Skip to content

Commit dfbacbc

Browse files
jmank88jmank88
committed
add make dependabot
1 parent 8115835 commit dfbacbc

9 files changed

Lines changed: 182 additions & 171 deletions

File tree

Makefile

Lines changed: 8 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -59,3 +59,11 @@ lint:
5959
modgraph: gomods
6060
go install github.com/jmank88/modgraph@v0.1.0
6161
./modgraph > go.md
62+
63+
.PHONY: dependabot
64+
dependabot: gomods
65+
gh api --paginate -H "Accept: application/vnd.github+json" --method GET \
66+
'/repos/smartcontractkit/chainlink-common/dependabot/alerts?state=open&ecosystem=Go' | \
67+
jq -r '.[] | select(.security_vulnerability.first_patched_version != null) | .dependency.manifest_path |= rtrimstr("go.mod") | "./\(.dependency.manifest_path) \(.security_vulnerability.package.name) \(.security_vulnerability.first_patched_version.identifier)"' | \
68+
xargs -L1 -t bash -c 'cd $$0 && go get $$1@v$$2 || go get $$1'
69+
gomods tidy

go.mod

Lines changed: 9 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -53,7 +53,7 @@ require (
5353
github.com/smartcontractkit/libocr v0.0.0-20250912173940-f3ab0246e23d
5454
github.com/stretchr/testify v1.11.1
5555
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.63.0
56-
go.opentelemetry.io/otel v1.39.0
56+
go.opentelemetry.io/otel v1.40.0
5757
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc v0.12.2
5858
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp v0.12.2
5959
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc v1.36.0
@@ -64,20 +64,20 @@ require (
6464
go.opentelemetry.io/otel/exporters/stdout/stdoutmetric v1.36.0
6565
go.opentelemetry.io/otel/exporters/stdout/stdouttrace v1.36.0
6666
go.opentelemetry.io/otel/log v0.15.0
67-
go.opentelemetry.io/otel/metric v1.39.0
68-
go.opentelemetry.io/otel/sdk v1.39.0
67+
go.opentelemetry.io/otel/metric v1.40.0
68+
go.opentelemetry.io/otel/sdk v1.40.0
6969
go.opentelemetry.io/otel/sdk/log v0.15.0
70-
go.opentelemetry.io/otel/sdk/metric v1.39.0
71-
go.opentelemetry.io/otel/trace v1.39.0
70+
go.opentelemetry.io/otel/sdk/metric v1.40.0
71+
go.opentelemetry.io/otel/trace v1.40.0
7272
go.uber.org/zap v1.27.1
7373
golang.org/x/crypto v0.47.0
7474
golang.org/x/exp v0.0.0-20260112195511-716be5621a96
7575
golang.org/x/sync v0.19.0
7676
golang.org/x/time v0.14.0
7777
golang.org/x/tools v0.41.0
7878
gonum.org/v1/gonum v0.17.0
79-
google.golang.org/genproto/googleapis/rpc v0.0.0-20251029180050-ab9386a59fda
80-
google.golang.org/grpc v1.78.0
79+
google.golang.org/genproto/googleapis/rpc v0.0.0-20251202230838-ff82c1b0f217
80+
google.golang.org/grpc v1.79.3
8181
google.golang.org/protobuf v1.36.11
8282
gopkg.in/yaml.v3 v3.0.1
8383
sigs.k8s.io/yaml v1.4.0
@@ -89,7 +89,7 @@ require (
8989
github.com/bahlo/generic-list-go v0.2.0 // indirect
9090
github.com/beorn7/perks v1.0.1 // indirect
9191
github.com/buger/goterm v1.0.4 // indirect
92-
github.com/buger/jsonparser v1.1.1 // indirect
92+
github.com/buger/jsonparser v1.1.2 // indirect
9393
github.com/cenkalti/backoff/v5 v5.0.2 // indirect
9494
github.com/cespare/xxhash/v2 v2.3.0 // indirect
9595
github.com/cloudevents/sdk-go/binding/format/protobuf/v2 v2.16.1 // indirect
@@ -157,6 +157,6 @@ require (
157157
golang.org/x/term v0.39.0 // indirect
158158
golang.org/x/text v0.33.0 // indirect
159159
golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da // indirect
160-
google.golang.org/genproto/googleapis/api v0.0.0-20251029180050-ab9386a59fda // indirect
160+
google.golang.org/genproto/googleapis/api v0.0.0-20251202230838-ff82c1b0f217 // indirect
161161
gopkg.in/yaml.v2 v2.4.0 // indirect
162162
)

go.sum

Lines changed: 18 additions & 18 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

keystore/go.mod

Lines changed: 16 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -10,7 +10,7 @@ require (
1010
github.com/aws/aws-sdk-go-v2/service/kms v1.49.5
1111
github.com/btcsuite/btcd/btcec/v2 v2.3.4
1212
github.com/cosmos/cosmos-sdk v0.50.14
13-
github.com/ethereum/go-ethereum v1.16.8
13+
github.com/ethereum/go-ethereum v1.17.0
1414
github.com/gagliardetto/solana-go v1.13.0
1515
github.com/google/uuid v1.6.0
1616
github.com/hdevalence/ed25519consensus v0.2.0
@@ -41,7 +41,7 @@ require (
4141
cosmossdk.io/store v1.1.1 // indirect
4242
cosmossdk.io/x/tx v0.13.7 // indirect
4343
filippo.io/bigmod v0.1.0 // indirect
44-
filippo.io/edwards25519 v1.1.0 // indirect
44+
filippo.io/edwards25519 v1.1.1 // indirect
4545
filippo.io/nistec v0.0.4 // indirect
4646
github.com/99designs/go-keychain v0.0.0-20191008050251-8e49817e8af4 // indirect
4747
github.com/99designs/keyring v1.2.1 // indirect
@@ -66,9 +66,9 @@ require (
6666
github.com/bgentry/speakeasy v0.1.1-0.20220910012023-760eaf8b6816 // indirect
6767
github.com/bits-and-blooms/bitset v1.20.0 // indirect
6868
github.com/blendle/zapdriver v1.3.1 // indirect
69-
github.com/buger/jsonparser v1.1.1 // indirect
69+
github.com/buger/jsonparser v1.1.2 // indirect
7070
github.com/cenkalti/backoff/v4 v4.3.0 // indirect
71-
github.com/cenkalti/backoff/v5 v5.0.2 // indirect
71+
github.com/cenkalti/backoff/v5 v5.0.3 // indirect
7272
github.com/cespare/xxhash/v2 v2.3.0 // indirect
7373
github.com/cloudevents/sdk-go/binding/format/protobuf/v2 v2.16.1 // indirect
7474
github.com/cloudevents/sdk-go/v2 v2.16.1 // indirect
@@ -89,7 +89,6 @@ require (
8989
github.com/cosmos/ics23/go v0.11.0 // indirect
9090
github.com/cosmos/ledger-cosmos-go v0.14.0 // indirect
9191
github.com/crate-crypto/go-eth-kzg v1.4.0 // indirect
92-
github.com/crate-crypto/go-ipa v0.0.0-20240724233137-53bbb0ceb27a // indirect
9392
github.com/danieljoos/wincred v1.1.2 // indirect
9493
github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc // indirect
9594
github.com/deckarep/golang-set/v2 v2.6.0 // indirect
@@ -99,7 +98,6 @@ require (
9998
github.com/dustin/go-humanize v1.0.1 // indirect
10099
github.com/dvsekhvalnov/jose2go v1.7.0 // indirect
101100
github.com/ethereum/c-kzg-4844/v2 v2.1.5 // indirect
102-
github.com/ethereum/go-verkle v0.2.2 // indirect
103101
github.com/fatih/color v1.18.0 // indirect
104102
github.com/fsnotify/fsnotify v1.8.0 // indirect
105103
github.com/fxamacker/cbor/v2 v2.7.0 // indirect
@@ -131,7 +129,7 @@ require (
131129
github.com/gorilla/websocket v1.5.3 // indirect
132130
github.com/graph-gophers/graphql-go v1.5.0 // indirect
133131
github.com/grpc-ecosystem/grpc-gateway v1.16.0 // indirect
134-
github.com/grpc-ecosystem/grpc-gateway/v2 v2.26.3 // indirect
132+
github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.3 // indirect
135133
github.com/gsterjov/go-libsecret v0.0.0-20161001094733-a6f4afe4910c // indirect
136134
github.com/hashicorp/go-immutable-radix v1.3.1 // indirect
