Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the go-modules group across 1 directory with 32 updates #677

Closed
wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 11, 2024

Bumps the go-modules group with 22 updates in the / directory:

Package From To
github.com/onsi/gomega 1.34.1 1.35.1
github.com/paketo-buildpacks/occam 0.18.7 0.18.8
github.com/paketo-buildpacks/packit/v2 2.14.2 2.15.0
github.com/Masterminds/semver/v3 3.2.1 3.3.0
github.com/Masterminds/sprig/v3 3.2.3 3.3.0
github.com/Microsoft/hcsshim 0.12.5 0.12.9
github.com/ProtonMail/go-crypto 1.1.0-alpha.5-proton 1.1.2
github.com/andybalholm/brotli 1.1.0 1.1.1
github.com/bmatcuk/doublestar/v4 4.6.1 4.7.1
github.com/cloudflare/circl 1.3.9 1.5.0
github.com/cpuguy83/dockercfg 0.3.1 0.3.2
github.com/cyphar/filepath-securejoin 0.3.1 0.3.4
github.com/docker/cli 27.1.2+incompatible 27.3.1+incompatible
github.com/gabriel-vasile/mimetype 1.4.5 1.4.6
github.com/go-git/go-billy/v5 5.5.0 5.6.0
github.com/klauspost/compress 1.17.9 1.17.11
github.com/sylabs/sif/v2 2.18.0 2.19.2
github.com/tklauser/numcpus 0.8.0 0.9.0
github.com/vbatts/tar-split 0.11.5 0.11.6
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp 0.53.0 0.57.0
golang.org/x/mod 0.20.0 0.22.0
golang.org/x/sync 0.8.0 0.9.0

Updates github.com/onsi/gomega from 1.34.1 to 1.35.1

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.35.1

1.35.1

Fixes

  • Export EnforceDefaultTimeoutsWhenUsingContexts and DisableDefaultTimeoutsWhenUsingContext [ca36da1]

v1.35.0

1.35.0

Features

  • You can now call EnforceDefaultTimeoutsWhenUsingContexts() to have Eventually honor the default timeout when passed a context. (prior to this you had to expclility add a timeout) [e4c4265]
  • You can call StopTrying(message).Successfully() to abort a Consistently early without failure [eeca931]

Fixes

  • Stop memoizing the result of HaveField to avoid unexpected errors when used with async assertions. [3bdbc4e]

Maintenance

  • Bump all dependencies [a05a416]

v1.34.2

1.34.2

Require Go 1.22+

Maintenance

  • bump ginkgo as well [c59c6dc]
  • bump to go 1.22 - remove x/exp dependency [8158b99]
Changelog

Sourced from github.com/onsi/gomega's changelog.

1.35.1

Fixes

  • Export EnforceDefaultTimeoutsWhenUsingContexts and DisableDefaultTimeoutsWhenUsingContext [ca36da1]

1.35.0

Features

  • You can now call EnforceDefaultTimeoutsWhenUsingContexts() to have Eventually honor the default timeout when passed a context. (prior to this you had to expclility add a timeout) [e4c4265]
  • You can call StopTrying(message).Successfully() to abort a Consistently early without failure [eeca931]

Fixes

  • Stop memoizing the result of HaveField to avoid unexpected errors when used with async assertions. [3bdbc4e]

Maintenance

  • Bump all dependencies [a05a416]

1.34.2

Require Go 1.22+

Maintenance

  • bump ginkgo as well [c59c6dc]
  • bump to go 1.22 - remove x/exp dependency [8158b99]
Commits
  • 9f5a208 v1.35.1
  • ca36da1 Export EnforceDefaultTimeoutsWhenUsingContexts and DisableDefaultTimeoutsWhen...
  • d6331f9 v1.35.0
  • 5deaf23 fix tests, but like actually this time
  • eeca931 Add Successfully() to StopTrying() to signal that Consistently can end early ...
  • 3bdbc4e stop memoizing result of HaveField
  • e35358d sheepishly fix broken test. thanks CI
  • 1b717d7 grrr. go mod tidy
  • a05a416 bump all dependencies
  • e4c4265 Add EnforceDefaultTimeoutsWhenUsingContexts()
  • Additional commits viewable in compare view

Updates github.com/paketo-buildpacks/occam from 0.18.7 to 0.18.8

Release notes

Sourced from github.com/paketo-buildpacks/occam's releases.

v0.18.8

What's Changed

New Contributors

Full Changelog: paketo-buildpacks/occam@v0.18.7...v0.18.8

Commits
  • 1193f3c Bump docker to version 26.1.5 to fix CVE-2024-41110
  • 5cd4ede Updates go mod version to 1.23.0
  • 2e5b930 Updates go mod version to 1.22.6
  • 815b014 Bump github.com/paketo-buildpacks/packit/v2 from 2.14.1 to 2.14.2
  • 74a79fb Bump github.com/paketo-buildpacks/packit/v2 from 2.14.0 to 2.14.1
  • 90134a5 Bump github.com/google/go-containerregistry from 0.20.1 to 0.20.2
  • 653a6fb Bump github.com/onsi/gomega from 1.34.0 to 1.34.1
  • ed0e429 Bump github.com/onsi/gomega from 1.33.1 to 1.34.0
  • f467245 Updates go mod version to 1.22.5
  • c97acf2 Bump github.com/google/go-containerregistry from 0.20.0 to 0.20.1
  • Additional commits viewable in compare view

Updates github.com/paketo-buildpacks/packit/v2 from 2.14.2 to 2.15.0

Release notes

Sourced from github.com/paketo-buildpacks/packit/v2's releases.

v2.15.0

What's Changed

Full Changelog: paketo-buildpacks/packit@v2.14.2...v2.15.0

Commits

Updates github.com/Masterminds/semver/v3 from 3.2.1 to 3.3.0

Release notes

Sourced from github.com/Masterminds/semver/v3's releases.

v3.3.0

What's Changed

New Contributors

Full Changelog: Masterminds/semver@v3.2.1...v3.3.0

Changelog

Sourced from github.com/Masterminds/semver/v3's changelog.

3.3.0 (2024-08-27)

Added

Changed

  • #241: Simplify StrictNewVersion parsing (thanks @​grosser)
  • Testing support up through Go 1.23
  • Minimum version set to 1.21 as this is what's tested now
  • Fuzz testing now supports caching
Commits
  • e6e3d4d Merge pull request #249 from mattfarina/update-changelog-3.3.0
  • e80c4ea Updating changelog for 3.3.0
  • 80427ad Merge pull request #248 from mattfarina/bump-min-version
  • b610837 bumping min version in go.mod based on what's tested
  • a4cccd8 Merge pull request #246 from mattfarina/bump-go-1.23
  • 7c178cf Updating the testing version of Go used
  • 29f94c1 Merge pull request #241 from grosser/grosser/validate
  • 2cf1b16 Merge pull request #245 from mattfarina/remove-vert
  • b55476a Removing reference to vert
  • d07450b simplify StrictNewVersion
  • Additional commits viewable in compare view

Updates github.com/Masterminds/sprig/v3 from 3.2.3 to 3.3.0

Release notes

Sourced from github.com/Masterminds/sprig/v3's releases.

v3.3.0

What's Changed

New Contributors

Full Changelog: Masterminds/sprig@v3.2.3...v3.3.0

Changelog

Sourced from github.com/Masterminds/sprig/v3's changelog.

Release 3.3.0 (2024-08-29)

Added

Changed

  • #407: Removed duplicate documentation (functions were documentated in 2 places)
  • #290: Corrected copy/paster oops in math documentation (thanks @​zzhu41)
  • #369: Corrected template reference in docs (thanks @​chey)
  • #375: Added link to URL documenation (thanks @​carlpett)
  • #406: Updated the mergo dependency which had a breaking change (which was accounted for)
  • #376: Fixed documentation error (thanks @​jheyduk)
  • #404: Updated dependency tree
  • #391: Fixed misspelling (thanks @​chrishalbert)
  • #405: Updated Go versions used in testing
Commits
  • e708470 Merge pull request #408 from mattfarina/update-changelog-3.3
  • 8fc4354 Updating the changelog for the 3.3.0 release
  • cb81a32 Merge pull request #407 from mattfarina/remove-dup-math-functions
  • 2637693 Removing duplicate documentation
  • 06b9a87 Merge pull request #290 from zzhu41/patch-1
  • e663ec6 Merge pull request #369 from chey/patch-1
  • bb2f73f Merge pull request #375 from carlpett/patch-1
  • f07659e Merge pull request #400 from itzik-elayev/master
  • 98b35c1 Add closing bracket
  • 7a88928 Merge pull request #406 from mattfarina/update-mergo
  • Additional commits viewable in compare view

Updates github.com/Microsoft/hcsshim from 0.12.5 to 0.12.9

Release notes

Sourced from github.com/Microsoft/hcsshim's releases.

v0.12.9

What's Changed

Full Changelog: microsoft/hcsshim@v0.12.8...v0.12.9

v0.12.8

What's Changed

Full Changelog: microsoft/hcsshim@v0.12.7...v0.12.8

v0.12.7

What's Changed

Full Changelog: microsoft/hcsshim@v0.12.6...v0.12.7

v0.12.6

What's Changed

Full Changelog: microsoft/hcsshim@v0.12.5...v0.12.6

Commits
  • 7392335 Switch to using containerd/errdefs/pkg/errgrpc for grpc translation
  • 79d3f32 Update go to 1.22
  • 05636b9 Update JOB_OBJECT_ALL_ACCESS and OpenJobObject (#2095)
  • 1550628 mobve SILOOBJECT_BASIC_INFORMATION to winapi
  • bf52d58 fix SILOOBJECT_BASIC_INFORMATION alignment
  • 8d48d87 Update containerd to v1.7.23 (#2295)
  • 4ad298f Fixing typo (#2289)
  • 86b5333 Bump golangci/golangci-lint-action from 4 to 6
  • 5ae96f3 Update runc to v1.1.14
  • 8f3fccd Update pkg versions
  • Additional commits viewable in compare view

Updates github.com/ProtonMail/go-crypto from 1.1.0-alpha.5-proton to 1.1.2

Release notes

Sourced from github.com/ProtonMail/go-crypto's releases.

Release v1.1.2

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.1.1...v1.1.2

Release v1.1.2-proton

What's Changed

This release is v1.1.2 with support for symmetric keys and automatic forwarding, both of which are not standardized yet.

Release v1.1.1

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.1.0...v1.1.1

Release v1.1.1-proton

What's Changed

This release is v1.1.1 with support for symmetric keys and automatic forwarding, both of which are not standardized yet.

Release v1.1.0

What's Changed

This release adds full support for the new version of the OpenPGP standard, RFC 9580. In addition, the release introduces an improved non-backwards compatible v2 API. The API in the openpgp package remains fully backwards compatible while the new v2 API is located in a separate v2 package in openpgp.

For the full changes since v1.0.0, see the previous release notes. For the full changelog, see ProtonMail/go-crypto@v1.0.0...v1.1.0.

Changes since v1.1.0-beta.0:

  • Replace expiring curve448 integration test vector by @​lubux
  • Validate input key size in SEIPDv2 decryption by @​lubux

Changelog since v1.1.0-beta.0: ProtonMail/go-crypto@v1.1.0-beta.0...v1.1.0.

Release v1.1.0-proton

What's Changed

This release is v1.1.0 with support for symmetric keys and automatic forwarding, both of which are not standardized yet.

v1.1.0-beta.0-proton

This pre-release is v1.1.0-beta.0 with support for symmetric keys and automatic forwarding, both of which are not standardized yet.

v1.1.0-beta.0

What's Changed

... (truncated)

Commits
  • 2d2c789 feat(cleartext): Do not include line ending separator in plaintext (#242)
  • f8b3f21 Remove cleartext Encode header argument #239 (#240)
  • b97cc3c feat: Validate input key size in SEIPDv2 decryption (#236)
  • 20ab0e4 Replace expiring curve448 integration test vector (#235)
  • f6ad483 No v6 ECC keys with legacy OIDs (#234)
  • 77090fe Fix ECDH using v6 keys (#233)
  • 7852179 Add support for keyserver preferences and preferred keyserver (closes #206) (...
  • 2add693 Add back crypto.Signer support for ECDSA signing keys (#227)
  • 0f7b935 ci: Fix CI for v1 interoptest (#229)
  • b5837fa ci: Change gosop branch for gopenpgp-v2 to gosop-gopenpgp-v2 (#224)
  • Additional commits viewable in compare view

Updates github.com/andybalholm/brotli from 1.1.0 to 1.1.1

Commits

Updates github.com/bmatcuk/doublestar/v4 from 4.6.1 to 4.7.1

Release notes

Sourced from github.com/bmatcuk/doublestar/v4's releases.

Fixed FilepathGlob("")

To be consistent with filepath.Glob, FilepathGlob("") returns nil.

Added MatchUnvalidated, PathMatchUnvalidated

These functions provide a small performance improvement in cases where you don't care about whether or not the pattern is valid (maybe because you already ran ValidatePattern).

Commits

Updates github.com/cloudflare/circl from 1.3.9 to 1.5.0

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.5.0

New: ML-DSA, Module-Lattice-based Digital Signature Algorithm.

What's Changed

New Contributors

Full Changelog: cloudflare/circl@v1.4.0...v1.5.0

CIRCL v1.4.0

Changes

New: ML-KEM compatible with FIPS-203.

Commit History

Full Changelog: cloudflare/circl@v1.3.9...v1.4.0

Commits
  • 1310edf Release v1.5.0
  • 0246d59 Add test for ML-DSA signature verification.
  • e2bbd01 Add ML-DSA (FIPS204) (#480)
  • 2ba992f Reverting arm64 jobs since qemu can't run go1.23 binaries yet.
  • ab15f82 Updates golangci-lint to v1.61.0 and fixes code.
  • 064a9ba Bump to go1.22 inner files and ci jobs.
  • 7040592 Adding semgrepignore to also analyse test files.
  • 51a9a33 Update semgrep.yml
  • cfbc696 Create semgrep.yml
  • 2d6cd98 kem: add X25519MLKEM768 TLS hybrid KEM
  • Additional commits viewable in compare view

Updates github.com/cpuguy83/dockercfg from 0.3.1 to 0.3.2

Release notes

Sourced from github.com/cpuguy83/dockercfg's releases.

v0.3.2

What's Changed

New Contributors

Full Changelog: cpuguy83/dockercfg@v0.3.1...v0.3.2

Commits

Updates github.com/cyphar/filepath-securejoin from 0.3.1 to 0.3.4

Release notes

Sourced from github.com/cyphar/filepath-securejoin's releases.

v0.3.4

This release primarily includes a fix that blocked using filepath-securejoin in Kubernetes.

  • Previously, some testing mocks we had resulted in us doing import "testing" in non-_test.go code, which made some downstreams like Kubernetes unhappy. This has been fixed. (#32)

Thanks to all of the contributors who made this release possible:

Signed-off-by: Aleksa Sarai [email protected]

v0.3.3

This release primarily includes fixes for spurious errors we hit when checking that directories created by MkdirAll "look right". Upon further consideration, these checks were fundamentally buggy and didn't offer any practical protection anyway.

  • The mode and owner verification logic in MkdirAll has been removed. This was originally intended to protect against some theoretical attacks but upon further consideration these protections don't actually buy us anything and they were causing spurious errors with more complicated filesystem setups.
  • The "is the created directory empty" logic in MkdirAll has also been removed. This was not causing us issues yet, but some pseudofilesystems (such as cgroup) create non-empty directories and so this logic would've been wrong for such cases.

Thanks to all of the contributors who made this release possible:

Signed-off-by: Aleksa Sarai [email protected]

v0.3.2

This release includes a few fixes for MkdirAll when dealing with S_ISUID and S_ISGID, to solve a regression runc hit when switching to MkdirAll.

  • Passing the S_ISUID or S_ISGID modes to MkdirAllInRoot will now return an explicit error saying that those bits are ignored by mkdirat(2). In the past a different error was returned, but since the silent ignoring behaviour is codified in the man pages a more explicit error seems apt. While silently ignoring these bits would be the most compatible option, it could lead to users thinking their code sets these bits when it doesn't. Programs that need to deal with compatibility can mask the bits themselves. (#23, #25)

... (truncated)

Changelog

Sourced from github.com/cyphar/filepath-securejoin's changelog.

[0.3.4] - 2024-10-09

Fixed

  • Previously, some testing mocks we had resulted in us doing import "testing" in non-_test.go code, which made some downstreams like Kubernetes unhappy. This has been fixed. (#32)

[0.3.3] - 2024-09-30

Fixed

  • The mode and owner verification logic in MkdirAll has been removed. This was originally intended to protect against some theoretical attacks but upon further consideration these protections don't actually buy us anything and they were causing spurious errors with more complicated filesystem setups.
  • The "is the created directory empty" logic in MkdirAll has also been removed. This was not causing us issues yet, but some pseudofilesystems (such as cgroup) create non-empty directories and so this logic would've been wrong for such cases.

