Skip to content

Bump the go-deps group across 1 directory with 5 updates #788

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the go-deps group across 1 directory with 5 updates #788

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 21, 2025
edited
Loading

Bumps the go-deps group with 5 updates in the / directory:

Package From To
github.com/Masterminds/semver/v3 3.3.0 3.3.1
github.com/fluxcd/pkg/apis/meta 1.12.0 1.13.0
github.com/fluxcd/pkg/version 0.7.0 0.8.0
github.com/go-logr/logr 1.4.2 1.4.3
github.com/google/go-containerregistry 0.20.5 0.20.6

Updates github.com/Masterminds/semver/v3 from 3.3.0 to 3.3.1

Release notes

Sourced from github.com/Masterminds/semver/v3's releases.

v3.3.1

What's Changed

Full Changelog: Masterminds/semver@v3.3.0...v3.3.1

Changelog

Sourced from github.com/Masterminds/semver/v3's changelog.

Changelog

Commits
  • 1558ca3 Merge pull request #253 from mattfarina/fix-bad-versions
  • 252dd61 Fix for allowing some version that were invalid
  • See full diff in compare view

Updates github.com/fluxcd/pkg/apis/meta from 1.12.0 to 1.13.0

Commits
  • 246bc82 Merge pull request #942 from fluxcd/force-annotation
  • 86ef319 Introduce reconcile.fluxcd.io/forceAt annotation
  • 9be33b3 Merge pull request #941 from fluxcd/crypto-v0.39.0
  • 8957219 Update golang.org/x/crypto to v0.39.0
  • 406c48d Merge pull request #940 from fluxcd/release-git-pkgs
  • 2298005 Release git/v0.32.0 and git/gogit/v0.34.0
  • 47a1b23 Merge pull request #938 from fluxcd/public-ecr
  • a0d4442 Fix support for public.ecr.aws
  • 53c7b2d Merge pull request #939 from kane8n/update-go-git
  • 77f008c update go-git
  • Additional commits viewable in compare view

Updates github.com/fluxcd/pkg/version from 0.7.0 to 0.8.0

Commits
  • 7ef01b0 Merge pull request #442 from blurpy/feature/git_bearer_token
  • 659695f Add back support for passphrase protected ssh keys
  • 767e771 Validate that basic auth and bearer token cannot be set at the same time
  • cbf091c Add test to verify that username from Secret is preferred
  • b6c6888 Refactor of NewAuthOptions to only fill the auth options that are relevant
  • fef9d6a Add more test scenarios for NewAuthOptions
  • 9b9b723 Validate that bearer token is not used over http
  • 04d0d48 Add some quick tests of basic auth in client.validateUrl()
  • a451505 Support specifying bearerToken for git http token authentication.
  • bfb6385 Merge pull request #448 from fluxcd/e2e-ux
  • Additional commits viewable in compare view

Updates github.com/go-logr/logr from 1.4.2 to 1.4.3

Release notes

Sourced from github.com/go-logr/logr's releases.

v1.4.3

Minor release.

What's Changed

New Contributors

Full Changelog: go-logr/logr@v1.4.2...v1.4.3

Commits
  • 38a1c47 build(deps): bump github/codeql-action from 3.28.17 to 3.28.18
  • f08bedd build(deps): bump actions/setup-go from 5.4.0 to 5.5.0
  • 6295e99 build(deps): bump golangci/golangci-lint-action from 7.0.0 to 8.0.0
  • 028840d build(deps): bump github/codeql-action from 3.28.15 to 3.28.17
  • 511e5fa Merge pull request #367 from go-logr/dependabot/github_actions/github/codeql-...
  • d806463 build(deps): bump github/codeql-action from 3.28.13 to 3.28.15
  • 158c311 Merge pull request #366 from thockin/master
  • c79ddb3 Update to support golangci-lint v2
  • 20a64ba build(deps): bump github/codeql-action from 3.28.12 to 3.28.13
  • 0385e14 Add comments around slog exceptions
  • Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.5 to 0.20.6

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.6

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.20.4...v0.20.6

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go-deps group across 1 directory with 5 updates
63918d5 
Bumps the go-deps group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/Masterminds/semver/v3](https://github.com/Masterminds/semver) | `3.3.0` | `3.3.1` |
| [github.com/fluxcd/pkg/apis/meta](https://github.com/fluxcd/pkg) | `1.12.0` | `1.13.0` |
| [github.com/fluxcd/pkg/version](https://github.com/fluxcd/pkg) | `0.7.0` | `0.8.0` |
| [github.com/go-logr/logr](https://github.com/go-logr/logr) | `1.4.2` | `1.4.3` |
| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.5` | `0.20.6` |



Updates `github.com/Masterminds/semver/v3` from 3.3.0 to 3.3.1
- [Release notes](https://github.com/Masterminds/semver/releases)
- [Changelog](https://github.com/Masterminds/semver/blob/master/CHANGELOG.md)
- [Commits](Masterminds/semver@v3.3.0...v3.3.1)

Updates `github.com/fluxcd/pkg/apis/meta` from 1.12.0 to 1.13.0
- [Commits](fluxcd/pkg@apis/meta/v1.12.0...apis/meta/v1.13.0)

Updates `github.com/fluxcd/pkg/version` from 0.7.0 to 0.8.0
- [Commits](fluxcd/pkg@tar/v0.7.0...git/v0.8.0)

Updates `github.com/go-logr/logr` from 1.4.2 to 1.4.3
- [Release notes](https://github.com/go-logr/logr/releases)
- [Changelog](https://github.com/go-logr/logr/blob/master/CHANGELOG.md)
- [Commits](go-logr/logr@v1.4.2...v1.4.3)

Updates `github.com/google/go-containerregistry` from 0.20.5 to 0.20.6
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](google/go-containerregistry@v0.20.5...v0.20.6)

---
updated-dependencies:
- dependency-name: github.com/Masterminds/semver/v3
  dependency-version: 3.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: github.com/fluxcd/pkg/apis/meta
  dependency-version: 1.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: github.com/fluxcd/pkg/version
  dependency-version: 0.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: github.com/go-logr/logr
  dependency-version: 1.4.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: github.com/google/go-containerregistry
  dependency-version: 0.20.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency label Jun 21, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 1, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jul 1, 2025
@dependabot dependabot bot deleted the dependabot/go_modules/go-deps-07140f43af branch July 1, 2025 21:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant