build(deps): bump actions/setup-go from 5.2.0 to 6.4.0#940
Merged
madhavilosetty-intel merged 1 commit intoJun 9, 2026
Merged
Conversation
dependabot
Bot
added
dependencies
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-go-6.4.0
branch
3 times, most recently
from
3732230 to
95410e2
Compare
Codecov Report✅ All modified and coverable lines are covered by tests. Additional details and impacted files@@ Coverage Diff @@
## main #940 +/- ##
=======================================
Coverage 42.91% 42.91%
=======================================
Files 138 138
Lines 13064 13064
=======================================
Hits 5606 5606
Misses 6903 6903
Partials 555 555 ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
Contributor
|
@dependabot recreate |
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-go-6.4.0
branch
from
fa12d6a to
45e0135
Compare
Contributor
|
@dependabot recreate |
dependabot
Bot
force-pushed
the
dependabot/github_actions/actions/setup-go-6.4.0
branch
from
45e0135 to
d5647e7
Compare
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.2.0 to 6.4.0. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@3041bf5...4a36011) --- updated-dependencies: - dependency-name: actions/setup-go dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
madhavilosetty-intel
force-pushed
the
dependabot/github_actions/actions/setup-go-6.4.0
branch
from
d5647e7 to
6ea31eb
Compare
madhavilosetty-intel
approved these changes
Jun 9, 2026
madhavilosetty-intel
deleted the
dependabot/github_actions/actions/setup-go-6.4.0
branch
DevipriyaS17
added a commit
that referenced
this pull request
Jun 9, 2026
* build(deps): bump step-security/harden-runner from 2.19.1 to 2.19.2 (#978) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.1 to 2.19.2. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@a5ad31d...9ca718d) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix(api): allow profile PATCH without passwords (#973) * build(deps): bump step-security/harden-runner from 2.19.2 to 2.19.3 (#980) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.2 to 2.19.3. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@9ca718d...ab7a940) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github/codeql-action from 4.35.4 to 4.35.5 (#981) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.4 to 4.35.5. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@68bde55...9e0d7b8) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.35.5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: correct inverted GIN_MODE condition in handleDebugMode (#979) * Extract shouldAutoLaunchBrowser() — browser now launches only when GIN_MODE=debug Related to device-management-toolkit/deployment#573 * fix: cert generation returns parsed cert with valid Raw field (#970) * Return x509.ParseCertificate(certBytes) instead of &template * Persist web server cert files to disk when loading from Vault * Propagate saveCertAndKeyToFiles errors Related to device-management-toolkit/deployment#573 * fix(config): resolve symlinks when locating config dir (#985) os.Executable() can return a symlink path; using filepath.Dir on it anchors config beside the symlink rather than the real binary. On macOS this surfaces when /usr/local/bin/dmt-console symlinks into /usr/local/device-management-toolkit/console: the app tries to mkdir /usr/local/bin/config and fails with EACCES. * feat(tray): enforce single instance and expose reachable URLs A second invocation now detects the running instance via a per-user flock (Unix) or named mutex (Windows), opens the existing tray's URL in the browser, and exits cleanly rather than racing on port 8181. The lock FD is inherited across the background re-exec so it survives parent exit. Default HTTP_HOST changes from "localhost" to wildcard so the tray is reachable from other devices on the LAN. The tray menu and startup log enumerate every routable IPv4, filtering virtual bridges (docker, veth, br-, tun/tap, virbr, vmnet, vboxnet, wg, zt, awdl, llw) and deduping. When bound to a wildcard, the UI's injected ##CONSOLE_SERVER_API## resolves to a relative URL so same-origin fetches match the user's actual host/SNI. Refs: Package Console as an installer #870 * build(deps): bump codecov/codecov-action from 6.0.0 to 6.0.1 (#987) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 6.0.0 to 6.0.1. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@57e3a13...e79a696) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-version: 6.0.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * ci: point CODEOWNERS at owner-console team The previous reference @device-management-toolkit/owner-open-amt-cloud-toolkit has no direct access to this repository, which causes GitHub to silently treat the CODEOWNERS rule as having no valid owners. As a result, `require_code_owner_reviews` on the main branch is vacuously satisfied by any approval from a user with write access, defeating the gate. owner-console has admin access on this repo, so referencing it makes the required-review enforcement actually work. * Revert "fix: correct inverted GIN_MODE condition in handleDebugMode (#979)" This reverts commit 8bb7d69. * chore(deps): release for dependency and CI updates (#1018) * fix: allow AUTH_ env vars for OAuth Configuration beyond just config ref: #842 * fix: default browser launch host to configured host (#1015) * fix(ui): browser always launched to localhost ignoring configured host launchBrowser hardcoded the URL without reading cfg.Host, so the browser always opened http://localhost:<port> regardless of what HTTP_HOST was set to. When HTTP_HOST was unset, an empty cfg.Host produced a malformed URL like http://:8181. Read cfg.Host when building the URL and default to "localhost" only when the configured value is empty. Update README lint commands to use --pull always so Docker always fetches the current latest image instead of reusing a stale cache. * refactor: extract shared host-normalisation helpers to hostnorm.go Add untagged hostnorm.go with unbracketHost, isWildcardListenHost, and navigableHost so browser.go and tray.go share one implementation. * build(deps): bump github/codeql-action from 4.35.5 to 4.36.0 (#1025) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.35.5 to 4.36.0. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@9e0d7b8...7211b7c) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: fetch processor info via Enumerate/Pull instead of Get (#1028) Co-authored-by: MadhaviLosetty <madhavi.losetty@gmail.com> * build(deps): bump github.com/getkin/kin-openapi from 0.138.0 to 0.139.0 (#1026) Bumps [github.com/getkin/kin-openapi](https://github.com/getkin/kin-openapi) from 0.138.0 to 0.139.0. - [Release notes](https://github.com/getkin/kin-openapi/releases) - [Commits](getkin/kin-openapi@v0.138.0...v0.139.0) --- updated-dependencies: - dependency-name: github.com/getkin/kin-openapi dependency-version: 0.139.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com> * feat: adds support for randomly generated admin password on first run * build(deps): bump step-security/harden-runner from 2.19.3 to 2.19.4 (#1024) Bumps [step-security/harden-runner](https://github.com/step-security/harden-runner) from 2.19.3 to 2.19.4. - [Release notes](https://github.com/step-security/harden-runner/releases) - [Commits](step-security/harden-runner@ab7a940...9af89fc) --- updated-dependencies: - dependency-name: step-security/harden-runner dependency-version: 2.19.4 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump docker/login-action from 4.1.0 to 4.2.0 (#1023) Bumps [docker/login-action](https://github.com/docker/login-action) from 4.1.0 to 4.2.0. - [Release notes](https://github.com/docker/login-action/releases) - [Commits](docker/login-action@4907a6d...650006c) --- updated-dependencies: - dependency-name: docker/login-action dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * fix: ensure kvmavailable is returned accurately upon amtfeature set (#1030) * build(deps): bump modernc.org/sqlite from 1.50.1 to 1.51.0 (#1031) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.50.1 to 1.51.0. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.50.1...v1.51.0) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.51.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat: store lmsInstalled in deviceInfo JSON column (#905) * feat: store lmsInstalled in deviceInfo JSON column * Wire deviceInfo serialization/deserialization in dtoToEntity/entityToDTO * Merge isLMSAvailable from activation into deviceInfo.lmsInstalled * Add LMSInstalled field to DeviceInfo DTO struct Related to device-management-toolkit/rpc-go#1246 * refactor: reuse existing mock --------- Co-authored-by: Mike Johanson <michael.johanson@intel.com> * build(deps): bump JulienKode/pull-request-name-linter-action (#1040) Bumps [JulienKode/pull-request-name-linter-action](https://github.com/julienkode/pull-request-name-linter-action) from 20.1.0 to 20.5.0. - [Release notes](https://github.com/julienkode/pull-request-name-linter-action/releases) - [Commits](JulienKode/pull-request-name-linter-action@4fb4c27...8dab22a) --- updated-dependencies: - dependency-name: JulienKode/pull-request-name-linter-action dependency-version: 20.5.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github/codeql-action from 4.36.0 to 4.36.1 (#1039) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.0 to 4.36.1. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@7211b7c...87557b9) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com> * build(deps): bump github.com/go-playground/validator/v10 (#1038) Bumps [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) from 10.30.2 to 10.30.3. - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](go-playground/validator@v10.30.2...v10.30.3) --- updated-dependencies: - dependency-name: github.com/go-playground/validator/v10 dependency-version: 10.30.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com> * build(docker): bump golang alpine base image digest (#1045) Bump both build stages to golang:1.26-alpine (sha256:f23e8b22), which ships patched alpine 3.23 packages and clears the stale base-image CVEs Trivy was reporting. * chore: update build tasks from previous release (#1044) * build(deps): bump github.com/quic-go/quic-go from 0.59.0 to 0.59.1 (#1043) Bumps [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) from 0.59.0 to 0.59.1. - [Release notes](https://github.com/quic-go/quic-go/releases) - [Commits](quic-go/quic-go@v0.59.0...v0.59.1) --- updated-dependencies: - dependency-name: github.com/quic-go/quic-go dependency-version: 0.59.1 dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump modernc.org/sqlite from 1.51.0 to 1.52.0 (#1059) Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.51.0 to 1.52.0. - [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md) - [Commits](https://gitlab.com/cznic/sqlite/compare/v1.51.0...v1.52.0) --- updated-dependencies: - dependency-name: modernc.org/sqlite dependency-version: 1.52.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * feat(devices): wireless profile management API (#921) Add CRUD wireless profile management to the device surface so operators can list, create, update, and delete Intel AMT WiFi endpoint profiles (including 802.1x/EAP profiles) directly through Console instead of hand-driving WSMAN. New HTTP routes under networkSettings/wireless/profile/{guid} are backed by a devices usecase that talks to extended WSMAN Management operations: it reads existing WiFi and CIM IEEE 802.1x settings, resolves their concrete dependencies, and applies adds/updates while enforcing profile-name and priority uniqueness. For 802.1x profiles the usecase reconciles client/root certificates and private keys against the device, reusing existing credential handles when present and adding them otherwise, with a short pause to let AMT settle certificate handling before the profile is applied. Read responses are sanitized: passwords, CACert, ClientCert, and PrivateKey are never returned, only non-sensitive fields (profile name, SSID, auth/encryption method, priority, and 802.1x username/auth protocol). Request payloads are guarded by custom validators wired into the HTTP router, and the new endpoints are folded into the OpenAPI spec generation flow alongside regenerated mocks, unit tests, and integration tests covering the read/add/update/delete paths. Depends on go-wsman-messages#686 for the update-WiFi-settings message. Refs #834 * build(deps): bump github/codeql-action from 4.36.1 to 4.36.2 (#1054) Bumps [github/codeql-action](https://github.com/github/codeql-action) from 4.36.1 to 4.36.2. - [Release notes](https://github.com/github/codeql-action/releases) - [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md) - [Commits](github/codeql-action@87557b9...8aad20d) --- updated-dependencies: - dependency-name: github/codeql-action dependency-version: 4.36.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> * build(deps): bump actions/checkout from 6.0.2 to 6.0.3 (#1048) Bumps [actions/checkout](https://github.com/actions/checkout) from 6.0.2 to 6.0.3. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@de0fac2...df4cb1c) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 6.0.3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump github.com/jackc/pgx/v5 from 5.9.2 to 5.10.0 (#1047) Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.9.2 to 5.10.0. - [Changelog](https://github.com/jackc/pgx/blob/master/CHANGELOG.md) - [Commits](jackc/pgx@v5.9.2...v5.10.0) --- updated-dependencies: - dependency-name: github.com/jackc/pgx/v5 dependency-version: 5.10.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> * build(deps): bump github.com/getkin/kin-openapi from 0.139.0 to 0.140.0 (#1046) Bumps [github.com/getkin/kin-openapi](https://github.com/getkin/kin-openapi) from 0.139.0 to 0.140.0. - [Release notes](https://github.com/getkin/kin-openapi/releases) - [Commits](getkin/kin-openapi@v0.139.0...v0.140.0) --- updated-dependencies: - dependency-name: github.com/getkin/kin-openapi dependency-version: 0.140.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump actions/setup-go from 5.2.0 to 6.4.0 (#940) Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.2.0 to 6.4.0. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@3041bf5...4a36011) --- updated-dependencies: - dependency-name: actions/setup-go dependency-version: 6.4.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * build(deps): bump codecov/codecov-action from 6.0.1 to 7.0.0 (#1058) Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 6.0.1 to 7.0.0. - [Release notes](https://github.com/codecov/codecov-action/releases) - [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md) - [Commits](codecov/codecov-action@e79a696...fb8b358) --- updated-dependencies: - dependency-name: codecov/codecov-action dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> * fix: remove conflict markers from go.sum --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Madhavi Losetty <madhavi.losetty@intel.com> Co-authored-by: Sinchana S R <sinchana.s.r@intel.com> Co-authored-by: Mike <michael.johanson@intel.com> Co-authored-by: Sudhir Pola <sudhir.pola@intel.com> Co-authored-by: MadhaviLosetty <madhavi.losetty@gmail.com> Co-authored-by: Ganesh Raikhelkar <ganesh.raikhelkar@intel.com> Co-authored-by: shaoboon <shao.boon.loh@intel.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps actions/setup-go from 5.2.0 to 6.4.0.
Release notes
Sourced from actions/setup-go's releases.
... (truncated)
Commits
4a36011docs: fix Microsoft build of Go link (#734)8f19afcfeat: add go-download-base-url input for custom Go distributions (#721)27fdb26Bump minimatch from 3.1.2 to 3.1.5 (#727)def8c39Rearrange README.md, add advanced-usage.md (#724)4b73464Fix golang download url to go.dev (#469)a5f9b05Update default Go module caching to use go.mod (#705)7a3fe6cBump qs from 6.14.0 to 6.14.1 (#703)b9adafdBump actions/checkout from 5 to 6 (#686)d73f6bcREADME.md: correct to actions/checkout@v6 (#683)ae252eeBump@actions/cacheto v5 (#695)