[0.3.2] - 2024-09-13

Changed

  • Passing the S_ISUID or S_ISGID modes to MkdirAllInRoot will now return an explicit error saying that those bits are ignored by mkdirat(2). In the past a different error was returned, but since the silent ignoring behaviour is codified in the man pages a more explicit error seems apt. While silently ignoring these bits would be the most compatible option, it could lead to users thinking their code sets these bits when it doesn't. Programs that need to deal with compatibility can mask the bits themselves. (#23, #25)

Fixed

  • If a directory has S_ISGID set, then all child directories will have S_ISGID set when created and a different gid will be used for any inode created under the directory. Previously, the "expected owner and mode" validation in securejoin.MkdirAll did not correctly handle this. We now correctly handle this case. (#24, #25)
Commits
  • fd16ade VERSION: release v0.3.4
  • 00e0710 godoc: update package documentation
  • 0cd6be1 README: fix reference to open_tree kernel requirements
  • 205046f README: add pkg.go.dev badge
  • ecb1b8e tests: procfs: clean up mock test hook
  • 3ec6eed CHANGELOG: mention #32 fix
  • 86e6182 merge #32 into cyphar/filepath-securejoin:main
  • 6864912 Isolate the testing import in test code
  • 4348fee openat: remove unused function
  • d0c7d67 merge #31 into cyphar/filepath-securejoin:main
  • Additional commits viewable in compare view

Updates github.com/docker/cli from 27.1.2+incompatible to 27.3.1+incompatible

Commits
  • ce12230 Merge pull request #5462 from thaJeztah/27.x_backport_bump_compose
  • 263ba95 Merge pull request #5461 from laurazard/27.x-backport-update-VERSION
  • be9b9f3 Update VERSION file to v27.3.1-dev
  • a4149b0 Dockerfile: update compose to v2.29.7
  • 4aac415 Merge pull request #5458 from thaJeztah/27.x_bump_engine3
  • 8546958 vendor: github.com/docker/docker v27.3.0
  • f052003 Merge pull request #5457 from laurazard/backport-dropped-defer
  • 460f1be telemetry: fix early meterprovider shutdown
  • e85edf8 Merge pull request #5452 from laurazard/27.3.0-match-moby-version
  • ca62759 vendor: github.com/docker/docker v27.3.0-rc2
  • Additional commits viewable in compare view

Updates github.com/gabriel-vasile/mimetype from 1.4.5 to 1.4.6

Release notes

Sourced from github.com/gabriel-vasile/mimetype's releases.

v1.4.6

What's Changed

New Contributors

Full Changelog: gabriel-vasile/mimetype@v1.4.5...v1.4.6

Commits
  • 2998a94 Remove GPL test file (#583)
  • 8a780a5 Bump actions/checkout from 4.1.7 to 4.2.1 in the github-actions group (#592)
  • 458b62d action for benchmarking detectors (#590)
  • fd16da2 retract v1.4.4; closes #575. (#591)
  • 3cf98ef Bump golang.org/x/net in the gomod group across 1 directory (#585)
  • 9349e46 Bump the github-actions group across 1 directory with 2 updates (

Bumps the go-modules group with 22 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/onsi/gomega](https://github.com/onsi/gomega) | `1.34.1` | `1.35.1` |
| [github.com/paketo-buildpacks/occam](https://github.com/paketo-buildpacks/occam) | `0.18.7` | `0.18.8` |
| [github.com/paketo-buildpacks/packit/v2](https://github.com/paketo-buildpacks/packit) | `2.14.2` | `2.15.0` |
| [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) | `3.2.1` | `3.3.0` |
| [github.com/Masterminds/sprig/v3](https://github.com/Masterminds/sprig) | `3.2.3` | `3.3.0` |
| [github.com/Microsoft/hcsshim](https://github.com/Microsoft/hcsshim) | `0.12.5` | `0.12.9` |
| [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.1.0-alpha.5-proton` | `1.1.2` |
| [github.com/andybalholm/brotli](https://github.com/andybalholm/brotli) | `1.1.0` | `1.1.1` |
| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.6.1` | `4.7.1` |
| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.9` | `1.5.0` |
| [github.com/cpuguy83/dockercfg](https://github.com/cpuguy83/dockercfg) | `0.3.1` | `0.3.2` |
| [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) | `0.3.1` | `0.3.4` |
| [github.com/docker/cli](https://github.com/docker/cli) | `27.1.2+incompatible` | `27.3.1+incompatible` |
| [github.com/gabriel-vasile/mimetype](https://github.com/gabriel-vasile/mimetype) | `1.4.5` | `1.4.6` |
| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.5.0` | `5.6.0` |
| [github.com/klauspost/compress](https://github.com/klauspost/compress) | `1.17.9` | `1.17.11` |
| [github.com/sylabs/sif/v2](https://github.com/sylabs/sif) | `2.18.0` | `2.19.2` |
| [github.com/tklauser/numcpus](https://github.com/tklauser/numcpus) | `0.8.0` | `0.9.0` |
| [github.com/vbatts/tar-split](https://github.com/vbatts/tar-split) | `0.11.5` | `0.11.6` |
| [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib) | `0.53.0` | `0.57.0` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.20.0` | `0.22.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.8.0` | `0.9.0` |