137135
github.com/hashicorp/go-metrics v0.5.3 // indirect
@@ -213,24 +211,24 @@ require (
213211
go.opencensus.io v0.24.0 // indirect
214212
go.opentelemetry.io/auto/sdk v1.2.1 // indirect
215213
go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.63.0 // indirect
216-
go.opentelemetry.io/otel v1.39.0 // indirect
214+
go.opentelemetry.io/otel v1.40.0 // indirect
217215
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc v0.12.2 // indirect
218216
go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp v0.12.2 // indirect
219217
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc v1.36.0 // indirect
220218
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp v1.36.0 // indirect
221-
go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.36.0 // indirect
219+
go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.39.0 // indirect
222220
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.36.0 // indirect
223-
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.36.0 // indirect
221+
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp v1.39.0 // indirect
224222
go.opentelemetry.io/otel/exporters/stdout/stdoutlog v0.13.0 // indirect
225223
go.opentelemetry.io/otel/exporters/stdout/stdoutmetric v1.36.0 // indirect
226224
go.opentelemetry.io/otel/exporters/stdout/stdouttrace v1.36.0 // indirect
227225
go.opentelemetry.io/otel/log v0.15.0 // indirect
228-
go.opentelemetry.io/otel/metric v1.39.0 // indirect
229-
go.opentelemetry.io/otel/sdk v1.39.0 // indirect
226+
go.opentelemetry.io/otel/metric v1.40.0 // indirect
227+
go.opentelemetry.io/otel/sdk v1.40.0 // indirect
230228
go.opentelemetry.io/otel/sdk/log v0.15.0 // indirect
231-
go.opentelemetry.io/otel/sdk/metric v1.39.0 // indirect
232-
go.opentelemetry.io/otel/trace v1.39.0 // indirect
233-
go.opentelemetry.io/proto/otlp v1.6.0 // indirect
229+
go.opentelemetry.io/otel/sdk/metric v1.40.0 // indirect
230+
go.opentelemetry.io/otel/trace v1.40.0 // indirect
231+
go.opentelemetry.io/proto/otlp v1.9.0 // indirect
234232
go.uber.org/multierr v1.11.0 // indirect
235233
go.uber.org/zap v1.27.1 // indirect
236234
golang.org/x/exp v0.0.0-20260112195511-716be5621a96 // indirect
@@ -245,9 +243,9 @@ require (
245243
golang.org/x/tools v0.41.0 // indirect
246244
golang.org/x/xerrors v0.0.0-20240903120638-7835f813f4da // indirect
247245
google.golang.org/genproto v0.0.0-20240227224415-6ceb2ff114de // indirect
248-
google.golang.org/genproto/googleapis/api v0.0.0-20251029180050-ab9386a59fda // indirect
249-
google.golang.org/genproto/googleapis/rpc v0.0.0-20251029180050-ab9386a59fda // indirect
250-
google.golang.org/grpc v1.78.0 // indirect
246+
google.golang.org/genproto/googleapis/api v0.0.0-20251222181119-0a764e51fe1b // indirect
247+
google.golang.org/genproto/googleapis/rpc v0.0.0-20251222181119-0a764e51fe1b // indirect
248+
google.golang.org/grpc v1.79.3 // indirect
251249
gopkg.in/yaml.v3 v3.0.1 // indirect
252250
gotest.tools/v3 v3.5.1 // indirect
253251
pgregory.net/rapid v1.1.0 // indirect

0 commit comments

Comments
 (0)