30.8.11.31.11.31.2Updates
github.com/coreos/go-oidc/v3from 3.18.0 to 3.20.0Release notes
Sourced from github.com/coreos/go-oidc/v3's releases.
Commits
75dfa5coidc: add constants for "email" and "profile" scopesa89f046oidc: add API for determining when issuer URLs mismatch6a69b6dreadme: update README and docsf9049c9oidc: ignore JWKs with unknown signing algorithms rather than failing2f178e0SECURITY.md: add a security policy and point to project-level reportingb3bc7daoidc: improve documentation for APIs0db9053oidc: modernize with new Go APIs4204f0boidc: add support for validating back-channel logout tokensf77e01cfix: Key refresh should set no-cache to get most up to date keysUpdates
github.com/go-webauthn/webauthnfrom 0.17.3 to 0.17.4Release notes
Sourced from github.com/go-webauthn/webauthn's releases.
Changelog
Sourced from github.com/go-webauthn/webauthn's changelog.
Commits
bc5e90drelease: v0.17.4 (#695)eaeedc6build(deps): update module github.com/go-webauthn/x to v0.2.6 (#694)d41c63dbuild(deps): update step-security/harden-runner action to v2.19.4 (#693)5eb52ecbuild(deps): update codecov/codecov-action action to v6.0.1 (#692)b9202d1build(deps): update step-security/harden-runner action to v2.19.3 (#690)6b95913build(deps): update github/codeql-action action to v4.35.5 (#691)7aca952build(deps): update step-security/harden-runner action to v2.19.2 (#689)a0459c6ci: apply zizmor recommendations (#688)Updates
github.com/pion/webrtc/v4from 4.2.12 to 4.2.16Release notes
Sourced from github.com/pion/webrtc/v4's releases.
Commits
3acb04cAdd the ability to write tracks OpusTagsb1b0614Add multi-track ogg writing API5636863Update module github.com/pion/sctp to v1.10.343b3d65Fix flaky test detach race7a223a6Add StartContext to ICE and DTLS Transport (#3371)979fc84Update module github.com/pion/sctp to v1.10.2 (#3457)7306350Update module github.com/pion/datachannel to v1.6.2 (#3456)0b2fda9Update module github.com/pion/sctp to v1.10.1 (#3455)7a9d72cUpdate module github.com/pion/stun/v3 to v3.1.6 (#3452)7991a3aUpdate module github.com/pion/sdp/v3 to v3.0.19 (#3454)Updates
github.com/wneessen/go-mailfrom 0.7.3 to 0.8.1Release notes
Sourced from github.com/wneessen/go-mail's releases.
... (truncated)
Commits
2ac36f0Update doc.go1550ad6Merge pull request #598 from wneessen/churn/ci-cd-crosscompile896ceb6Fix linux/38680296ecAdd linux 3867f544b1Only execute cross compile tests we can actually use47f7a74Enable CGOf3ab24eAdd cross-compile test to CIa0f7cbeMerge pull request #597 from wneessen/dependabot/go_modules/golang.org/x/cryp...86f6131Bump golang.org/x/crypto from 0.53.0 to 0.54.02b6e523Merge pull request #592 from wneessen/dependabot/github_actions/github/codeql...Updates
golang.org/x/cryptofrom 0.51.0 to 0.54.0Commits
cdce021go.mod: update golang.org/x dependenciesd9474ccopenpgp: make the deprecation message more explicit7626c50ssh: verify declared key type matches decoded key in authorized_keys0471e79ssh/agent: enforce strict limits on DSA key parameters6435c37ssh: sanitize client disconnect messages7d695dassh/agent: drain channel stderr in agent forwarders5b7f841acme/autocert: fix data race in Manager.createCert0b316e7argon2: update RFC 9106 parameter recommendations55aec0ax509roots/fallback: update bundle5f2de1ainternal: remove wycheproof testsUpdates
golang.org/x/sysfrom 0.44.0 to 0.47.0Commits
9e7e939cpu: handle vendor suffixes in parseReleasef6fb8a1unix: use epoll_pwait rather than epoll_waitf3eeabfwindows: avoid length overflow in NewNTString3cb6647unix: update glibc to 2.43c507910windows: document safe usage of TrusteeValued58dcfaunix: add GPIO constants and structs397d5f8unix: update to Linux kernel 7.00a387f7cpu: detect zbc extension on riscv64758f71ccpu: add LLACQ_SCREL, SCQ, DBAR_HINTS detection for loong6499666aeunix: merge Linux readv/writev implementation with Darwin/OpenBSDUpdates
gorm.io/gormfrom 1.31.1 to 1.31.2Release notes
Sourced from gorm.io/gorm's releases.
Commits
1d6ce99Fix potential rows leak on panic by deferring rows.Close() (#7798)f648834perf: replace fmt.Sprintf with strconv in ExplainSQL numeric formatting (#7796)49cd6b8Document NowFunc timezone behavior (#7799)d0ee5e2correct typo and rename fileType to fieldType in AlterColumn (#7748)2a22022fix: panic when using clause.Returning with CreateInBatches (#7768)3322929fix(migrator): add nil guards to ColumnType methods to prevent panic (#7767)40cd2afci: switch tests Go matrix to stable/oldstable and update setup-go (#7726)ba38501chore(ci): bump actions/stale to v9 (#7696)c1f742dfix: don't override alterColumn when defaults match (#7728)c14d3acupdate github ci golang versionDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions