Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump github.com/labstack/echo/v4 from 4.1.16 to 4.6.2 #14

Closed
wants to merge 1 commit into from
Closed

chore(deps): bump github.com/labstack/echo/v4 from 4.1.16 to 4.6.2 #14

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 10, 2022

Bumps github.com/labstack/echo/v4 from 4.1.16 to 4.6.2.

Release notes

Sourced from github.com/labstack/echo/v4's releases.

v4.6.2

Fixes

  • Fixed route containing escaped colon should be matchable but is not matched to request path #2047
  • Fixed a problem that returned wrong content-encoding when the gzip compressed content was empty. #1921
  • Update (test) dependencies #2021

Enhancements

  • Add support for configurable target header for the request_id middleware #2040
  • Change decompress middleware to use stream decompression instead of buffering #2018
  • Documentation updates

v4.6.1

Enhancements

  • Add start time to request logger middleware values #1991

v4.6.0

Introduced a new request logger middleware to help with cases when you want to use some other logging library in your application.

Fixes

  • fix timeout middleware warning: superfluous response.WriteHeader #1905

Enhancements

  • Add Cookie to KeyAuth middleware's KeyLookup #1929
  • JWT middleware should ignore case of auth scheme in request header #1951
  • Refactor default error handler to return first if response is already committed #1956
  • Added request logger middleware which helps to use custom logger library for logging requests. #1980
  • Allow escaping of colon in route path so Google Cloud API "custom methods" could be implemented #1988

v4.5.0

Important notes

A BREAKING CHANGE is introduced for JWT middleware users.

The JWT library used for the JWT middleware had to be changed from github.com/dgrijalva/jwt-go to github.com/golang-jwt/jwt due former library being unmaintained and affected by security issues. The github.com/golang-jwt/jwt project is a drop-in replacement, but supports only the latest 2 Go versions. So for JWT middleware users Go 1.15+ is required. For detailed information please read #1940

To change the library imports in all .go files in your project replace all occurrences of dgrijalva/jwt-go with golang-jwt/jwt.

For Linux CLI you can use:

find -type f -name "*.go" -exec sed -i "s/dgrijalva\/jwt-go/golang-jwt\/jwt/g" {} \;
</tr></table>

... (truncated)

Changelog

Sourced from github.com/labstack/echo/v4's changelog.

Changelog

v4.6.1 - 2021-09-26

Enhancements

  • Add start time to request logger middleware values #1991

v4.6.0 - 2021-09-20

Introduced a new request logger middleware to help with cases when you want to use some other logging library in your application.

Fixes

  • fix timeout middleware warning: superfluous response.WriteHeader #1905

Enhancements

  • Add Cookie to KeyAuth middleware's KeyLookup #1929
  • JWT middleware should ignore case of auth scheme in request header #1951
  • Refactor default error handler to return first if response is already committed #1956
  • Added request logger middleware which helps to use custom logger library for logging requests. #1980
  • Allow escaping of colon in route path so Google Cloud API "custom methods" could be implemented #1988

v4.5.0 - 2021-08-01

Important notes

A BREAKING CHANGE is introduced for JWT middleware users. The JWT library used for the JWT middleware had to be changed from github.com/dgrijalva/jwt-go to github.com/golang-jwt/jwt due former library being unmaintained and affected by security issues. The github.com/golang-jwt/jwt project is a drop-in replacement, but supports only the latest 2 Go versions. So for JWT middleware users Go 1.15+ is required. For detailed information please read #1940

To change the library imports in all .go files in your project replace all occurrences of dgrijalva/jwt-go with golang-jwt/jwt.

For Linux CLI you can use:

find -type f -name "*.go" -exec sed -i "s/dgrijalva\/jwt-go/golang-jwt\/jwt/g" {} \;
go mod tidy

Fixes

  • Change JWT library to github.com/golang-jwt/jwt #1946

v4.4.0 - 2021-07-12

... (truncated)

Commits
  • 6b5e62b fix: route containing escaped colon should be matchable but is not matched to...
  • 7bde9ae Fixed a problem that returned wrong content-encoding when the gzip compressed...
  • c32fafa Add support for configurable target header for the request_id middleware
  • b437ee3 stream decompression instead of buffering (#2018)
  • 902c553 Added comments for RateLimiterMemoryStoreConfig and RateLimiterMemoryStore
  • 3f09966 removed unnecessary comments
  • bd29ef9 added references to Limiter docs for 0-1 behaviour
  • 8b4cce5 Sort import order on example in README.md
  • 0c4ad86 update dependencies
  • 7ef3e00 update dependencies
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump github.com/labstack/echo/v4 from 4.1.16 to 4.6.2
16fb643 
Bumps [github.com/labstack/echo/v4](https://github.com/labstack/echo) from 4.1.16 to 4.6.2.
- [Release notes](https://github.com/labstack/echo/releases)
- [Changelog](https://github.com/labstack/echo/blob/master/CHANGELOG.md)
- [Commits](labstack/echo@v4.1.16...v4.6.2)

---
updated-dependencies:
- dependency-name: github.com/labstack/echo/v4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jan 10, 2022
@dependabot dependabot bot mentioned this pull request Jan 10, 2022
Closed
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jan 11, 2022

Superseded by #15.

@dependabot dependabot bot closed this Jan 11, 2022
@dependabot dependabot bot deleted the dependabot/go_modules/github.com/labstack/echo/v4-4.6.2 branch January 11, 2022 11:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants