build(deps): bump the ci group with 4 updates #4215
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps the ci group with 4 updates: [actions/checkout](https://github.com/actions/checkout), [actions/setup-go](https://github.com/actions/setup-go), [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) and [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer). Updates `actions/checkout` from 3.4.0 to 3.6.0 - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v3.4.0...f43a0e5) Updates `actions/setup-go` from 4.0.0 to 4.1.0 - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v4...93397be) Updates `docker/setup-buildx-action` from 2.9.1 to 2.10.0 - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@4c0219f...885d146) Updates `sigstore/cosign-installer` from 3.1.1 to 3.1.2 - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](sigstore/cosign-installer@6e04d22...11086d2) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: docker/setup-buildx-action dependency-type: direct:production update-type: version-update:semver-minor dependency-group: ci - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-patch dependency-group: ci ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
area/ci
makkes
approved these changes
Sep 4, 2023
|
Backport failed for Please cherry-pick the changes locally. git fetch origin release/v2.1.x
git worktree add -d .worktree/backport-4215-to-release/v2.1.x origin/release/v2.1.x
cd .worktree/backport-4215-to-release/v2.1.x
git checkout -b backport-4215-to-release/v2.1.x
ancref=$(git merge-base 47c8e5f44d8e45844ae4016d89eec10c121fa7c9 dbb9ea303de16a0349e79a4480573d2c6723f490)
git cherry-pick -x $ancref..dbb9ea303de16a0349e79a4480573d2c6723f490 |
nrdufour
added a commit
to nrdufour/home-ops
that referenced
this pull request
Oct 3, 2023
This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [fluxcd/flux2](https://github.com/fluxcd/flux2) | Kustomization | patch | `v2.1.0` -> `v2.1.1` | --- ### Release Notes <details> <summary>fluxcd/flux2 (fluxcd/flux2)</summary> ### [`v2.1.1`](https://github.com/fluxcd/flux2/releases/tag/v2.1.1) [Compare Source](fluxcd/flux2@v2.1.0...v2.1.1) #### Highlights Flux `v2.1.1` is a patch release which comes with various fixes. Users are encouraged to upgrade for the best experience. ##### Fixes - Use auto lookup strategy for Buckets to widen support for S3-compatible object storage services (`source-controller`). - Fix Secret type check for HelmRepositories TLS certs referred in `.spec.secretRef` (`source-controller`). - Fix the branch name reporting when the push branch is the same as the checkout branch (`image-automation-controller`). - Restore Helm logs inclusion in failure events (`helm-controller`). - Fix the impersonation of the default service account when diffing HelmReleases (`helm-controller`). - Check source for `nil` artifact before loading Helm charts (`helm-controller`). - Update the description of Kubernetes specific flag to distinguish them from Flux bootstrap flags (`flux` CLI). #### Components changelog - source-controller [v1.1.1](https://github.com/fluxcd/source-controller/blob/v1.1.1/CHANGELOG.md) - helm-controller [v0.36.1](https://github.com/fluxcd/helm-controller/blob/v0.36.1/CHANGELOG.md) - image-automation-controller [v0.36.1](https://github.com/fluxcd/image-automation-controller/blob/v0.36.1/CHANGELOG.md) #### CLI Changelog - PR [#​4255](fluxcd/flux2#4255) - [@​hiddeco](https://github.com/hiddeco) - tests/azure: update controller dependencies - PR [#​4251](fluxcd/flux2#4251) - [@​fluxcdbot](https://github.com/fluxcdbot) - Update toolkit components - PR [#​4246](fluxcd/flux2#4246) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 4 updates - PR [#​4238](fluxcd/flux2#4238) - [@​makkes](https://github.com/makkes) - Upgrade github.com/fluxcd/pkg/{git,git/gogit} - PR [#​4233](fluxcd/flux2#4233) - [@​sonbui00](https://github.com/sonbui00) - chore: remove support armv6h for aur package - PR [#​4228](fluxcd/flux2#4228) - [@​sonbui00](https://github.com/sonbui00) - Improve AUR package templates - PR [#​4227](fluxcd/flux2#4227) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 3 updates - PR [#​4226](fluxcd/flux2#4226) - [@​somtochiama](https://github.com/somtochiama) - Update description of kubeconfig specific flag - PR [#​4222](fluxcd/flux2#4222) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 in /tests/integration - PR [#​4221](fluxcd/flux2#4221) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump github.com/cyphar/filepath-securejoin from 0.2.3 to 0.2.4 in /tests/azure - PR [#​4215](fluxcd/flux2#4215) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 4 updates - PR [#​4213](fluxcd/flux2#4213) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump github.com/docker/distribution from 2.8.1+incompatible to 2.8.2+incompatible in /tests/integration - PR [#​4212](fluxcd/flux2#4212) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump github.com/docker/docker from 23.0.1+incompatible to 23.0.3+incompatible in /tests/integration - PR [#​4198](fluxcd/flux2#4198) - [@​makkes](https://github.com/makkes) - Add 2.1.x backport label - PR [#​4197](fluxcd/flux2#4197) - [@​stefanprodan](https://github.com/stefanprodan) - Fix links to fluxcd.io - PR [#​4195](fluxcd/flux2#4195) - [@​dependabot](https://github.com/dependabot)\[bot] - build(deps): bump the ci group with 2 updates </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNi45Ni4wIiwidXBkYXRlZEluVmVyIjoiMzYuOTYuMCIsInRhcmdldEJyYW5jaCI6Im1haW4ifQ==--> Reviewed-on: https://git.home/nrdufour/home-ops/pulls/94 Co-authored-by: Renovate <renovate@ptinem.io> Co-committed-by: Renovate <renovate@ptinem.io>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the ci group with 4 updates: actions/checkout, actions/setup-go, docker/setup-buildx-action and sigstore/cosign-installer.
Updates
actions/checkoutfrom 3.4.0 to 3.6.0Release notes
Sourced from actions/checkout's releases.
Changelog
Sourced from actions/checkout's changelog.
... (truncated)
Commits
f43a0e5Release 3.6.0 (#1437)7739b9bAdd option to fetch tags even if fetch-depth > 0 (#579)96f5310Mark test scripts with Bash'isms to be run via Bash (#1377)c85c95eRelease v3.5.3 (#1376)d106d46Add support for sparse checkouts (#1369)f095bccFix typos found by codespell (#1287)47fbe2dFix: Checkout fail in self-hosted runners when faulty submodule are checked-i...8e5e7e5Release v3.5.2 (#1291)eb35239Fix: convert baseUrl to serverApiUrl 'formatted' (#1289)83b7061Release v3.5.1 (#1284)Updates
actions/setup-gofrom 4.0.0 to 4.1.0Release notes
Sourced from actions/setup-go's releases.
Commits
Updates
docker/setup-buildx-actionfrom 2.9.1 to 2.10.0Release notes
Sourced from docker/setup-buildx-action's releases.
Commits
885d146Merge pull request #258 from crazy-max/update-toolkite5fad01ci: check lab releases45161fdupdate generated contenta4d51f5bump@docker/actions-toolkitfrom 0.7.1 to 0.10.093b8ecaci: docker-ce packages are now installed on GitHub Runners7703e82Merge pull request #253 from docker/dependabot/npm_and_yarn/word-wrap-1.2.50005881Merge pull request #254 from crazy-max/rm-codeownersb699069chore: remove CODEOWNERS9bfc549Bump word-wrap from 1.2.3 to 1.2.5b92d4d8Merge pull request #252 from crazy-max/dependabot-updateUpdates
sigstore/cosign-installerfrom 3.1.1 to 3.1.2Release notes
Sourced from sigstore/cosign-installer's releases.
Commits
11086d2bump cosign to v2.2.0 (#142)4a86152Bump actions/checkout from 3.5.3 to 3.6.0 (#141)37f3871Bump actions/setup-go from 4.0.1 to 4.1.0 (#139)a5d81fbFix build and push step Readme missing id (#138)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions