Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(deps): update osv-scanner minor #782

Merged
merged 1 commit into from
Feb 5, 2024

Conversation

renovate-bot
Copy link
Collaborator

@renovate-bot renovate-bot commented Feb 4, 2024

Mend Renovate

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
deps.dev/api/v3alpha require digest 00b51ef -> c339c64 age adoption passing confidence
deps.dev/util/resolve require digest 00b51ef -> c339c64 age adoption passing confidence
deps.dev/util/semver require digest 1e316b8 -> c339c64 age adoption passing confidence
github.com/gkampitakis/go-snaps require minor v0.4.12 -> v0.5.2 age adoption passing confidence
github.com/ianlancetaylor/demangle require digest 964b1d5 -> 1f824a1 age adoption passing confidence
github.com/jedib0t/go-pretty/v6 require patch v6.5.3 -> v6.5.4 age adoption passing confidence
go (source) golang patch 1.21.5 -> 1.21.6 age adoption passing confidence
golang.org/x/exp require digest 1b97071 -> 2c58cdc age adoption passing confidence
google.golang.org/grpc require minor v1.60.1 -> v1.61.0 age adoption passing confidence
google.golang.org/protobuf require minor v1.31.0 -> v1.32.0 age adoption passing confidence

Release Notes

gkampitakis/go-snaps (github.com/gkampitakis/go-snaps)

v0.5.2

Compare Source

v0.5.1

Compare Source

What's Changed

Full Changelog: gkampitakis/go-snaps@v0.5.0...v0.5.1

v0.5.0

Compare Source

What's Changed

Breaking changes ❗

On v0.5.0 when running tests with test.count>1 flag a call to create a snapshot will not create multiple instances of the same snapshot, but it will create the snapshot once and then subsequent execution will test against that snapshot. Look at issue https://github.com/gkampitakis/go-snaps/issues/87

New Contributors

Full Changelog: gkampitakis/go-snaps@v0.4.12...v0.5.0

jedib0t/go-pretty (github.com/jedib0t/go-pretty/v6)

v6.5.4

Compare Source

What's Changed

New Contributors

Full Changelog: jedib0t/go-pretty@v6.5.3...v6.5.4

golang/go (go)

v1.21.6

grpc/grpc-go (google.golang.org/grpc)

v1.61.0: Release 1.61.0

Compare Source

New Features

  • resolver: provide method, AuthorityOverrider, to allow resolver.Builders to override the default authority for a ClientConn. (EXPERIMENTAL) (#​6752)
  • xds: add support for mTLS Credentials in xDS bootstrap (gRFC A65) (#​6757)
  • server: add grpc.WaitForHandlers ServerOption to cause Server.Stop to block until method handlers return. (EXPERIMENTAL) (#​6922)

Performance Improvements

Bug Fixes

  • client: correctly enable TCP keepalives with OS defaults on windows (#​6863)
  • server: change some stream operations to return UNAVAILABLE instead of UNKNOWN when underlying connection is broken (#​6891)
  • server: fix GracefulStop to block until all method handlers return (v1.60 regression). (#​6922)
  • server: fix two bugs that could lead to panics at shutdown when using NumStreamWorkers (EXPERIMENTAL). (#​6856)
  • reflection: do not send invalid descriptors to clients for files that cannot be fully resolved (#​6771)
  • xds: don't fail channel/server startup when xds creds is specified, but bootstrap is missing certificate providers (#​6848)
  • xds: Atomically read and write xDS security configuration client side (#​6796)
  • xds/server: fix RDS handling for non-inline route configs (#​6915)
protocolbuffers/protobuf-go (google.golang.org/protobuf)

v1.32.0

Compare Source

Full Changelog: protocolbuffers/protobuf-go@v1.31.0...v1.32.0

This release contains commit protocolbuffers/protobuf-go@bfcd647, which fixes a denial of service vulnerability by preventing a stack overflow through a default maximum recursion limit. See https://github.com/golang/protobuf/issues/1583 and https://github.com/golang/protobuf/issues/1584 for details.


Configuration

📅 Schedule: Branch creation - "before 6am on monday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@forking-renovate forking-renovate bot added the dependencies Pull requests that update a dependency file label Feb 4, 2024
@codecov-commenter
Copy link

codecov-commenter commented Feb 4, 2024

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (7ffff72) 80.02% compared to head (d95d417) 80.02%.

Additional details and impacted files
@@           Coverage Diff           @@
##             main     #782   +/-   ##
=======================================
  Coverage   80.02%   80.02%           
=======================================
  Files          91       91           
  Lines        6213     6213           
=======================================
  Hits         4972     4972           
  Misses       1038     1038           
  Partials      203      203           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@renovate-bot renovate-bot force-pushed the renovate/osv-scanner-minor branch 2 times, most recently from d95d417 to ffba42b Compare February 5, 2024 19:09
@renovate-bot renovate-bot force-pushed the renovate/osv-scanner-minor branch from ffba42b to ac9d4dd Compare February 5, 2024 21:04
@another-rex another-rex merged commit 0c7cffc into google:main Feb 5, 2024
11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants