build(deps): bump the gomod group with 4 updates #235

dependabot · 2023-12-21T13:57:57Z

Bumps the gomod group with 4 updates: github.com/go-git/go-git/v5, github.com/go-logr/logr, github.com/rs/zerolog and golang.org/x/mod.

Updates github.com/go-git/go-git/v5 from 5.9.0 to 5.11.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.11.0

What's Changed

git: validate reference names (#929) by @aymanbagabas in go-git/go-git#950

git: stop iterating at oldest shallow when pulling. Fixes #305 by @dhoizner in go-git/go-git#939

plumbing: object, enable renames in getFileStatsFromFilePatches by @djmoch in go-git/go-git#941

storage: filesystem, Add option to set a specific FS for alternates by @pjbgf in go-git/go-git#953

Align worktree validation with upstream and remove build warnings by @pjbgf in go-git/go-git#958

New Contributors

@dhoizner made their first contribution in go-git/go-git#939

@djmoch made their first contribution in go-git/go-git#941

Full Changelog: go-git/go-git@v5.10.1...v5.11.0

v5.10.1

What's Changed

Worktree, ignore ModeSocket files by @steiler in go-git/go-git#930

git: add tracer package by @aymanbagabas in go-git/go-git#916

remote: Flip clause for fast-forward only check by @adityasaky in go-git/go-git#875

plumbing: transport/ssh, Fix nil pointer dereference caused when an unreachable proxy server is set. Fixes #900 by @anandf in go-git/go-git#901

plumbing: uppload-server-info, implement upload-server-info by @aymanbagabas in go-git/go-git#896

plumbing: optimise memory consumption for filesystem storage by @pjbgf in go-git/go-git#799

plumbing: format/packfile, Refactor patch delta by @pjbgf in go-git/go-git#908

plumbing: fix empty uploadpack request error by @aymanbagabas in go-git/go-git#932

plumbing: transport/git, Improve tests error message by @pjbgf in go-git/go-git#752

plumbing: format/pktline, Respect pktline error-line errors by @aymanbagabas in go-git/go-git#936

utils: remove ioutil.Pipe and use std library io.Pipe by @aymanbagabas in go-git/go-git#922

utils: move trace to utils by @aymanbagabas in go-git/go-git#931

cli: separate go module for cli by @aymanbagabas in go-git/go-git#914

build: bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by @dependabot in go-git/go-git#887

build: bump actions/setup-go from 3 to 4 by @dependabot in go-git/go-git#891

build: bump github.com/skeema/knownhosts from 1.2.0 to 1.2.1 by @dependabot in go-git/go-git#888

build: bump actions/checkout from 3 to 4 by @dependabot in go-git/go-git#890

build: bump golang.org/x/sys from 0.13.0 to 0.14.0 by @dependabot in go-git/go-git#907

build: bump golang.org/x/text from 0.13.0 to 0.14.0 by @dependabot in go-git/go-git#906

build: bump golang.org/x/crypto from 0.14.0 to 0.15.0 by @dependabot in go-git/go-git#917

build: bump golang.org/x/net from 0.17.0 to 0.18.0 by @dependabot in go-git/go-git#918

New Contributors

@anandf made their first contribution in go-git/go-git#901

@steiler made their first contribution in go-git/go-git#930

Full Changelog: go-git/go-git@v5.10.0...v5.10.1

v5.10.0

What's Changed

PlainInitOptions.Bare and allow using InitOptions with PlainInitWithOptions by @ThinkChaos in go-git/go-git#782

... (truncated)

Commits

5d08d3b Merge pull request #958 from pjbgf/workval
5bd1d8f build: Ensure checkout is the first operation
b2c1982 git: worktree, Align validation with upstream rules
cec7da6 Merge pull request #953 from pjbgf/alternates
8b47ceb storage: filesystem, Add option to set a specific FS for alternates
4f61489 Merge pull request #941 from djmoch/filestats-rename
ae552ce Merge pull request #939 from dhoizner/fix-pull-after-shallow
cc1895b Merge pull request #950 from aymanbagabas/validate-ref
de1d5a5 git: validate reference names
d87110b Merge pull request #948 from go-git/dependabot/go_modules/cli/go-git/github.c...
Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.2.4 to 1.4.0

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.0

This release dramatically improves interoperability with Go's log/slog package. In particular, logr.NewContext and logr.NewContextWithSlogLogger use the same context key, which allows logr.FromContext and logr.FromContextAsSlogLogger to return logr.Logger or *slog.Logger respectively, including transparently converting each to the other as needed.

Functions logr/slogr.NewLogr and logr/slogr.ToSlogHandler have been superceded by logr.FromSlogHandler and logr.ToSlogHandler respectively, and type logr/slogr.SlogSink has been superceded by logr.SlogSink. All of the old names in logr/slogr remain, for compatibility.

Package logr/funcr now supports logr.SlogSink, meaning that it's output passes all but one of the Slog conformance tests (that exception being that funcr handles the timestamp itself).

Users who have a logr.Logger and need a *slog.Logger can call slog.New(logr.ToSlogHandler(...)) and all output will go through the same stack.

Users who have a *slog.Logger or slog.Handler can call logr.FromSlogHandler(...) and all output will go through the same stack.

What's Changed

slog context support by @pohly in go-logr/logr#237

slog support: fix WithGroup + WithValues combination by @pohly in go-logr/logr#243

Add tests for context with slog by @thockin in go-logr/logr#246

sloghandler: unnamed groups should be inlined by @thockin in go-logr/logr#245

Add SlogSink support to funcr by @thockin in go-logr/logr#241

funcr: Add LogInfoLevel Option to skip logging level in the info log by @spacewander in go-logr/logr#240

New Contributors

@spacewander made their first contribution in go-logr/logr#240

Full Changelog: go-logr/logr@v1.3.0...v1.4.0

v1.3.0

This release adds support for slog in a new, self-contained logr/slogr package. Implementers of a logr.LogSink are encouraged, but not required, to extend their implementation to improve the quality of log output coming from a slog API call.

Breaking change: the call depth for LogSink.Enabled when called via Logger.Enabled was fixed to be the same as for other call paths. Implementers of a LogSink who have worked around this bug will need to remove their workarounds.

Security best practices were improved. Only Go versions >= 1.18 are supported by this release.

What's Changed

Fix golangci-lint fails by @thockin in go-logr/logr#173

Add minimal permissions to workflows by @pnacht in go-logr/logr#177

Add a security policy by @pnacht in go-logr/logr#178

Update security email by @thockin in go-logr/logr#181

docs: explain relationship between Logger{} and Discard() by @pohly in go-logr/logr#182

Add the OpenSSF Scorecard workflow by @pnacht in go-logr/logr#186

README: show of OpenSSF Scorecard badge by @pohly in go-logr/logr#187

Hash-pin workflow Actions by @pnacht in go-logr/logr#189

Bump go versions to 1.18+ by @thockin in go-logr/logr#203

slogr: add glue code for logging to slog.Handler and with slog.Logger by @pohly in go-logr/logr#205

slogr: restore original backend when converting back and forth by @pohly in go-logr/logr#210

slogr: add SlogSink by @pohly in go-logr/logr#211

Use same call depth for Enabled, Info, Error by @thockin in go-logr/logr#218

test: eliminate helper func by @thockin in go-logr/logr#219

docs: interoperability with slog by @pohly in go-logr/logr#222

... (truncated)

Commits

5d88f52 funcr: Add LogInfoLevel Option to skip logging level in the info log (#240)
177005d build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0
e7f489a build(deps): bump github/codeql-action from 2.22.9 to 3.22.11
cf56c3b build(deps): bump actions/setup-go from 4 to 5
2ad296e build(deps): bump github/codeql-action from 2.22.8 to 2.22.9
d55b4e2 Merge pull request #241 from thockin/master
98ee9d9 Clean up slog testing and restore coverage
b228ba8 Break examples to new file
6432877 Add benchmarks for slogSink
f558531 Put slog tests in a helper, move funcr test
Additional commits viewable in compare view

Updates github.com/rs/zerolog from 1.30.0 to 1.31.0

Commits

8344fc0 Bump actions/checkout from 3 to 4 (#588)
4cb8cc5 Update dependencies
ae9b265 Update Build Status Badge (#589)
1bac5cc added support for NO_COLOR (#586)
b81cc57 Fix the standard logger output example (#584)
ad77222 chore: improve coverage report
95cf29c chore: switch to go-goverage-report action as gocover.io is closing
802c88f chore: adding any function to context (#580)
158e4ad Update logbench URL in README.md
7d5aa98 Deprecate lint in favor of https://github.com/ykadowak/zerologlint (#574)
Additional commits viewable in compare view

Updates golang.org/x/mod from 0.13.0 to 0.14.0

Commits

6e58e47 modfile: improve directory path detection and error text consistency
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the gomod group with 4 updates: [github.com/go-git/go-git/v5](https://github.com/go-git/go-git), [github.com/go-logr/logr](https://github.com/go-logr/logr), [github.com/rs/zerolog](https://github.com/rs/zerolog) and [golang.org/x/mod](https://github.com/golang/mod). Updates `github.com/go-git/go-git/v5` from 5.9.0 to 5.11.0 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.9.0...v5.11.0) Updates `github.com/go-logr/logr` from 1.2.4 to 1.4.0 - [Release notes](https://github.com/go-logr/logr/releases) - [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md) - [Commits](go-logr/logr@v1.2.4...v1.4.0) Updates `github.com/rs/zerolog` from 1.30.0 to 1.31.0 - [Release notes](https://github.com/rs/zerolog/releases) - [Commits](rs/zerolog@v1.30.0...v1.31.0) Updates `golang.org/x/mod` from 0.13.0 to 0.14.0 - [Commits](golang/mod@v0.13.0...v0.14.0) --- updated-dependencies: - dependency-name: github.com/go-git/go-git/v5 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: github.com/go-logr/logr dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: github.com/rs/zerolog dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod - dependency-name: golang.org/x/mod dependency-type: direct:production update-type: version-update:semver-minor dependency-group: gomod ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2023-12-22T13:07:00Z

Superseded by #236.

dependabot bot requested a review from wfscheper as a code owner December 21, 2023 13:57

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Dec 21, 2023

dependabot bot mentioned this pull request Dec 21, 2023

build(deps): bump the gomod group with 4 updates #233

Closed

dependabot bot closed this Dec 22, 2023

dependabot bot deleted the dependabot/go_modules/gomod-edfe889980 branch December 22, 2023 13:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the gomod group with 4 updates #235

build(deps): bump the gomod group with 4 updates #235

dependabot bot commented on behalf of github Dec 21, 2023 •

edited

Loading

dependabot bot commented on behalf of github Dec 22, 2023

build(deps): bump the gomod group with 4 updates #235

build(deps): bump the gomod group with 4 updates #235

Conversation

dependabot bot commented on behalf of github Dec 21, 2023 • edited Loading

v5.11.0

What's Changed

New Contributors

v5.10.1

What's Changed

New Contributors

v5.10.0

What's Changed

v1.4.0

What's Changed

New Contributors

v1.3.0

What's Changed

dependabot bot commented on behalf of github Dec 22, 2023

dependabot bot commented on behalf of github Dec 21, 2023 •

edited

Loading