Updates `github.com/onsi/gomega` from 1.34.1 to 1.35.1
- [Release notes](https://github.com/onsi/gomega/releases)
- [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md)
- [Commits](onsi/gomega@v1.34.1...v1.35.1)

Updates `github.com/paketo-buildpacks/occam` from 0.18.7 to 0.18.8
- [Release notes](https://github.com/paketo-buildpacks/occam/releases)
- [Commits](paketo-buildpacks/occam@v0.18.7...v0.18.8)

Updates `github.com/paketo-buildpacks/packit/v2` from 2.14.2 to 2.15.0
- [Release notes](https://github.com/paketo-buildpacks/packit/releases)
- [Commits](paketo-buildpacks/packit@v2.14.2...v2.15.0)

Updates `github.com/Masterminds/semver/v3` from 3.2.1 to 3.3.0
- [Release notes](https://github.com/Masterminds/semver/releases)
- [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md)
- [Commits](Masterminds/semver@v3.2.1...v3.3.0)

Updates `github.com/Masterminds/sprig/v3` from 3.2.3 to 3.3.0
- [Release notes](https://github.com/Masterminds/sprig/releases)
- [Changelog](https://github.com/Masterminds/sprig/blob/master/CHANGELOG.md)
- [Commits](Masterminds/sprig@v3.2.3...v3.3.0)

Updates `github.com/Microsoft/hcsshim` from 0.12.5 to 0.12.9
- [Release notes](https://github.com/Microsoft/hcsshim/releases)
- [Commits](microsoft/hcsshim@v0.12.5...v0.12.9)

Updates `github.com/ProtonMail/go-crypto` from 1.1.0-alpha.5-proton to 1.1.2
- [Release notes](https://github.com/ProtonMail/go-crypto/releases)
- [Commits](ProtonMail/go-crypto@v1.1.0-alpha.5-proton...v1.1.2)

Updates `github.com/andybalholm/brotli` from 1.1.0 to 1.1.1
- [Commits](andybalholm/brotli@v1.1.0...v1.1.1)

Updates `github.com/bmatcuk/doublestar/v4` from 4.6.1 to 4.7.1
- [Release notes](https://github.com/bmatcuk/doublestar/releases)
- [Commits](bmatcuk/doublestar@v4.6.1...v4.7.1)

Updates `github.com/cloudflare/circl` from 1.3.9 to 1.5.0
- [Release notes](https://github.com/cloudflare/circl/releases)
- [Commits](cloudflare/circl@v1.3.9...v1.5.0)

Updates `github.com/cpuguy83/dockercfg` from 0.3.1 to 0.3.2
- [Release notes](https://github.com/cpuguy83/dockercfg/releases)
- [Commits](cpuguy83/dockercfg@v0.3.1...v0.3.2)

Updates `github.com/cyphar/filepath-securejoin` from 0.3.1 to 0.3.4
- [Release notes](https://github.com/cyphar/filepath-securejoin/releases)
- [Changelog](https://github.com/cyphar/filepath-securejoin/blob/main/CHANGELOG.md)
- [Commits](cyphar/filepath-securejoin@v0.3.1...v0.3.4)

Updates `github.com/docker/cli` from 27.1.2+incompatible to 27.3.1+incompatible
- [Commits](docker/cli@v27.1.2...v27.3.1)

Updates `github.com/gabriel-vasile/mimetype` from 1.4.5 to 1.4.6
- [Release notes](https://github.com/gabriel-vasile/mimetype/releases)
- [Commits](gabriel-vasile/mimetype@v1.4.5...v1.4.6)

Updates `github.com/go-git/go-billy/v5` from 5.5.0 to 5.6.0
- [Release notes](https://github.com/go-git/go-billy/releases)
- [Commits](go-git/go-billy@v5.5.0...v5.6.0)

