apitech/loki - loki - Gitea: Git with a cup of tea

Commit Graph

Author	SHA1	Message	Date
Jack Baldry	0bc38e5775	Update to latest version of doc-validator (#11200 ) https://github.com/grafana/technical-documentation/releases/tag/doc-validator%2Fv4.0.0 Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
Trevor Whitney	060600c104	add vulnerability scanning github action (#11096 ) Adds a GitHub action that will run `snyk` and `trivy` scans against PRs and comment on the PR if a high or critical vulnerability is found	3 years ago
Michel Hollands	92fa3e3e5c	Remove timeout parameter (#11102 ) What this PR does / why we need it: The `helm-extra-args` causes an error with the new version of ct lint. This change removes the timeout parameter specified in there and adds a timeout in the CI step configuration. Special notes for your reviewer: Checklist - [X] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) - [ ] Documentation added - [ ] Tests updated - [ ] `CHANGELOG.md` updated - [ ] If the change is worth mentioning in the release notes, add `add-to-release-notes` label - [ ] Changes that require user attention or interaction to upgrade are documented in `docs/sources/setup/upgrade/_index.md` - [ ] For Helm chart changes bump the Helm chart version in `production/helm/loki/Chart.yaml` and update `production/helm/loki/CHANGELOG.md` and `production/helm/loki/README.md`. [Example PR](`d10549e3ec`) - [ ] If the change is deprecating or removing a configuration option, update the `deprecated-config.yaml` and `deleted-config.yaml` files respectively in the `tools/deprecated-config-checker` directory. [Example PR](`0d4416a4b0`) Signed-off-by: Michel Hollands <michel.hollands@gmail.com>	3 years ago
Michel Hollands	dda698ea9d	Update the helm-chart-testing action in the CI (#11101 ) What this PR does / why we need it: The previous version no longer installs. Special notes for your reviewer: Checklist - [X] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) - [ ] Documentation added - [ ] Tests updated - [ ] `CHANGELOG.md` updated - [ ] If the change is worth mentioning in the release notes, add `add-to-release-notes` label - [ ] Changes that require user attention or interaction to upgrade are documented in `docs/sources/setup/upgrade/_index.md` - [ ] For Helm chart changes bump the Helm chart version in `production/helm/loki/Chart.yaml` and update `production/helm/loki/CHANGELOG.md` and `production/helm/loki/README.md`. [Example PR](`d10549e3ec`) - [ ] If the change is deprecating or removing a configuration option, update the `deprecated-config.yaml` and `deleted-config.yaml` files respectively in the `tools/deprecated-config-checker` directory. [Example PR](`0d4416a4b0`) Signed-off-by: Michel Hollands <michel.hollands@gmail.com>	3 years ago
Ethan	92b698584a	add secret scanning workflow (#11053 ) What this PR does / why we need it: Short PR to add GitHub Action workflow to run Trufflehog on each PR. Will only fail/alert on verified secrets. This can be tweaked and configured later if need be. Which issue(s) this PR fixes: Fixes #<issue number> Special notes for your reviewer: Checklist - [ ] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) - [ ] Documentation added - [ ] Tests updated - [ ] `CHANGELOG.md` updated - [ ] If the change is worth mentioning in the release notes, add `add-to-release-notes` label - [ ] Changes that require user attention or interaction to upgrade are documented in `docs/sources/setup/upgrade/_index.md` - [ ] For Helm chart changes bump the Helm chart version in `production/helm/loki/Chart.yaml` and update `production/helm/loki/CHANGELOG.md` and `production/helm/loki/README.md`. [Example PR](`d10549e3ec`) - [ ] If the change is deprecating or removing a configuration option, update the `deprecated-config.yaml` and `deleted-config.yaml` files respectively in the `tools/deprecated-config-checker` directory. <!-- TODO(salvacorts): Add example PR --> Co-authored-by: Michel Hollands <42814411+MichelHollands@users.noreply.github.com>	3 years ago
Robert Jacob	e2ed1c01d4	operator: Update tools and dependencies (#10795 )	3 years ago
dependabot[bot]	21152d4568	Bump docker/setup-qemu-action from 1 to 3 (#10624 )	3 years ago
dependabot[bot]	677fc09bd6	operator: Bump docker/login-action from 1 to 3 (#10622 )	3 years ago
dependabot[bot]	ef3a8a576e	Bump docker/setup-buildx-action from 1 to 3 (#10625 )	3 years ago
dependabot[bot]	09d6496f9f	Bump docker/build-push-action from 4 to 5 (#10623 )	3 years ago
Kaviraj Kanagaraj	04716b5d09	dependabot: Fix accessing secerets via environmental variables. (#10675 ) What this PR does / why we need it: Noticed, the dependencies auto-merge is breaking with error. ``` gh: To use GitHub CLI in a GitHub Actions workflow, set the GH_TOKEN environment variable. Example: env: GH_TOKEN: ${{ github.token }} ``` https://github.com/grafana/loki/actions/runs/6222148810/job/16885518452?pr=10623 After some investigation. The suspect is secerets are not properly imported into the GH actions (NOTE from above GH run, the env `GITHUB_TOKEN` is set empty). Also from the docs, this token can be set either by `GITHUB_TOKEN` or `GH_TOKEN`. `GITHUB_TOKEN` will get higher priority. https://cli.github.com/manual/gh_help_environment Which issue(s) this PR fixes: Fixes #<issue number> Special notes for your reviewer: Checklist - [x] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) Signed-off-by: Kaviraj <kavirajkanagaraj@gmail.com>	3 years ago
dependabot[bot]	7c7c5e3511	build(deps): bump golangci/golangci-lint-action from 3.5.0 to 3.7.0 (#10303 )	3 years ago
Kaviraj Kanagaraj	20bf7a7a8a	dependabot: Re-enable `auto-merge`. (#10244 ) What this PR does / why we need it: I reverted back auto merge, because of permission issues with "who" can push to the repo. After some internal discussion, we decided to use `grafanabot` for enabling auto-merge. This PR does that. Which issue(s) this PR fixes: Fixes #<issue number> Special notes for your reviewer: Checklist - [x] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) Signed-off-by: Kaviraj <kavirajkanagaraj@gmail.com>	3 years ago
Periklis Tsirakidis	cf228b588d	operator: Ensure generated api docs land on vcs (#10177 )	3 years ago
Robert Jacob	f25b5bdbf2	operator: Automatically order imports based on contributing guide (#9692 )	3 years ago
Kaviraj Kanagaraj	f937d021b6	chore(dependabot): Remove enable auto-merge (#10158 ) What this PR does / why we need it: After some debugging and discussing with internal security squad, the core problem for the this permission issue with auto-merge is ``` GraphQL: ["Pull request User is not authorized for this protected branch"] (enablePullRequestAutoMerge) ``` The settings "Restrict who can push it to protected branch" rule we have `main` branch. And currently no way to add `github-action` user to this list (there is an open discussion https://github.com/orgs/community/discussions/25305 I proposed an idea to use some "real" user's (even grafana-bot) token to do the "auto-merge". But that is still under review by security squad. Meanwhile, to unblock merging any dependabot PR, I'm removing this step. Which issue(s) this PR fixes: Fixes #<issue number> Special notes for your reviewer: Related to #10126 #10141 #10144 Checklist - [x] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) Signed-off-by: Kaviraj <kavirajkanagaraj@gmail.com>	3 years ago
Kaviraj Kanagaraj	c795565ef7	chore(dependabot): Change event type to `pull_request`. (#10144 ) What this PR does / why we need it: We are still facing permission error in enabling auto-merge for dependabot PRs example: https://github.com/grafana/loki/actions/runs/5737803871/job/15550129786?pr=10138 After discussing it with internal security team, they asked to try changing the event type from `pull_request_target` -> `pull_request`. Personally, I suspect this would make any difference, given It worked with `pull_request_target` when testing it with my personal repo. https://github.com/kavirajk/dependabot-play/blob/main/.github/workflows/dependabot_reviewer.yml#L5 Auto-merged PR. https://github.com/kavirajk/dependabot-play/pull/15 But still wanted to test this. Which issue(s) this PR fixes: Fixes #<issue number> Special notes for your reviewer: Checklist - [x] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) Signed-off-by: Kaviraj <kavirajkanagaraj@gmail.com>	3 years ago
Kaviraj Kanagaraj	ad70b5d54b	fix(dependabot): Combine approve and enable auto-merge into one step (#10126 ) What this PR does / why we need it: Update the "dependabot_reviewer" Github Action workflow. This should fix the issues we having when trying to enable "auto-merge" for example https://github.com/grafana/loki/actions/runs/5680113173/job/15393583446?pr=10080 I have tested this using another repository example. https://github.com/kavirajk/dependabot-play/pull/7 With workflow change. https://github.com/kavirajk/dependabot-play/blob/main/.github/workflows/dependabot_reviewer.yml#L27-L35 Which issue(s) this PR fixes: Fixes #NA Special notes for your reviewer: Checklist - [x] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) Signed-off-by: Kaviraj <kavirajkanagaraj@gmail.com>	3 years ago
Periklis Tsirakidis	60e33e3705	Fix operator-bundle action syntax error (#10084 )	3 years ago
Periklis Tsirakidis	ab7854c381	operator: Exit bundle action if uncommitted changes (#10013 )	3 years ago
Kaviraj Kanagaraj	31bae5af4c	chore(loki): Enable `auto-merge` of `dependabot` pr(s) (#10029 ) What this PR does / why we need it: This just enables "auto-merge" and PR is still merged only after all the checks are passed. Also related #10025 Which issue(s) this PR fixes: Fixes #<issue number> Special notes for your reviewer: Main rationale here is keep loki dependencies up to date and avoid frequent toil of needing manual work to merge dependabot PR. Checklist - [x] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) Signed-off-by: Kaviraj <kavirajkanagaraj@gmail.com>	3 years ago
dependabot[bot]	a7536ef03b	Bump helm/kind-action from 1.7.0 to 1.8.0 (#9959 ) Bumps [helm/kind-action](https://github.com/helm/kind-action) from 1.7.0 to 1.8.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/helm/kind-action/releases">helm/kind-action's releases</a>.</em></p> <blockquote> <h2>v1.8.0</h2> <h2>What's Changed</h2> <ul> <li><a href="https://redirect.github.com/helm/kind-action/issues/54">#54</a> ignore the occasional post delete cluster by <a href="https://github.com/jerry153fish"><code>@jerry153fish</code></a> in <a href="https://redirect.github.com/helm/kind-action/pull/79">helm/kind-action#79</a></li> <li>bump kind to v0.20.0 and script cleanup by <a href="https://github.com/cpanato"><code>@cpanato</code></a> in <a href="https://redirect.github.com/helm/kind-action/pull/88">helm/kind-action#88</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/jerry153fish"><code>@jerry153fish</code></a> made their first contribution in <a href="https://redirect.github.com/helm/kind-action/pull/79">helm/kind-action#79</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/helm/kind-action/compare/v1.7.0...v1.8.0">https://github.com/helm/kind-action/compare/v1.7.0...v1.8.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`dda0770415`"><code>dda0770</code></a> bump kind to v0.20.0 and script cleanup (<a href="https://redirect.github.com/helm/kind-action/issues/88">#88</a>)</li> <li><a href="`a2c862bdb6`"><code>a2c862b</code></a> <a href="https://redirect.github.com/helm/kind-action/issues/54">#54</a> ignore the occasional post delete cluster (<a href="https://redirect.github.com/helm/kind-action/issues/79">#79</a>)</li> <li><a href="`1307bb2fde`"><code>1307bb2</code></a> Bump actions/checkout from 3.5.2 to 3.5.3 (<a href="https://redirect.github.com/helm/kind-action/issues/87">#87</a>)</li> <li>See full diff in <a href="https://github.com/helm/kind-action/compare/v1.7.0...v1.8.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=helm/kind-action&package-manager=github_actions&previous-version=1.7.0&new-version=1.8.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	af71030e30	Bump anchore/sbom-action from 0.14.2 to 0.14.3 (#9793 ) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.14.2 to 0.14.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's releases</a>.</em></p> <blockquote> <h2>v0.14.3</h2> <h2>Changes in v0.14.3</h2> <ul> <li>update Syft to v0.84.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/418">#418</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`78fc58e266`"><code>78fc58e</code></a> chore(deps): update Syft to v0.84.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/418">#418</a>)</li> <li>See full diff in <a href="https://github.com/anchore/sbom-action/compare/v0.14.2...v0.14.3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.14.2&new-version=0.14.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	62bb5b27ae	Bump cachix/install-nix-action from 18 to 22 (#9731 ) Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 18 to 22. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/cachix/install-nix-action/releases">cachix/install-nix-action's releases</a>.</em></p> <blockquote> <h2>install-nix-action-v22</h2> <ul> <li>Nix 2.16.1</li> <li>Fix issues with System Integrity Protection when using macos-12</li> </ul> <h2>install-nix-action-v21</h2> <ul> <li>pin Nix to 2.15.1 (recent releases broke too many things)</li> <li>fix the action to work on custom containers</li> </ul> <h2>install-nix-action-v20</h2> <p><a href="https://discourse.nixos.org/t/nix-2-14-0-released/25900/4Fix">https://discourse.nixos.org/t/nix-2-14-0-released/25900/4Fix</a> support for Nix 2.14 new profile location: <a href="https://redirect.github.com/NixOS/nix/pull/5226">NixOS/nix#5226</a></p> <h2>install-nix-action-v19</h2> <ul> <li>expose github_access_token option and use the default github token by default to prevent rate limiting</li> <li>support <code>--no-daemon</code> installation</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`6ed004b9cc`"><code>6ed004b</code></a> Merge pull request <a href="https://redirect.github.com/cachix/install-nix-action/issues/184">#184</a> from cachix/macos-bump</li> <li><a href="`e27879448e`"><code>e278794</code></a> Nix: 2.15.1 -> 2.16.1</li> <li><a href="`8ab3881720`"><code>8ab3881</code></a> use system certs</li> <li><a href="`16b951426e`"><code>16b9514</code></a> Merge pull request <a href="https://redirect.github.com/cachix/install-nix-action/issues/182">#182</a> from l0b0/feat/configure-editors</li> <li><a href="`2c203fd87b`"><code>2c203fd</code></a> feat: Configure editors</li> <li><a href="`4b933aa7eb`"><code>4b933aa</code></a> Nix: 2.15.1</li> <li><a href="`35806937f1`"><code>3580693</code></a> Merge pull request <a href="https://redirect.github.com/cachix/install-nix-action/issues/179">#179</a> from joergdw/fix-action-path</li> <li><a href="`3eb7a24508`"><code>3eb7a24</code></a> Merge pull request <a href="https://redirect.github.com/cachix/install-nix-action/issues/178">#178</a> from cachix/docs/149</li> <li><a href="`840ed7ce9a`"><code>840ed7c</code></a> Document how to pass env vars to modern nix commands</li> <li><a href="`b2f4229533`"><code>b2f4229</code></a> Fix action to make it work on custom containers;</li> <li>Additional commits viewable in <a href="https://github.com/cachix/install-nix-action/compare/v18...v22">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=cachix/install-nix-action&package-manager=github_actions&previous-version=18&new-version=22)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Jack Baldry	8391e557b1	Update doc-validator to v3.0.0 (#9666 ) ## 3.0.0 ### Added - Structured output for use with [`reviewdog`](https://github.com/reviewdog/reviewdog). You can achieve the original error output by piping the output to the following `jq` expression: `jq -r '"ERROR: \(.location.path):\(.location.range.start.line):\(.location.range.start.column): \(.message)"'`. - Suggestions for simple link fixes. In GitHub, [`reviewdog`](https://github.com/reviewdog/reviewdog) comments these suggestions for convenient replacement. - Support for anchors referring to repeated headings. In the case that a page has multiple headings that share the same text, the renderer appends a zero indexed, numbered suffix to the identifier. For example, when there are two headings that are both "Heading text", the first anchor identifier is `heading-text` and the second is `heading-text-1`. - Error when running `doc-validator` on no files. Notes for reviewer: This also updates the `make-docs` procedure. Please ensure you can run `make docs` from the `docs/` directory before approving and merging this PR. --------- Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
dependabot[bot]	90ed037a78	Bump golangci/golangci-lint-action from 3.4.0 to 3.5.0 (#9627 ) Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.4.0 to 3.5.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v3.5.0</h2> <h2>What's Changed</h2> <ul> <li>build(deps-dev): bump eslint from 8.32.0 to 8.33.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/659">golangci/golangci-lint-action#659</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.48.2 to 5.49.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/661">golangci/golangci-lint-action#661</a></li> <li>build(deps-dev): bump eslint-plugin-simple-import-sort from 9.0.0 to 10.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/662">golangci/golangci-lint-action#662</a></li> <li>build(deps-dev): bump <code>@vercel/ncc</code> from 0.36.0 to 0.36.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/660">golangci/golangci-lint-action#660</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.48.2 to 5.49.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/663">golangci/golangci-lint-action#663</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.49.0 to 5.50.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/665">golangci/golangci-lint-action#665</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.49.0 to 5.50.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/666">golangci/golangci-lint-action#666</a></li> <li>build(deps-dev): bump typescript from 4.9.4 to 4.9.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/667">golangci/golangci-lint-action#667</a></li> <li>build(deps): bump <code>@types/node</code> from 18.11.18 to 18.11.19 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/668">golangci/golangci-lint-action#668</a></li> <li>doc: add quote aroung go version by <a href="https://github.com/vaughany"><code>@vaughany</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/670">golangci/golangci-lint-action#670</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.50.0 to 5.51.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/671">golangci/golangci-lint-action#671</a></li> <li>build(deps-dev): bump prettier from 2.8.3 to 2.8.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/673">golangci/golangci-lint-action#673</a></li> <li>build(deps): bump <code>@types/node</code> from 18.11.19 to 18.13.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/674">golangci/golangci-lint-action#674</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.50.0 to 5.51.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/675">golangci/golangci-lint-action#675</a></li> <li>build(deps): bump <code>@actions/cache</code> from 3.1.2 to 3.1.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/672">golangci/golangci-lint-action#672</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.51.0 to 5.52.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/678">golangci/golangci-lint-action#678</a></li> <li>build(deps): bump <code>@types/node</code> from 18.13.0 to 18.14.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/679">golangci/golangci-lint-action#679</a></li> <li>build(deps-dev): bump eslint from 8.33.0 to 8.34.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/680">golangci/golangci-lint-action#680</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.51.0 to 5.52.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/681">golangci/golangci-lint-action#681</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.52.0 to 5.53.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/684">golangci/golangci-lint-action#684</a></li> <li>build(deps-dev): bump eslint from 8.34.0 to 8.35.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/685">golangci/golangci-lint-action#685</a></li> <li>build(deps): bump <code>@types/node</code> from 18.14.0 to 18.14.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/688">golangci/golangci-lint-action#688</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.52.0 to 5.53.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/687">golangci/golangci-lint-action#687</a></li> <li>build(deps): bump <code>@actions/cache</code> from 3.1.3 to 3.1.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/686">golangci/golangci-lint-action#686</a></li> <li>build(deps): bump <code>@types/node</code> from 18.14.2 to 18.14.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/691">golangci/golangci-lint-action#691</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.53.0 to 5.54.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/692">golangci/golangci-lint-action#692</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.53.0 to 5.54.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/693">golangci/golangci-lint-action#693</a></li> <li>build(deps-dev): bump eslint-config-prettier from 8.6.0 to 8.7.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/694">golangci/golangci-lint-action#694</a></li> <li>build(deps-dev): bump eslint from 8.35.0 to 8.36.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/699">golangci/golangci-lint-action#699</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.54.0 to 5.54.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/700">golangci/golangci-lint-action#700</a></li> <li>build(deps): bump <code>@types/node</code> from 18.14.6 to 18.15.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/701">golangci/golangci-lint-action#701</a></li> <li>docs/build: update to setup-go@v4 by <a href="https://github.com/caarlos0"><code>@caarlos0</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/704">golangci/golangci-lint-action#704</a></li> <li>build(deps-dev): bump typescript from 4.9.5 to 5.0.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/705">golangci/golangci-lint-action#705</a></li> <li>build(deps): bump <code>@types/node</code> from 18.15.1 to 18.15.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/706">golangci/golangci-lint-action#706</a></li> <li>build(deps): bump <code>@actions/http-client</code> from 2.0.1 to 2.1.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/697">golangci/golangci-lint-action#697</a></li> <li>build(deps-dev): bump prettier from 2.8.4 to 2.8.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/707">golangci/golangci-lint-action#707</a></li> <li>build(deps): bump <code>@actions/cache</code> from 3.1.4 to 3.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/698">golangci/golangci-lint-action#698</a></li> <li>build(deps-dev): bump eslint-config-prettier from 8.7.0 to 8.8.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/709">golangci/golangci-lint-action#709</a></li> <li>build(deps): bump <code>@types/node</code> from 18.15.3 to 18.15.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/710">golangci/golangci-lint-action#710</a></li> <li>build(deps-dev): bump prettier from 2.8.5 to 2.8.7 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/711">golangci/golangci-lint-action#711</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.54.1 to 5.56.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/712">golangci/golangci-lint-action#712</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.54.0 to 5.56.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/713">golangci/golangci-lint-action#713</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.56.0 to 5.57.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/718">golangci/golangci-lint-action#718</a></li> <li>build(deps-dev): bump typescript from 5.0.2 to 5.0.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/717">golangci/golangci-lint-action#717</a></li> <li>build(deps-dev): bump eslint from 8.36.0 to 8.37.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/719">golangci/golangci-lint-action#719</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.56.0 to 5.57.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/720">golangci/golangci-lint-action#720</a></li> <li>build(deps): bump <code>@types/node</code> from 18.15.10 to 18.15.11 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/721">golangci/golangci-lint-action#721</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.57.0 to 5.57.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/golangci/golangci-lint-action/pull/722">golangci/golangci-lint-action#722</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`5f1fec7010`"><code>5f1fec7</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.59.6 to 5.59.7 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/758">#758</a>)</li> <li><a href="`601007b788`"><code>601007b</code></a> build(deps): bump <code>@types/node</code> from 20.2.3 to 20.2.5 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/756">#756</a>)</li> <li><a href="`d2a913e97b`"><code>d2a913e</code></a> build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.59.6 to 5.59.7 ...</li> <li><a href="`7233bd71cb`"><code>7233bd7</code></a> build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.59.5 to 5.59.6 ...</li> <li><a href="`687f029324`"><code>687f029</code></a> build(deps): bump <code>@types/node</code> from 20.1.4 to 20.2.3 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/755">#755</a>)</li> <li><a href="`f9990cd216`"><code>f9990cd</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.59.5 to 5.59.6 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/754">#754</a>)</li> <li><a href="`f30aa514f9`"><code>f30aa51</code></a> build(deps-dev): bump eslint from 8.40.0 to 8.41.0 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/753">#753</a>)</li> <li><a href="`6b21f586ed`"><code>6b21f58</code></a> build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.59.2 to 5.59.5 ...</li> <li><a href="`535ed3a04b`"><code>535ed3a</code></a> build(deps): bump <code>@types/semver</code> from 7.3.13 to 7.5.0 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/748">#748</a>)</li> <li><a href="`0078ef00ab`"><code>0078ef0</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.59.1 to 5.59.5 (<a href="https://redirect.github.com/golangci/golangci-lint-action/issues/750">#750</a>)</li> <li>Additional commits viewable in <a href="https://github.com/golangci/golangci-lint-action/compare/v3.4.0...v3.5.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golangci/golangci-lint-action&package-manager=github_actions&previous-version=3.4.0&new-version=3.5.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	f6dc3aff5c	Bump helm/kind-action from 1.5.0 to 1.7.0 (#9494 ) Bumps [helm/kind-action](https://github.com/helm/kind-action) from 1.5.0 to 1.7.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/helm/kind-action/releases">helm/kind-action's releases</a>.</em></p> <blockquote> <h2>v1.7.0</h2> <h2>What's Changed</h2> <ul> <li>default action to use kind release v0.19.0 by <a href="https://github.com/cpanato"><code>@cpanato</code></a> in <a href="https://redirect.github.com/helm/kind-action/pull/85">helm/kind-action#85</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/helm/kind-action/compare/v1.6.0...v1.7.0">https://github.com/helm/kind-action/compare/v1.6.0...v1.7.0</a></p> <h2>v1.6.0</h2> <h2>What's Changed</h2> <ul> <li>fix: update documentation to represent actual kubectl version used by <a href="https://github.com/tomhobson"><code>@tomhobson</code></a> in <a href="https://redirect.github.com/helm/kind-action/pull/83">helm/kind-action#83</a></li> <li>update kind to v0.18.0 and kubectl to v1.26.4 by <a href="https://github.com/cpanato"><code>@cpanato</code></a> in <a href="https://redirect.github.com/helm/kind-action/pull/84">helm/kind-action#84</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/tomhobson"><code>@tomhobson</code></a> made their first contribution in <a href="https://redirect.github.com/helm/kind-action/pull/83">helm/kind-action#83</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/helm/kind-action/compare/v1.5.0...v1.6.0">https://github.com/helm/kind-action/compare/v1.5.0...v1.6.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`fa81e57adf`"><code>fa81e57</code></a> default action to use kind release v0.19.0 (<a href="https://redirect.github.com/helm/kind-action/issues/85">#85</a>)</li> <li><a href="`28ee08d267`"><code>28ee08d</code></a> update kind to v0.18.0 and kubectl to v1.26.4 (<a href="https://redirect.github.com/helm/kind-action/issues/84">#84</a>)</li> <li><a href="`2d96ac1d71`"><code>2d96ac1</code></a> fix: update documentation to represent actual kubectl version used (<a href="https://redirect.github.com/helm/kind-action/issues/83">#83</a>)</li> <li><a href="`b2013cb316`"><code>b2013cb</code></a> Bump actions/checkout from 3.5.0 to 3.5.2 (<a href="https://redirect.github.com/helm/kind-action/issues/82">#82</a>)</li> <li><a href="`716a7056e0`"><code>716a705</code></a> Bump actions/checkout from 3.4.0 to 3.5.0 (<a href="https://redirect.github.com/helm/kind-action/issues/81">#81</a>)</li> <li><a href="`52d48f105d`"><code>52d48f1</code></a> Bump actions/checkout from 3.3.0 to 3.4.0 (<a href="https://redirect.github.com/helm/kind-action/issues/80">#80</a>)</li> <li><a href="`15e2bf8beb`"><code>15e2bf8</code></a> Bump actions/checkout from 3.2.0 to 3.3.0 (<a href="https://redirect.github.com/helm/kind-action/issues/77">#77</a>)</li> <li><a href="`ab62653af4`"><code>ab62653</code></a> Bump actions/checkout from 3.1.0 to 3.2.0 (<a href="https://redirect.github.com/helm/kind-action/issues/74">#74</a>)</li> <li>See full diff in <a href="https://github.com/helm/kind-action/compare/v1.5.0...v1.7.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=helm/kind-action&package-manager=github_actions&previous-version=1.5.0&new-version=1.7.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Michel Hollands <42814411+MichelHollands@users.noreply.github.com>	3 years ago
dependabot[bot]	3893542d70	Bump anchore/sbom-action from 0.14.1 to 0.14.2 (#9416 ) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.14.1 to 0.14.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's releases</a>.</em></p> <blockquote> <h2>v0.14.2</h2> <h2>Changes in v0.14.2</h2> <ul> <li>Update Syft to v0.80.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/415">#415</a>)</li> <li>Make sure all invalid artifact name characters are replaced <a href="https://redirect.github.com/anchore/sbom-action/issues/396">#396</a> (<a href="https://redirect.github.com/anchore/sbom-action/issues/417">#417</a>) [<a href="https://github.com/lts-po">lts-po</a>]</li> <li>Ensure SBOM is copied to <code>output-file</code> (<a href="https://redirect.github.com/anchore/sbom-action/issues/411">#411</a>) [<a href="https://github.com/gszr">gszr</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`4d571ad103`"><code>4d571ad</code></a> chore(deps): update Syft to v0.80.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/415">#415</a>)</li> <li><a href="`a59054d328`"><code>a59054d</code></a> fix: Make sure all invalid chars are replaced for artifact names -- fixes <a href="https://redirect.github.com/anchore/sbom-action/issues/39">#39</a>...</li> <li><a href="`ea7104d799`"><code>ea7104d</code></a> chore: update snapshot workflow (<a href="https://redirect.github.com/anchore/sbom-action/issues/413">#413</a>)</li> <li><a href="`50dec67b80`"><code>50dec67</code></a> chore(deps): update Syft to v0.77.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/409">#409</a>)</li> <li><a href="`8e2e93770c`"><code>8e2e937</code></a> fix: ensure sbom is copied to output-file (<a href="https://redirect.github.com/anchore/sbom-action/issues/411">#411</a>)</li> <li><a href="`800a56fe08`"><code>800a56f</code></a> chore: update snapshot workflow (<a href="https://redirect.github.com/anchore/sbom-action/issues/412">#412</a>)</li> <li><a href="`9cf3dcd573`"><code>9cf3dcd</code></a> chore: update snapshot workflow (<a href="https://redirect.github.com/anchore/sbom-action/issues/410">#410</a>)</li> <li><a href="`642f63cefc`"><code>642f63c</code></a> chore: update syft update check (<a href="https://redirect.github.com/anchore/sbom-action/issues/408">#408</a>)</li> <li><a href="`a7622b6841`"><code>a7622b6</code></a> chore: update deprecated set-output (<a href="https://redirect.github.com/anchore/sbom-action/issues/407">#407</a>)</li> <li><a href="`c82ee2675f`"><code>c82ee26</code></a> chore: add workflow to update snapshots from PR comment (<a href="https://redirect.github.com/anchore/sbom-action/issues/406">#406</a>)</li> <li>Additional commits viewable in <a href="https://github.com/anchore/sbom-action/compare/v0.14.1...v0.14.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.14.1&new-version=0.14.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Salva Corts	5470ff0968	GitHub Actions - Replace `::set-output` by new format (#9254 ) What this PR does / why we need it: Starting 1st June 2023 workflows using `save-state` or `set-output` commands via stdout will fail with an error. More details: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/ This PR changes all `set-output` commands by the new expected formatting. Which issue(s) this PR fixes: Fixes https://github.com/grafana/loki-private/issues/659 Special notes for your reviewer: There are no usages for `save-state`. Checklist - [ ] Reviewed the [`CONTRIBUTING.md`](https://github.com/grafana/loki/blob/main/CONTRIBUTING.md) guide (required) - [ ] Documentation added - [ ] Tests updated - [ ] `CHANGELOG.md` updated - [ ] Changes that require user attention or interaction to upgrade are documented in `docs/sources/upgrading/_index.md`	3 years ago
Trevor Whitney	76c6681feb	Add release notes appender action (#9063 ) What this PR does / why we need it: This PR aims to remove the manual process required to create release notes during a release. It will allow contributors to add the label `add-to-release-notes` to any PR. When that PR is merged, this action will create another PR appending the original PR's # and title to the release notes for the next release. This second PR will give the author an opportunity to add a description to their addition, as well as give maintainers an opportunity to discuss it's relevance in the release notes.	3 years ago
dependabot[bot]	691b6aaae9	Bump anchore/sbom-action from 0.12.0 to 0.14.1 (#9083 ) Bumps [anchore/sbom-action](https://github.com/anchore/sbom-action) from 0.12.0 to 0.14.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/anchore/sbom-action/releases">anchore/sbom-action's releases</a>.</em></p> <blockquote> <h2>v0.14.1</h2> <h2>Changes in v0.14.1</h2> <ul> <li>chore(deps): update Syft to v0.76.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/403">#403</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> </ul> <h2>v0.13.4</h2> <h2>Changes in v0.13.4</h2> <ul> <li>Added support of workflow artifact's retention policy (<a href="https://redirect.github.com/anchore/sbom-action/issues/398">#398</a>) [<a href="https://github.com/ViacheslavKudinov">ViacheslavKudinov</a>]</li> <li>Use the correct SHA for dependency snapshots from pull requests (<a href="https://redirect.github.com/anchore/sbom-action/issues/401">#401</a>) [<a href="https://github.com/juxtin">juxtin</a>]</li> <li>Update Syft to v0.75.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/394">#394</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> </ul> <h2>v0.13.3</h2> <h2>Changes in v0.13.3</h2> <ul> <li>Update Syft to v0.68.1 (<a href="https://redirect.github.com/anchore/sbom-action/issues/391">#391</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> </ul> <h2>v0.13.2</h2> <h2>Changes in v0.13.2</h2> <ul> <li>Update Syft to v0.68.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/387">#387</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> </ul> <h2>v0.13.1</h2> <h2>Changes in v0.13.1</h2> <ul> <li>File input not being passed properly to Syft invocation (<a href="https://redirect.github.com/anchore/sbom-action/issues/385">#385</a>) [<a href="https://github.com/kzantow">kzantow</a>]</li> <li>Update Syft to v0.60.3 (<a href="https://redirect.github.com/anchore/sbom-action/issues/386">#386</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> </ul> <h2>v0.13.0</h2> <h2>Changes in v0.13.0</h2> <ul> <li>Allow type "file:..." to enable creation of SBOMs from tar and other package formats (<a href="https://redirect.github.com/anchore/sbom-action/issues/357">#357</a>) [<a href="https://github.com/malt3">malt3</a>]</li> <li>Update Syft to v0.59.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/371">#371</a>) [<a href="https://github.com/anchore-actions-token-generator">anchore-actions-token-generator</a>]</li> <li>Update dependencies and node version (<a href="https://redirect.github.com/anchore/sbom-action/issues/372">#372</a>) [<a href="https://github.com/kzantow">kzantow</a>]</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`422cb34a0f`"><code>422cb34</code></a> chore(deps): update Syft to v0.76.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/403">#403</a>)</li> <li><a href="`785eb5c59a`"><code>785eb5c</code></a> chore: tweak some workflow text (<a href="https://redirect.github.com/anchore/sbom-action/issues/402">#402</a>)</li> <li><a href="`448520c4f1`"><code>448520c</code></a> [FEATURE] Added support of workflow artifact's retention policy (<a href="https://redirect.github.com/anchore/sbom-action/issues/398">#398</a>)</li> <li><a href="`8a5a132123`"><code>8a5a132</code></a> Use the correct SHA for pull request snapshots (<a href="https://redirect.github.com/anchore/sbom-action/issues/401">#401</a>)</li> <li><a href="`98774eae87`"><code>98774ea</code></a> chore: Update Syft to v0.75.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/394">#394</a>)</li> <li><a href="`f65c4834e1`"><code>f65c483</code></a> Update Syft to v0.69.1 (<a href="https://redirect.github.com/anchore/sbom-action/issues/393">#393</a>)</li> <li><a href="`71b5f8c8f8`"><code>71b5f8c</code></a> Update Syft to v0.69.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/392">#392</a>)</li> <li><a href="`07978da4bd`"><code>07978da</code></a> Update Syft to v0.68.1 (<a href="https://redirect.github.com/anchore/sbom-action/issues/391">#391</a>)</li> <li><a href="`54e36e45f3`"><code>54e36e4</code></a> feat: update Syft to v0.68.0 (<a href="https://redirect.github.com/anchore/sbom-action/issues/387">#387</a>)</li> <li><a href="`06e109483e`"><code>06e1094</code></a> fix: file input not being passed properly to syft invocation (<a href="https://redirect.github.com/anchore/sbom-action/issues/385">#385</a>)</li> <li>Additional commits viewable in <a href="https://github.com/anchore/sbom-action/compare/v0.12.0...v0.14.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=anchore/sbom-action&package-manager=github_actions&previous-version=0.12.0&new-version=0.14.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	9dd2aac9e4	Bump actions/checkout from 2 to 3 (#9084 ) Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v3.0.0</h2> <ul> <li>Updated to the node16 runtime by default <ul> <li>This requires a minimum <a href="https://github.com/actions/runner/releases/tag/v2.285.0">Actions Runner</a> version of v2.285.0 to run, which is by default available in GHES 3.4 or later.</li> </ul> </li> </ul> <h2>v2.7.0</h2> <h2>What's Changed</h2> <ul> <li>Add new public key for known_hosts (<a href="https://redirect.github.com/actions/checkout/issues/1237">#1237</a>) by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1238">actions/checkout#1238</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2.6.0...v2.7.0">https://github.com/actions/checkout/compare/v2.6.0...v2.7.0</a></p> <h2>v2.6.0</h2> <h2>What's Changed</h2> <ul> <li>Add backports to v2 branch by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1040">actions/checkout#1040</a> <ul> <li>Includes backports from the following changes: <a href="https://redirect.github.com/actions/checkout/pull/964">actions/checkout#964</a>, <a href="https://redirect.github.com/actions/checkout/pull/1002">actions/checkout#1002</a>, <a href="https://redirect.github.com/actions/checkout/pull/1029">actions/checkout#1029</a></li> <li>Upgraded the licensed version to match what is used in v3.</li> </ul> </li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2.5.0...v2.6.0">https://github.com/actions/checkout/compare/v2.5.0...v2.6.0</a></p> <h2>v2.5.0</h2> <h2>What's Changed</h2> <ul> <li>Update <code>@actions/core</code> to 1.10.0 by <a href="https://github.com/rentziass"><code>@rentziass</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/962">actions/checkout#962</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2...v2.5.0">https://github.com/actions/checkout/compare/v2...v2.5.0</a></p> <h2>v2.4.2</h2> <h2>What's Changed</h2> <ul> <li>Add set-safe-directory input to allow customers to take control. (<a href="https://redirect.github.com/actions/checkout/issues/770">#770</a>) by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/776">actions/checkout#776</a></li> <li>Prepare changelog for v2.4.2. by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/778">actions/checkout#778</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v2...v2.4.2">https://github.com/actions/checkout/compare/v2...v2.4.2</a></p> <h2>v2.4.1</h2> <ul> <li>Fixed an issue where checkout failed to run in container jobs due to the new git setting <code>safe.directory</code></li> </ul> <h2>v2.4.0</h2> <ul> <li>Convert SSH URLs like <code>org-<ORG_ID>@github.com:</code> to <code>https://github.com/</code> - <a href="https://redirect.github.com/actions/checkout/pull/621">pr</a></li> </ul> <h2>v2.3.5</h2> <p>Update dependencies</p> <h2>v2.3.4</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/379">Add missing <code>await</code>s</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/360">Swap to Environment Files</a></li> </ul> <h2>v2.3.3</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/345">Remove Unneeded commit information from build logs</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/326">Add Licensed to verify third party dependencies</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>v3.4.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1209">Upgrade codeql actions to v2</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1210">Upgrade dependencies</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1225">Upgrade <code>@actions/io</code></a></li> </ul> <h2>v3.3.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/1045">Implement branch list using callbacks from exec function</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1050">Add in explicit reference to private checkout options</a></li> <li>[Fix comment typos (that got added in <a href="https://redirect.github.com/actions/checkout/issues/770">#770</a>)](<a href="https://redirect.github.com/actions/checkout/pull/1057">actions/checkout#1057</a>)</li> </ul> <h2>v3.2.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/942">Add GitHub Action to perform release</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/967">Fix status badge</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1002">Replace datadog/squid with ubuntu/squid Docker image</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/964">Wrap pipeline commands for submoduleForeach in quotes</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1029">Update <code>@actions/io</code> to 1.1.2</a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/1039">Upgrading version to 3.2.0</a></li> </ul> <h2>v3.1.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/939">Use <code>@actions/core</code> <code>saveState</code> and <code>getState</code></a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/922">Add <code>github-server-url</code> input</a></li> </ul> <h2>v3.0.2</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/770">Add input <code>set-safe-directory</code></a></li> </ul> <h2>v3.0.1</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/762">Fixed an issue where checkout failed to run in container jobs due to the new git setting <code>safe.directory</code></a></li> <li><a href="https://redirect.github.com/actions/checkout/pull/744">Bumped various npm package versions</a></li> </ul> <h2>v3.0.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/689">Update to node 16</a></li> </ul> <h2>v2.3.1</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/284">Fix default branch resolution for .wiki and when using SSH</a></li> </ul> <h2>v2.3.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/278">Fallback to the default branch</a></li> </ul> <h2>v2.2.0</h2> <ul> <li><a href="https://redirect.github.com/actions/checkout/pull/258">Fetch all history for all tags and branches when fetch-depth=0</a></li> </ul> <h2>v2.1.1</h2> <ul> <li>Changes to support GHES (<a href="https://redirect.github.com/actions/checkout/pull/236">here</a> and <a href="https://redirect.github.com/actions/checkout/pull/248">here</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`8f4b7f8486`"><code>8f4b7f8</code></a> Add new public key for known_hosts (<a href="https://redirect.github.com/actions/checkout/issues/1237">#1237</a>)</li> <li><a href="`cd6a9fd493`"><code>cd6a9fd</code></a> Update update-main-version.yml</li> <li><a href="`24cb908017`"><code>24cb908</code></a> Bump <code>@actions/io</code> to v1.1.3 (<a href="https://redirect.github.com/actions/checkout/issues/1225">#1225</a>)</li> <li><a href="`27135e314d`"><code>27135e3</code></a> Upgrade dependencies (<a href="https://redirect.github.com/actions/checkout/issues/1210">#1210</a>)</li> <li><a href="`7b187184d1`"><code>7b18718</code></a> Upgrade codeql actions to v2 (<a href="https://redirect.github.com/actions/checkout/issues/1209">#1209</a>)</li> <li><a href="`ac59398561`"><code>ac59398</code></a> Fix comment typos (that got added in <a href="https://redirect.github.com/actions/checkout/issues/770">#770</a>) (<a href="https://redirect.github.com/actions/checkout/issues/1057">#1057</a>)</li> <li><a href="`3ba5ee6fac`"><code>3ba5ee6</code></a> Add in explicit reference to private checkout options (<a href="https://redirect.github.com/actions/checkout/issues/1050">#1050</a>)</li> <li><a href="`8856415920`"><code>8856415</code></a> Implement branch list using callbacks from exec function (<a href="https://redirect.github.com/actions/checkout/issues/1045">#1045</a>)</li> <li><a href="`755da8c3cf`"><code>755da8c</code></a> 3.2.0 (<a href="https://redirect.github.com/actions/checkout/issues/1039">#1039</a>)</li> <li><a href="`26d48e8ea1`"><code>26d48e8</code></a> Update <code>@actions/io</code> to 1.1.2 (<a href="https://redirect.github.com/actions/checkout/issues/1029">#1029</a>)</li> <li>Additional commits viewable in <a href="https://github.com/actions/checkout/compare/v2...v3">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=2&new-version=3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Ethan	09ecc843f5	sbom action namechange (#9038 ) What this PR does / why we need it: Realized the SBOM action was not running due to the lack of a file extenstion on the workflow file. Quick add	3 years ago
dependabot[bot]	82a1f23ac9	Bump helm/chart-testing-action from 2.3.1 to 2.4.0 (#8907 ) Bumps [helm/chart-testing-action](https://github.com/helm/chart-testing-action) from 2.3.1 to 2.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/helm/chart-testing-action/releases">helm/chart-testing-action's releases</a>.</em></p> <blockquote> <h2>v2.4.0</h2> <h2>What's Changed</h2> <ul> <li>Retry artifact downloads by <a href="https://github.com/steven-sheehy"><code>@steven-sheehy</code></a> in <a href="https://redirect.github.com/helm/chart-testing-action/pull/111">helm/chart-testing-action#111</a></li> <li>fix example workflow by <a href="https://github.com/CrowdSalat"><code>@CrowdSalat</code></a> in <a href="https://redirect.github.com/helm/chart-testing-action/pull/115">helm/chart-testing-action#115</a></li> <li>docs: only run chart lint if changed by <a href="https://github.com/fty4"><code>@fty4</code></a> in <a href="https://redirect.github.com/helm/chart-testing-action/pull/106">helm/chart-testing-action#106</a></li> <li>docs: use GITHUB_OUTPUT in example workflow by <a href="https://github.com/fty4"><code>@fty4</code></a> in <a href="https://redirect.github.com/helm/chart-testing-action/pull/107">helm/chart-testing-action#107</a></li> <li>Use cosign to verify the release and update chart-testing to v3.8.0 by <a href="https://github.com/cpanato"><code>@cpanato</code></a> in <a href="https://redirect.github.com/helm/chart-testing-action/pull/116">helm/chart-testing-action#116</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/steven-sheehy"><code>@steven-sheehy</code></a> made their first contribution in <a href="https://redirect.github.com/helm/chart-testing-action/pull/111">helm/chart-testing-action#111</a></li> <li><a href="https://github.com/CrowdSalat"><code>@CrowdSalat</code></a> made their first contribution in <a href="https://redirect.github.com/helm/chart-testing-action/pull/115">helm/chart-testing-action#115</a></li> <li><a href="https://github.com/fty4"><code>@fty4</code></a> made their first contribution in <a href="https://redirect.github.com/helm/chart-testing-action/pull/106">helm/chart-testing-action#106</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/helm/chart-testing-action/compare/v2...v2.4.0">https://github.com/helm/chart-testing-action/compare/v2...v2.4.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`e878887317`"><code>e878887</code></a> Use cosign to verify the release and update chart-testing to v3.8.0 (<a href="https://redirect.github.com/helm/chart-testing-action/issues/116">#116</a>)</li> <li><a href="`68148c920a`"><code>68148c9</code></a> docs: use GITHUB_OUTPUT in example workflow (<a href="https://redirect.github.com/helm/chart-testing-action/issues/107">#107</a>)</li> <li><a href="`b567af86ba`"><code>b567af8</code></a> docs: only run chart lint if changed (<a href="https://redirect.github.com/helm/chart-testing-action/issues/106">#106</a>)</li> <li><a href="`4c22ea3887`"><code>4c22ea3</code></a> fix example workflow (<a href="https://redirect.github.com/helm/chart-testing-action/issues/115">#115</a>)</li> <li><a href="`a153a59efc`"><code>a153a59</code></a> Retry artifact downloads (<a href="https://redirect.github.com/helm/chart-testing-action/issues/111">#111</a>)</li> <li>See full diff in <a href="https://github.com/helm/chart-testing-action/compare/v2.3.1...v2.4.0">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=helm/chart-testing-action&package-manager=github_actions&previous-version=2.3.1&new-version=2.4.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	1c012d6a26	Bump actions/setup-go from 3 to 4 (#8837 ) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-go/releases">actions/setup-go's releases</a>.</em></p> <blockquote> <h2>v4.0.0</h2> <p>In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying <code>cache: false</code>.</p> <pre lang="yaml"><code>steps: - uses: actions/checkout@v3 - uses: actions/setup-go@v4 with: go-version: ‘1.19’ - run: go run hello.go </code></pre> <p>Besides, we introduce such changes as</p> <ul> <li><a href="https://redirect.github.com/actions/setup-go/pull/305">Allow to use only GOCACHE for cache</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/315">Bump json5 from 2.2.1 to 2.2.3</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/323">Use proper version for primary key in cache</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/351">Always add Go bin to the PATH</a></li> <li><a href="https://redirect.github.com/actions/setup-go/pull/350">Add step warning if go-version input is empty</a></li> </ul> <h2>Add support for stable and oldstable aliases</h2> <p>In scope of this release we introduce aliases for the <code>go-version</code> input. The <code>stable</code> alias instals the latest stable version of Go. The <code>oldstable</code> alias installs previous latest minor release (the stable is 1.19.x -> the oldstable is 1.18.x).</p> <h3>Stable</h3> <pre lang="yaml"><code>steps: - uses: actions/checkout@v3 - uses: actions/setup-go@v3 with: go-version: 'stable' - run: go run hello.go </code></pre> <h3>OldStable</h3> <pre lang="yaml"><code>steps: - uses: actions/checkout@v3 - uses: actions/setup-go@v3 with: go-version: 'oldstable' - run: go run hello.go </code></pre> <h2>Add support for go.work and pass the token input through on GHES</h2> <p>In scope of this release we added <a href="https://redirect.github.com/actions/setup-go/pull/283">support for go.work file to pass it in go-version-file input</a>.</p> <pre lang="yaml"><code>steps: - uses: actions/checkout@v3 - uses: actions/setup-go@v3 </tr></table> </code></pre> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`4d34df0c23`"><code>4d34df0</code></a> Update configuration files (<a href="https://redirect.github.com/actions/setup-go/issues/348">#348</a>)</li> <li><a href="`fdc0d672a1`"><code>fdc0d67</code></a> Add Go bin if go-version input is empty (<a href="https://redirect.github.com/actions/setup-go/issues/351">#351</a>)</li> <li><a href="`ebfdf6ac95`"><code>ebfdf6a</code></a> add warning if go-version is empty (<a href="https://redirect.github.com/actions/setup-go/issues/350">#350</a>)</li> <li><a href="`b27d76912e`"><code>b27d769</code></a> fix lockfileVersion (<a href="https://redirect.github.com/actions/setup-go/issues/349">#349</a>)</li> <li><a href="`c51a720768`"><code>c51a720</code></a> Enable caching by default with default input (<a href="https://redirect.github.com/actions/setup-go/issues/332">#332</a>)</li> <li><a href="`6b848af622`"><code>6b848af</code></a> Merge pull request <a href="https://redirect.github.com/actions/setup-go/issues/343">#343</a> from akv-platform/reusable-workflow</li> <li><a href="`12741cc209`"><code>12741cc</code></a> Format update-config-files.yml</li> <li><a href="`7a77a6aab6`"><code>7a77a6a</code></a> Merge branch 'main' into reusable-workflow</li> <li><a href="`42a0cc8e14`"><code>42a0cc8</code></a> Add update-config-files.yml</li> <li><a href="`7406d654ad`"><code>7406d65</code></a> Add and configure ESLint and update configuration for Prettier (<a href="https://redirect.github.com/actions/setup-go/issues/341">#341</a>)</li> <li>Additional commits viewable in <a href="https://github.com/actions/setup-go/compare/v3...v4">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-go&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Travis Patterson <travis.patterson@grafana.com>	3 years ago
Periklis Tsirakidis	55045add93	operator: Fix publishing operator bundle on quay.io (#8815 )	3 years ago
Trevor Whitney	a4d06acca7	Add yaml linting step to helm ci (#8822 ) What this PR does / why we need it: Adds a yaml linting step for the included rules in the loki helm chart. Only way I could think to enforce the comma line ending was to require qutoes around string, otherwise the linter cannot tell if the comma is just part of the string.	3 years ago
Gerard Vanloo	a926ae3249	operator: Update golang to 1.20; Update dependencies to latest (#8776 )	3 years ago
Jack Baldry	ee0f46beed	Update publishing workflows to use organization secret (#8435 ) Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
Jack Baldry	da2c5dfc56	Skip image validation (#8425 ) Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
dependabot[bot]	ec3a0a1ca9	Bump docker/build-push-action from 2 to 4 (#8416 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Ethan	8fd956e439	Snyk Workflow add (#8375 )	3 years ago
dependabot[bot]	251370228a	Bump golangci/golangci-lint-action from 3.3.1 to 3.4.0 (#8332 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
Jack Baldry	265aae86f5	Use organization ISSUE_COMMANDS_TOKEN with reduced scope (#8325 ) Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
Jack Baldry	de38da69bc	Update doc-validator to latest release (#8221 )	3 years ago
Jack Baldry	33553c9462	Use latest release of doc-validator image (#8211 ) - Fixes regression where non-Markdown files are considered for linting. - Uses a canonical algorithm for converting headings to anchor identifiers taken from the Hugo source. Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
Jack Baldry	3cb15d62d5	Docs: Add doc-validator tool to lint technical documentation (#6569 ) Source code: https://github.com/grafana/technical-documentation/tree/main/tools/doc-validator Signed-off-by: Jack Baldry <jack.baldry@grafana.com> What this PR does / why we need it: Adds a CI step for pull requests that validates links in technical documentation and performs linting of technical documentation source files. Special notes for your reviewer: - Lots of issues will need to be fixed before we can merge this. - The tool is still in early development so each error should be scrutinized for validity. Checklist - [ ] Documentation added - [na] Tests updated - [na] Is this an important fix or new feature? Add an entry in the `CHANGELOG.md`. - [na] Changes that require user attention or interaction to upgrade are documented in `docs/sources/upgrading/_index.md` Signed-off-by: Jack Baldry <jack.baldry@grafana.com>	3 years ago
Trevor Whitney	eb39e2645f	[helm] allow provisioned tokens to be created in different namespaces (#8081 ) What this PR does / why we need it: _Note_: This PR bumps the chart to 4.0, so it includes a few other breaking changes we've been waiting to make. The new helm chart has a few different ways to create tokens when running in enterprise mode: * The tokengen job creates the initial admin token * The provisioner job creates the self-monitoring tenant if enabled * The provisioner job can also create additional tenants if configured The problem with these jobs is they put the generated read/write tokens for these tenants in secrets in the same namespace as the loki deploiyment. This is problematic if you need these tokens for a specific application, for example a Grafana datasource, that is deployed in a separate namespace. This PR introduces two breaking changes, one of which is breaking as it significantly changes how both the self monitoring and additional tenants are configured. First it adds the value `enterprise.adminToken.additionalNamespaces` and moves `enterprise.adminTokenSecret` to `enterprise.adminToken.secret`. If `additionalNamespaces` are included, additional secrets containing the GEL admin token are created in those namespaces as well as the release namespace. Second, it changes the structure of defining a tenant from just a string name, to an object containing a `name` and `secretNamespace` field. The `secretNamespace` is the namespace the secret containing that tenants token(s) will be placed in. In the case of the self-monitoring token, a secret will still be created in the default namespace in addition to the `secretNamespace` specified as that token is required by multiple components.	3 years ago
dependabot[bot]	457be16d28	Bump helm/kind-action from 1.4.0 to 1.5.0 (#7970 ) Bumps [helm/kind-action](https://github.com/helm/kind-action) from 1.4.0 to 1.5.0. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago
dependabot[bot]	b8153d3108	Bump golangci/golangci-lint-action from 3.2.0 to 3.3.1 (#7689 ) Bumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3.2.0 to 3.3.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/golangci/golangci-lint-action/releases">golangci/golangci-lint-action's releases</a>.</em></p> <blockquote> <h2>v3.3.1</h2> <h2>What's Changed</h2> <ul> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.40.0 to 5.40.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/590">golangci/golangci-lint-action#590</a></li> <li>build(deps-dev): bump eslint from 8.25.0 to 8.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/591">golangci/golangci-lint-action#591</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.40.0 to 5.40.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/592">golangci/golangci-lint-action#592</a></li> <li>build(deps): bump <code>@actions/cache</code> from 3.0.5 to 3.0.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/593">golangci/golangci-lint-action#593</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.40.1 to 5.41.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/594">golangci/golangci-lint-action#594</a></li> <li>build(deps): bump <code>@types/semver</code> from 7.3.12 to 7.3.13 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/595">golangci/golangci-lint-action#595</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.40.1 to 5.41.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/596">golangci/golangci-lint-action#596</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.41.0 to 5.42.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/597">golangci/golangci-lint-action#597</a></li> <li>build(deps-dev): bump eslint from 8.26.0 to 8.27.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/598">golangci/golangci-lint-action#598</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.41.0 to 5.42.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/599">golangci/golangci-lint-action#599</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/golangci/golangci-lint-action/compare/v3...v3.3.1">https://github.com/golangci/golangci-lint-action/compare/v3...v3.3.1</a></p> <h2>v3.3.0</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump <code>@actions/github</code> from 5.0.1 to 5.0.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/470">golangci/golangci-lint-action#470</a></li> <li>build(deps): bump <code>@actions/cache</code> from 2.0.2 to 2.0.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/471">golangci/golangci-lint-action#471</a></li> <li>build(deps-dev): bump eslint from 8.15.0 to 8.16.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/478">golangci/golangci-lint-action#478</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.23.0 to 5.25.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/477">golangci/golangci-lint-action#477</a></li> <li>build(deps-dev): bump <code>@vercel/ncc</code> from 0.33.4 to 0.34.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/480">golangci/golangci-lint-action#480</a></li> <li>build(deps-dev): bump typescript from 4.6.4 to 4.7.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/482">golangci/golangci-lint-action#482</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.23.0 to 5.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/481">golangci/golangci-lint-action#481</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.25.0 to 5.26.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/483">golangci/golangci-lint-action#483</a></li> <li>build(deps): bump <code>@actions/cache</code> from 2.0.4 to 2.0.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/484">golangci/golangci-lint-action#484</a></li> <li>build(deps): bump <code>@actions/core</code> from 1.8.0 to 1.8.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/473">golangci/golangci-lint-action#473</a></li> <li>build(deps): bump <code>@actions/tool-cache</code> from 1.7.2 to 2.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/472">golangci/golangci-lint-action#472</a></li> <li>fix broken build by <a href="https://github.com/kamilsk"><code>@kamilsk</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/486">golangci/golangci-lint-action#486</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.26.0 to 5.27.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/487">golangci/golangci-lint-action#487</a></li> <li>build(deps-dev): bump typescript from 4.7.2 to 4.7.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/488">golangci/golangci-lint-action#488</a></li> <li>build(deps-dev): bump eslint from 8.16.0 to 8.17.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/491">golangci/golangci-lint-action#491</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.26.0 to 5.27.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/489">golangci/golangci-lint-action#489</a></li> <li>build(deps): bump <code>@actions/http-client</code> from 1.0.11 to 2.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/490">golangci/golangci-lint-action#490</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.27.0 to 5.27.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/493">golangci/golangci-lint-action#493</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.27.0 to 5.27.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/495">golangci/golangci-lint-action#495</a></li> <li>build(deps): bump <code>@actions/cache</code> from 2.0.5 to 2.0.6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/494">golangci/golangci-lint-action#494</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.27.1 to 5.28.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/497">golangci/golangci-lint-action#497</a></li> <li>build(deps-dev): bump prettier from 2.6.2 to 2.7.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/499">golangci/golangci-lint-action#499</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.27.1 to 5.28.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/501">golangci/golangci-lint-action#501</a></li> <li>build(deps-dev): bump eslint from 8.17.0 to 8.18.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/503">golangci/golangci-lint-action#503</a></li> <li>build(deps-dev): bump typescript from 4.7.3 to 4.7.4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/502">golangci/golangci-lint-action#502</a></li> <li>build(deps): bump <code>@types/semver</code> from 7.3.9 to 7.3.10 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/498">golangci/golangci-lint-action#498</a></li> <li>build(deps): bump <code>@actions/core</code> from 1.8.2 to 1.9.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/500">golangci/golangci-lint-action#500</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.28.0 to 5.29.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/504">golangci/golangci-lint-action#504</a></li> <li>build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.28.0 to 5.30.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/508">golangci/golangci-lint-action#508</a></li> <li>build(deps): bump <code>@actions/cache</code> from 2.0.6 to 3.0.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/507">golangci/golangci-lint-action#507</a></li> <li>build(deps-dev): bump eslint from 8.18.0 to 8.19.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/512">golangci/golangci-lint-action#512</a></li> <li>build(deps-dev): bump eslint-plugin-prettier from 4.0.0 to 4.2.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/pull/511">golangci/golangci-lint-action#511</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="`0ad9a0988b`"><code>0ad9a09</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.41.0 to 5.42.0 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/599">#599</a>)</li> <li><a href="`235ea57a8f`"><code>235ea57</code></a> build(deps-dev): bump eslint from 8.26.0 to 8.27.0 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/598">#598</a>)</li> <li><a href="`a6ed001163`"><code>a6ed001</code></a> build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.41.0 to 5.42.0 ...</li> <li><a href="`3a7156a1b4`"><code>3a7156a</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.40.1 to 5.41.0 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/596">#596</a>)</li> <li><a href="`481f8ba892`"><code>481f8ba</code></a> build(deps): bump <code>@types/semver</code> from 7.3.12 to 7.3.13 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/595">#595</a>)</li> <li><a href="`06edb377a6`"><code>06edb37</code></a> build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.40.1 to 5.41.0 ...</li> <li><a href="`c2f79a722b`"><code>c2f79a7</code></a> build(deps): bump <code>@actions/cache</code> from 3.0.5 to 3.0.6 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/593">#593</a>)</li> <li><a href="`d6eac69936`"><code>d6eac69</code></a> build(deps-dev): bump <code>@typescript-eslint/eslint-plugin</code> from 5.40.0 to 5.40.1 ...</li> <li><a href="`72684341c8`"><code>7268434</code></a> build(deps-dev): bump eslint from 8.25.0 to 8.26.0 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/591">#591</a>)</li> <li><a href="`a926e2b3f3`"><code>a926e2b</code></a> build(deps-dev): bump <code>@typescript-eslint/parser</code> from 5.40.0 to 5.40.1 (<a href="https://github-redirect.dependabot.com/golangci/golangci-lint-action/issues/590">#590</a>)</li> <li>Additional commits viewable in <a href="https://github.com/golangci/golangci-lint-action/compare/v3.2.0...v3.3.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golangci/golangci-lint-action&package-manager=github_actions&previous-version=3.2.0&new-version=3.3.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	3 years ago

... 2 3 4 5 6

299 Commits (6901ecd9d25e53d96c19d4cac8da0d7119d3dfa7)