Skip to content

Commit

Permalink
Bump github.com/hashicorp/go-getter from 1.5.3 to 1.7.0 (#125)
Browse files Browse the repository at this point in the history
Bumps
[github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter)
from 1.5.3 to 1.7.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/hashicorp/go-getter/releases">github.com/hashicorp/go-getter's
releases</a>.</em></p>
<blockquote>
<h2>v1.7.0</h2>
<h2>What's Changed</h2>
<ul>
<li>docs: provide logging recommendations by <a
href="https://github.com/mickael-hc"><code>@​mickael-hc</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/371">hashicorp/go-getter#371</a></li>
<li>Update aws sdk version by <a
href="https://github.com/Jukie"><code>@​Jukie</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/384">hashicorp/go-getter#384</a></li>
<li>Update S3 URL in README by <a
href="https://github.com/twelvelabs"><code>@​twelvelabs</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/378">hashicorp/go-getter#378</a></li>
<li>Migrate to GHA by <a
href="https://github.com/claire-labry"><code>@​claire-labry</code></a>
in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/379">hashicorp/go-getter#379</a></li>
<li>[COMPLIANCE] Update MPL 2.0 LICENSE by <a
href="https://github.com/hashicorp-copywrite"><code>@​hashicorp-copywrite</code></a>
in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/386">hashicorp/go-getter#386</a></li>
<li>remove codesign entirely from go-getter by <a
href="https://github.com/claire-labry"><code>@​claire-labry</code></a>
in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/408">hashicorp/go-getter#408</a></li>
<li>Add decompression bomb mitigation options for v1 by <a
href="https://github.com/picatz"><code>@​picatz</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/412">hashicorp/go-getter#412</a></li>
<li>v1: decompressors: add LimitedDecompressors helper by <a
href="https://github.com/shoenig"><code>@​shoenig</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/413">hashicorp/go-getter#413</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a
href="https://github.com/mickael-hc"><code>@​mickael-hc</code></a> made
their first contribution in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/371">hashicorp/go-getter#371</a></li>
<li><a href="https://github.com/Jukie"><code>@​Jukie</code></a> made
their first contribution in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/384">hashicorp/go-getter#384</a></li>
<li><a
href="https://github.com/twelvelabs"><code>@​twelvelabs</code></a> made
their first contribution in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/378">hashicorp/go-getter#378</a></li>
<li><a
href="https://github.com/hashicorp-copywrite"><code>@​hashicorp-copywrite</code></a>
made their first contribution in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/386">hashicorp/go-getter#386</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/hashicorp/go-getter/compare/v1.6.2...v1.7.0">https://github.com/hashicorp/go-getter/compare/v1.6.2...v1.7.0</a></p>
<h2>v1.6.2</h2>
<h2>What's Changed</h2>
<ul>
<li>Fix <code>no getter available for X-Terraform-Get source
protocol</code> when using bare github or bitbucket hostnames: <a
href="https://redirect.github.com/hashicorp/go-getter/issues/370">#370</a></li>
</ul>
<h2>v1.6.1</h2>
<p>No release notes provided.</p>
<h2>v1.5.11</h2>
<h2>What's Changed</h2>
<ul>
<li>Redact SSH key from URL query parameter by <a
href="https://github.com/macedogm"><code>@​macedogm</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/348">hashicorp/go-getter#348</a></li>
<li>gcs: only run oauth test if env var is set by <a
href="https://github.com/schmichael"><code>@​schmichael</code></a> in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/349">hashicorp/go-getter#349</a></li>
</ul>
<h2>New Contributors</h2>
<ul>
<li><a href="https://github.com/macedogm"><code>@​macedogm</code></a>
made their first contribution in <a
href="https://redirect.github.com/hashicorp/go-getter/pull/348">hashicorp/go-getter#348</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/hashicorp/go-getter/compare/v1.5.10...v1.5.11">https://github.com/hashicorp/go-getter/compare/v1.5.10...v1.5.11</a></p>
<h2>v1.5.10</h2>
<ul>
<li>When fetching files from Google Cloud Storage, go-getter will now
consider the <code>GOOGLE_OAUTH_ACCESS_TOKEN</code> environment variable
as a potential source of a Google Cloud Platform access token. (<a
href="https://redirect.github.com/hashicorp/go-getter/pull/302">#302</a>)</li>
<li>Fixed a regression from v1.5.9 where <code>git::</code> sources
would no longer accept direct commit ids in the optional
<code>ref</code> argument, and would instead only allow named refs from
the remote. As a compromise, go-getter will now accept for
<code>ref</code> anything that <code>git checkout</code> would accept as
a valid tree selector, <em>unless</em> you also set <code>depth</code>
to activate shallow clone mode in which case <code>ref</code> must be a
named ref due to requirements of the Git protocol in that case. (<a
href="https://redirect.github.com/hashicorp/go-getter/pull/345">#345</a>)</li>
</ul>
<h2>v1.5.9</h2>
<p>Fix git shallow clone (<code>depth</code> parameter) for any ref. See
<a
href="https://redirect.github.com/hashicorp/go-getter/issues/266">#266</a></p>
<h2>v1.5.8</h2>
<p>No release notes provided.</p>
<h2>v1.5.7</h2>
<p>In 1.5.7, we moved to using signore, an internal tool, for GPG
signing.</p>
<h2>v1.5.5</h2>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/hashicorp/go-getter/commit/0edab85348271c843782993345b07b1ac98912e6"><code>0edab85</code></a>
Merge pull request <a
href="https://redirect.github.com/hashicorp/go-getter/issues/413">#413</a>
from hashicorp/limited-decompressors-helper</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/b38771f0162e6ef445f793c8c62efc31d56d4297"><code>b38771f</code></a>
decompressors: add LimitedDecompressors helper</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/78e6721a2a76266718dc92c3c03c1571dffdefdc"><code>78e6721</code></a>
Merge pull request <a
href="https://redirect.github.com/hashicorp/go-getter/issues/412">#412</a>
from hashicorp/mitigate-decompression-bomb</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/cf15d8405d9a700e9c25df7194d095b7dfdff914"><code>cf15d84</code></a>
Add decompression bomb mitigation options</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/d229395f5a7d9f36340f313c7130ae3852cedc1a"><code>d229395</code></a>
Merge pull request <a
href="https://redirect.github.com/hashicorp/go-getter/issues/408">#408</a>
from hashicorp/remove-codesign</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/b55f8f7e9bfa4a102bcc8d8c2acfcd2b133fa7f3"><code>b55f8f7</code></a>
remove codesign entirely from go-getter</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/611343a8c115405f84a0e47a420a7c07ecdc6e5b"><code>611343a</code></a>
Merge pull request <a
href="https://redirect.github.com/hashicorp/go-getter/issues/386">#386</a>
from hashicorp/compliance/add-license</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/7220a3dd635be2967b7de48658611092d56481eb"><code>7220a3d</code></a>
Merge pull request <a
href="https://redirect.github.com/hashicorp/go-getter/issues/379">#379</a>
from hashicorp/migrate-to-gha</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/2daac52df7e59e2fd7e5339d712e3321f36f4844"><code>2daac52</code></a>
Update get_gcs_test.go</li>
<li><a
href="https://github.com/hashicorp/go-getter/commit/95c5f2d069aa35b144090709230d724b3a871bd4"><code>95c5f2d</code></a>
Update get_s3_test.go</li>
<li>Additional commits viewable in <a
href="https://github.com/hashicorp/go-getter/compare/v1.5.3...v1.7.0">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/hashicorp/go-getter&package-manager=go_modules&previous-version=1.5.3&new-version=1.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/codefresh-io/terraform-provider-codefresh/network/alerts).

</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
  • Loading branch information
dependabot[bot] authored Oct 5, 2023
1 parent 0fd87b3 commit 5ed1f24
Show file tree
Hide file tree
Showing 2 changed files with 0 additions and 56 deletions.
20 changes: 0 additions & 20 deletions go.mod
Original file line number Diff line number Diff line change
Expand Up @@ -26,11 +26,6 @@ require (
require (
4d63.com/gocheckcompilerdirectives v1.2.1 // indirect
4d63.com/gochecknoglobals v0.2.1 // indirect
cloud.google.com/go v0.110.0 // indirect
cloud.google.com/go/compute v1.19.0 // indirect
cloud.google.com/go/compute/metadata v0.2.3 // indirect
cloud.google.com/go/iam v0.13.0 // indirect
cloud.google.com/go/storage v1.28.1 // indirect
github.com/Abirdcfly/dupword v0.0.11 // indirect
github.com/Antonboom/errname v0.1.9 // indirect
github.com/Antonboom/nilnil v0.1.4 // indirect
Expand All @@ -46,15 +41,12 @@ require (
github.com/alecthomas/participle/v2 v2.0.0 // indirect
github.com/alexkohler/prealloc v1.0.0 // indirect
github.com/alingse/asasalint v0.0.11 // indirect
github.com/apparentlymart/go-cidr v1.1.0 // indirect
github.com/apparentlymart/go-textseg/v13 v13.0.0 // indirect
github.com/armon/go-radix v1.0.0 // indirect
github.com/ashanbrown/forbidigo v1.5.1 // indirect
github.com/ashanbrown/makezero v1.1.1 // indirect
github.com/aws/aws-sdk-go v1.37.0 // indirect
github.com/beorn7/perks v1.0.1 // indirect
github.com/bflad/gopaniccheck v0.1.0 // indirect
github.com/bgentry/go-netrc v0.0.0-20140422174119-9fd32a8b3d3d // indirect
github.com/bgentry/speakeasy v0.1.0 // indirect
github.com/bkielbasa/cyclop v1.2.0 // indirect
github.com/blizzy78/varnamelen v0.8.0 // indirect
Expand Down Expand Up @@ -92,7 +84,6 @@ require (
github.com/goccy/go-json v0.10.2 // indirect
github.com/goccy/go-yaml v1.11.0 // indirect
github.com/gofrs/flock v0.8.1 // indirect
github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
github.com/golang/protobuf v1.5.3 // indirect
github.com/golangci/check v0.0.0-20180506172741-cfe4005ccda2 // indirect
github.com/golangci/dupl v0.0.0-20180902072040-3e9179ac440a // indirect
Expand All @@ -105,8 +96,6 @@ require (
github.com/golangci/unconvert v0.0.0-20180507085042-28b1c447d1f4 // indirect
github.com/google/go-cmp v0.5.9 // indirect
github.com/google/uuid v1.3.0 // indirect
github.com/googleapis/enterprise-certificate-proxy v0.2.3 // indirect
github.com/googleapis/gax-go/v2 v2.7.1 // indirect
github.com/gordonklaus/ineffassign v0.0.0-20230107090616-13ace0543b28 // indirect
github.com/gostaticanalysis/analysisutil v0.7.1 // indirect
github.com/gostaticanalysis/comment v1.4.2 // indirect
Expand All @@ -115,11 +104,9 @@ require (
github.com/hashicorp/errwrap v1.1.0 // indirect
github.com/hashicorp/go-checkpoint v0.5.0 // indirect
github.com/hashicorp/go-cleanhttp v0.5.2 // indirect
github.com/hashicorp/go-getter v1.5.3 // indirect
github.com/hashicorp/go-hclog v1.5.0 // indirect
github.com/hashicorp/go-multierror v1.1.1 // indirect
github.com/hashicorp/go-plugin v1.4.9 // indirect
github.com/hashicorp/go-safetemp v1.0.0 // indirect
github.com/hashicorp/go-uuid v1.0.3 // indirect
github.com/hashicorp/go-version v1.6.0 // indirect
github.com/hashicorp/hc-install v0.5.0 // indirect
Expand All @@ -140,13 +127,11 @@ require (
github.com/jingyugao/rowserrcheck v1.1.1 // indirect
github.com/jinzhu/copier v0.3.5 // indirect
github.com/jirfag/go-printf-func-name v0.0.0-20200119135958-7558a9eaa5af // indirect
github.com/jmespath/go-jmespath v0.4.0 // indirect
github.com/julz/importas v0.1.0 // indirect
github.com/junk1tm/musttag v0.5.0 // indirect
github.com/kisielk/errcheck v1.6.3 // indirect
github.com/kisielk/gotool v1.0.0 // indirect
github.com/kkHAIKE/contextcheck v1.1.4 // indirect
github.com/klauspost/compress v1.11.2 // indirect
github.com/kulti/thelper v0.6.3 // indirect
github.com/kunwardeep/paralleltest v1.0.6 // indirect
github.com/kyoh86/exportloopref v0.1.11 // indirect
Expand Down Expand Up @@ -224,7 +209,6 @@ require (
github.com/timonwong/loggercheck v0.9.4 // indirect
github.com/tomarrell/wrapcheck/v2 v2.8.1 // indirect
github.com/tommy-muehle/go-mnd/v2 v2.5.1 // indirect
github.com/ulikunitz/xz v0.5.8 // indirect
github.com/ultraware/funlen v0.0.3 // indirect
github.com/ultraware/whitespace v0.0.5 // indirect
github.com/uudashr/gocognit v1.0.6 // indirect
Expand All @@ -236,9 +220,7 @@ require (
github.com/yuin/goldmark v1.5.4 // indirect
github.com/yuin/goldmark-meta v1.1.0 // indirect
github.com/zclconf/go-cty v1.13.1 // indirect
github.com/zclconf/go-cty-yaml v1.0.2 // indirect
gitlab.com/bosi/decorder v0.2.3 // indirect
go.opencensus.io v0.24.0 // indirect
go.uber.org/atomic v1.10.0 // indirect
go.uber.org/multierr v1.11.0 // indirect
go.uber.org/zap v1.24.0 // indirect
Expand All @@ -247,13 +229,11 @@ require (
golang.org/x/exp/typeparams v0.0.0-20230321023759-10a507213a29 // indirect
golang.org/x/mod v0.10.0 // indirect
golang.org/x/net v0.9.0 // indirect
golang.org/x/oauth2 v0.6.0 // indirect
golang.org/x/sync v0.1.0 // indirect
golang.org/x/sys v0.7.0 // indirect
golang.org/x/text v0.9.0 // indirect
golang.org/x/tools v0.8.0 // indirect
golang.org/x/xerrors v0.0.0-20220907171357-04be3eba64a2 // indirect
google.golang.org/api v0.114.0 // indirect
google.golang.org/appengine v1.6.7 // indirect
google.golang.org/genproto v0.0.0-20230410155749-daa745c078e1 // indirect
google.golang.org/grpc v1.54.0 // indirect
Expand Down
Loading

0 comments on commit 5ed1f24

Please sign in to comment.