Updates `github.com/klauspost/compress` from 1.17.9 to 1.17.11
- [Release notes](https://github.com/klauspost/compress/releases)
- [Changelog](https://github.com/klauspost/compress/blob/master/.goreleaser.yml)
- [Commits](klauspost/compress@v1.17.9...v1.17.11)

Updates `github.com/sylabs/sif/v2` from 2.18.0 to 2.19.2
- [Release notes](https://github.com/sylabs/sif/releases)
- [Changelog](https://github.com/sylabs/sif/blob/main/.goreleaser.yml)
- [Commits](sylabs/sif@v2.18.0...v2.19.2)

Updates `github.com/tklauser/numcpus` from 0.8.0 to 0.9.0
- [Release notes](https://github.com/tklauser/numcpus/releases)
- [Commits](tklauser/numcpus@v0.8.0...v0.9.0)

Updates `github.com/vbatts/tar-split` from 0.11.5 to 0.11.6
- [Release notes](https://github.com/vbatts/tar-split/releases)
- [Commits](vbatts/tar-split@v0.11.5...v0.11.6)

Updates `go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp` from 0.53.0 to 0.57.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go-contrib/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go-contrib@zpages/v0.53.0...zpages/v0.57.0)

Updates `go.opentelemetry.io/otel` from 1.28.0 to 1.32.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.28.0...v1.32.0)

Updates `go.opentelemetry.io/otel/metric` from 1.28.0 to 1.32.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.28.0...v1.32.0)

Updates `go.opentelemetry.io/otel/trace` from 1.28.0 to 1.32.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.28.0...v1.32.0)

Updates `golang.org/x/crypto` from 0.26.0 to 0.28.0
- [Commits](golang/crypto@v0.26.0...v0.28.0)

Updates `golang.org/x/mod` from 0.20.0 to 0.22.0
- [Commits](golang/mod@v0.20.0...v0.22.0)

Updates `golang.org/x/net` from 0.28.0 to 0.30.0
- [Commits](golang/net@v0.28.0...v0.30.0)

Updates `golang.org/x/sync` from 0.8.0 to 0.9.0
- [Commits](golang/sync@v0.8.0...v0.9.0)

Updates `golang.org/x/sys` from 0.24.0 to 0.26.0
- [Commits](golang/sys@v0.24.0...v0.26.0)

Updates `golang.org/x/text` from 0.17.0 to 0.19.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.17.0...v0.19.0)

Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20240528184218-531527333157 to 0.0.0-20240903143218-8af14fe29dc1
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/grpc` from 1.65.0 to 1.67.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.65.0...v1.67.0)

Updates `google.golang.org/protobuf` from 1.34.2 to 1.35.1

---
updated-dependencies:
- dependency-name: github.com/onsi/gomega
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/paketo-buildpacks/occam
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/paketo-buildpacks/packit/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/Masterminds/semver/v3
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/Masterminds/sprig/v3
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/Microsoft/hcsshim
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/ProtonMail/go-crypto
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/andybalholm/brotli
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/bmatcuk/doublestar/v4
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/cloudflare/circl
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/cpuguy83/dockercfg
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/cyphar/filepath-securejoin
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/docker/cli
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/gabriel-vasile/mimetype
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/go-git/go-billy/v5
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/klauspost/compress
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/sylabs/sif/v2
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/tklauser/numcpus
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/vbatts/tar-split
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: go.opentelemetry.io/otel
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: go.opentelemetry.io/otel/metric
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: go.opentelemetry.io/otel/trace
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/crypto
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/mod
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/net
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/sync
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/sys
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/text
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: google.golang.org/genproto/googleapis/rpc
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: google.golang.org/grpc
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: google.golang.org/protobuf
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner November 11, 2024 06:13
@dependabot dependabot bot added the failure:update-dependencies An issue filed automatically when updating buildpack.toml dependencies fails in a workflow label Nov 11, 2024
@paketo-bot paketo-bot added the semver:patch A change requiring a patch version bump label Nov 11, 2024
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 12, 2024

Superseded by #678.

@dependabot dependabot bot closed this Nov 12, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/go-modules-99a9260e94 branch November 12, 2024 11:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
failure:update-dependencies An issue filed automatically when updating buildpack.toml dependencies fails in a workflow semver:patch A change requiring a patch version bump
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant