Bump the go-modules group with 6 updates #274

dependabot · 2024-03-05T06:17:29Z

Bumps the go-modules group with 6 updates:

Package	From	To
github.com/Microsoft/hcsshim	`0.11.4`	`0.12.0`
golang.org/x/exp	`0.0.0-20230510235704-dd950f8aeaea`	`0.0.0-20231006140011-7918f672742d`
golang.org/x/mod	`0.15.0`	`0.16.0`
golang.org/x/net	`0.21.0`	`0.22.0`
golang.org/x/sys	`0.17.0`	`0.18.0`
golang.org/x/tools	`0.18.0`	`0.19.0`

Updates github.com/Microsoft/hcsshim from 0.11.4 to 0.12.0

Release notes

Sourced from github.com/Microsoft/hcsshim's releases.

v0.12.0

What's Changed

adding option of using buffered image reader for faster dmverity hashing by @SethHollandsworth in microsoft/hcsshim#2013

Fix process handle leak when launching a job container by @kevpar in microsoft/hcsshim#2020

Revert "gcs: Support routing container stdio to sidecar" by @kevpar in microsoft/hcsshim#2023

internal/exec: Fix stdio pipe problems by @kevpar in microsoft/hcsshim#2021

Allow mounting multiple dev nodes per assigned device by @katiewasnothere in microsoft/hcsshim#2003

tests: update docker images by @anmaxvl in microsoft/hcsshim#2012

Don't create container scratch per base layer by @ambarve in microsoft/hcsshim#2002

Removing internal tests from hcsshim's cri-containerd tests by @yyatmsft in microsoft/hcsshim#1998

Fix CodeQL pipeline failure by @helsaawy in microsoft/hcsshim#2032

Update Cmd IO handling by @helsaawy in microsoft/hcsshim#1937

[deps] Omni-bus dependency update by @helsaawy in microsoft/hcsshim#2039

Upgrade to go1.21 by @kiashok in microsoft/hcsshim#2033

New Contributors

@yyatmsft made their first contribution in microsoft/hcsshim#1998

Full Changelog: microsoft/hcsshim@v0.12.0-rc.3...v0.12.0

v0.12.0-rc.3

What's Changed

SNP Direct DM-Verity Boot by @darracott in microsoft/hcsshim#1952

tests: update test images used for cri-containerd tests by @anmaxvl in microsoft/hcsshim#1991

Add CodeQL suppression for tar extraction code by @ambarve in microsoft/hcsshim#2006

Update nvidia hook log file paths to use container bundle path as base dir by @katiewasnothere in microsoft/hcsshim#1999

Switch to using new errdefs repo by @kiashok in microsoft/hcsshim#2016

Full Changelog: microsoft/hcsshim@v0.12.0-rc.2...v0.12.0-rc.3

v0.12.0-rc.2

What's Changed

CI: add CodeQL workflow and schedule by @anmaxvl in microsoft/hcsshim#1962

Add additional registry values to uVM via annotation by @helsaawy in microsoft/hcsshim#1963

uvmboot and gcs.test bug fix by @helsaawy in microsoft/hcsshim#1966

Add support for Linux kernel 6.x to fetch attestation report by @takuro-sato in microsoft/hcsshim#1886

cimfs: Add cim layer mount/unmount functionality. by @ambarve in microsoft/hcsshim#1955

Update build tags, lint entire repo for Linux by @helsaawy in microsoft/hcsshim#1968

Check for SNP before fetching SNP report by @darracott in microsoft/hcsshim#1967

Build components in CodeQL pipeline by @helsaawy in microsoft/hcsshim#1970

[deps] Omnibus dependency updata by @helsaawy in microsoft/hcsshim#1977

Fix CodeQL code scanning alerts by @helsaawy in microsoft/hcsshim#1972

RemoveVSMB uses the wrong hostPath for file shares by @helsaawy in microsoft/hcsshim#1974

[test] Update manifest; go generate by @helsaawy in microsoft/hcsshim#1919

Bump actions/setup-go from 4 to 5 by @dependabot in microsoft/hcsshim#1978

Lint common error wrapping issues, update README by @helsaawy in microsoft/hcsshim#1969

Bump actions/upload-artifact from 3 to 4 by @dependabot in microsoft/hcsshim#1985

Bump github/codeql-action from 2 to 3 by @dependabot in microsoft/hcsshim#1983

Bump actions/download-artifact from 3 to 4 by @dependabot in microsoft/hcsshim#1984

... (truncated)

Commits

fe8c673 update newBinaryCmd URL path handling (#2041)
85086d7 Upgrade to go1.21 + fix lint errors
8039310 [deps] Omni-bus dependency update (#2039)
7458e58 Update Cmd IO handling (#1937)
5f9910a Fix CodeQL pipeline failure (#2032)
c56a09c Merge pull request #1998 from yyatmsft/removeInternalTests2
c767380 Don't create container scratch per base layer (#2002)
23e9056 tests: update docker images. (#2012)
bbbf092 remove blanks
40f4a91 Merge pull request #2003 from katiewasnothere/kabaldau/assigned_devices_retur...
Additional commits viewable in compare view

Updates golang.org/x/exp from 0.0.0-20230510235704-dd950f8aeaea to 0.0.0-20231006140011-7918f672742d

Commits

See full diff in compare view

Updates golang.org/x/mod from 0.15.0 to 0.16.0

Commits

766dc5d modfile: use new go version string format in WorkFile.add error
See full diff in compare view

Updates golang.org/x/net from 0.21.0 to 0.22.0

Commits

7ee34a0 go.mod: update golang.org/x dependencies
c289c7a websocket: re-add documentation for DialConfig
9fb4a8c http2: send an error of FLOW_CONTROL_ERROR when exceed the maximum octets
3dfd003 websocket: add support for dialing with context
fa11427 quic: move package out of internal
591be7f quic: fix UDP on big-endian Linux, tests on various architectures
34cc446 quic: temporarily disable networking tests failing on various platforms
4bdc6df quic: expand package docs, and document Stream
22cbde9 quic: set ServerName in client connection TLSConfig
57e4cc7 quic: handle PATH_CHALLENGE and PATH_RESPONSE frames
Additional commits viewable in compare view

Updates golang.org/x/sys from 0.17.0 to 0.18.0

Commits

360f961 unix: add API for fsconfig system call
7ff74af unix: drop go version tags for unsupported versions
6b4eab5 unix: suppress ENOMEM errors from sysctl's implementing Uname(uname *Utsname)...
2f2cc5d unix: update IFLA and NETKIT constants with Linux kernel 6.7
See full diff in compare view

Updates golang.org/x/tools from 0.18.0 to 0.19.0

Commits

7656c4c go.mod: update golang.org/x dependencies
5bf7d00 cmd/callgraph: add 'posn' template helper
283fce2 x/tools: drop go1.18 support
7f348c7 internal/versions: updates the meaning of FileVersions.
38b0e9b x/tools: add explicit Unalias operations
a6c03c8 x/tools: update telemetry import (new Start API)
1f7dbdf gopls/internal/cache: add debug assertions for bug report
4d4e802 gopls/doc: address additional comments on workspace.md
abe5874 gopls/internal/analysis: add fill switch cases code action
fc70354 gopls/internal/test: add test for NPE in control flow highlighting
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the go-modules group with 6 updates: | Package | From | To | | --- | --- | --- | | [github.com/Microsoft/hcsshim](https://github.com/Microsoft/hcsshim) | `0.11.4` | `0.12.0` | | [golang.org/x/exp](https://github.com/golang/exp) | `0.0.0-20230510235704-dd950f8aeaea` | `0.0.0-20231006140011-7918f672742d` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.15.0` | `0.16.0` | | [golang.org/x/net](https://github.com/golang/net) | `0.21.0` | `0.22.0` | | [golang.org/x/sys](https://github.com/golang/sys) | `0.17.0` | `0.18.0` | | [golang.org/x/tools](https://github.com/golang/tools) | `0.18.0` | `0.19.0` | Updates `github.com/Microsoft/hcsshim` from 0.11.4 to 0.12.0 - [Release notes](https://github.com/Microsoft/hcsshim/releases) - [Commits](microsoft/hcsshim@v0.11.4...v0.12.0) Updates `golang.org/x/exp` from 0.0.0-20230510235704-dd950f8aeaea to 0.0.0-20231006140011-7918f672742d - [Commits](https://github.com/golang/exp/commits) Updates `golang.org/x/mod` from 0.15.0 to 0.16.0 - [Commits](golang/mod@v0.15.0...v0.16.0) Updates `golang.org/x/net` from 0.21.0 to 0.22.0 - [Commits](golang/net@v0.21.0...v0.22.0) Updates `golang.org/x/sys` from 0.17.0 to 0.18.0 - [Commits](golang/sys@v0.17.0...v0.18.0) Updates `golang.org/x/tools` from 0.18.0 to 0.19.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](golang/tools@v0.18.0...v0.19.0) --- updated-dependencies: - dependency-name: github.com/Microsoft/hcsshim dependency-type: indirect update-type: version-update:semver-minor dependency-group: go-modules - dependency-name: golang.org/x/exp dependency-type: indirect update-type: version-update:semver-patch dependency-group: go-modules - dependency-name: golang.org/x/mod dependency-type: indirect update-type: version-update:semver-minor dependency-group: go-modules - dependency-name: golang.org/x/net dependency-type: indirect update-type: version-update:semver-minor dependency-group: go-modules - dependency-name: golang.org/x/sys dependency-type: indirect update-type: version-update:semver-minor dependency-group: go-modules - dependency-name: golang.org/x/tools dependency-type: indirect update-type: version-update:semver-minor dependency-group: go-modules ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot requested a review from a team as a code owner March 5, 2024 06:17

dependabot bot added the failure:update-dependencies An issue filed automatically when updating buildpack.toml dependencies fails in a workflow label Mar 5, 2024

dependabot bot requested review from arjun024 and sophiewigmore March 5, 2024 06:17

paketo-bot added the semver:patch A change requiring a patch version bump label Mar 5, 2024

paketo-bot-reviewer approved these changes Mar 5, 2024

View reviewed changes

paketo-bot merged commit 563f0ee into main Mar 5, 2024
9 of 10 checks passed

paketo-bot deleted the dependabot/go_modules/go-modules-a740c5c146 branch March 5, 2024 06:22

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the go-modules group with 6 updates #274

Bump the go-modules group with 6 updates #274

dependabot bot commented on behalf of github Mar 5, 2024

Bump the go-modules group with 6 updates #274

Bump the go-modules group with 6 updates #274

Conversation

dependabot bot commented on behalf of github Mar 5, 2024

v0.12.0

What's Changed

New Contributors

v0.12.0-rc.3

What's Changed

v0.12.0-rc.2

What's Changed