Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update etc modules - autoclosed #334

Closed
wants to merge 1 commit into from
Closed

Update etc modules - autoclosed #334

wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Jul 21, 2022
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Type Update Change
github.com/golang-jwt/jwt/v4 replace patch v4.4.1 -> v4.4.3
github.com/google/go-cmp require patch v0.5.8 -> v0.5.9
github.com/microcosm-cc/bluemonday replace patch v1.0.16 -> v1.0.21
github.com/nats-io/nats-server/v2 replace patch v2.9.8 -> v2.9.9
github.com/prometheus/client_golang require minor v1.12.2 -> v1.14.0
github.com/spf13/viper require minor v1.12.0 -> v1.14.0
github.com/valyala/fasthttp replace minor v1.34.0 -> v1.43.0
go (source) golang minor 1.17 -> 1.19
go.etcd.io/etcd/v3 replace patch v3.5.1 -> v3.5.6
golang.org/x/text replace minor v0.4.0 -> v0.5.0

Release Notes

golang-jwt/jwt

v4.4.3: 4.4.3

Compare Source

What's Changed

New Contributors

Full Changelog: golang-jwt/jwt@v4.4.2...v4.4.3

v4.4.2

Compare Source

What's Changed

New Contributors

Full Changelog: golang-jwt/jwt@v4.4.1...v4.4.2

google/go-cmp

v0.5.9

Compare Source

Reporter changes:

  • (#​299) Adjust heuristic for line-based versus byte-based diffing
  • (#​306) Use value.TypeString in PathStep.String

Code cleanup changes:

  • (#​297) Use reflect.Value.IsZero
  • (#​304) Format with Go 1.19 formatter
  • (#​300 )Fix typo in Result documentation
  • (#​302) Pre-declare global type variables
  • (#​309) Run tests on Go 1.19
microcosm-cc/bluemonday

v1.0.21: Very minor bug fix to remove empty elements without attributes

Compare Source

Thanks to @​Gusted for https://github.com/microcosm-cc/bluemonday/pull/151 which fixes a bug that allowed a policy to be defined in a way that input could've allowed an empty and meaningless element to be left in the output when it should not have done so.

This is not a security issue, and the details can be seen in the PR comment.

v1.0.20: Updated x/net/html

Compare Source

This is an update of dependencies, specifically it updates the HTML parser within go/net/html.

The update removes a capability, Microsoft style comments that allow browser conditionals no longer works. This is due to a fix on the part of the Go team to prevent XSS within HTML comments, and the commit in question is here golang/net@06994584 . There is no easy to see safe way to restore that functionality without adding more risk to those who .AllowComments() and so I am accepting that this non-standard use of HTML comments is no longer supported.

As part of this version, the older release of v1.0.19 is retracted.

v1.0.19: Add SVG inline images, improve RGB color and length matching, fix bug

Compare Source

What's Changed

  • css: improve RGB hex color and length matching by @​hochhaus in https://github.com/microcosm-cc/bluemonday/pull/142
  • css: add support for image/svg+xml for data-uri inline images
  • html: fix double-escaping of content within HTML attributes
  • tests: added more tests to provide examples of proofs of some open issues

New Contributors

Full Changelog: microcosm-cc/bluemonday@v1.0.18...v1.0.19

v1.0.18: Fix bug in iframe sandboxvalues

Compare Source

What's Changed

Full Changelog: microcosm-cc/bluemonday@v1.0.17...v1.0.18

v1.0.17: Add support for the "sandbox" attribute on the "iframe" element

Compare Source

As per https://github.com/microcosm-cc/bluemonday/issues/135 @​kiwiz has added support to bluemonday that allows the iframe element to correctly declare the security attribute sandbox.

You can read about that attribute here: https://developer.mozilla.org/en-US/docs/Web/HTML/Element/iframe#attr-sandbox

No other change is in this release.

nats-io/nats-server

v2.9.9

Compare Source

Changelog

Go Version
  • 1.19.4: Both the release executables and Docker images are built with this Go release
Improved

  • JetStream

    • Avoid full state snapshot for streams with many deleted items (#​3680)
    • Refactor to make stream removal from server consistent (#​3691)

  • Help/Usage

    • Display two additional --reload signal options, ldm and term (#​3683)
Fixed
  • Authorization
    • Prevent returning no_auth_required when a client tries to connect in operator mode (#​3667)
      • Any client (Java) that suppressed sending credentials before of this flag could be affected.
      • This only affects the 2.9.8 server version
  • JetStream
    • Tag policies not honored during stream replica reassignment after a peer is removed (#​3678)
    • Address issues when concurrent "create" requests for the same stream are issued (#​3679)
    • Server panic when consumer state was not decoded correctly (#​3688)
    • Ensure consumers that are deleted on startup are removed from the system (#​3689)
    • Fixed JetStream remained disabled for reactivated JWT accounts (#​3690, thank you @​JulienVdG)
  • Leafnodes
Complete Changes
prometheus/client_golang

v1.14.0: 1.14.0 / 2022-11-08

Compare Source

It might look like a small release, but it's quite opposite 😱 There were many non user facing changes and fixes and enormous work from engineers from Grafana to add native histograms in 💪🏾 Enjoy! 😍

What's Changed

  • [FEATURE] Add Support for Native Histograms. #​1150
  • [CHANGE] Extend prometheus.Registry to implement prometheus.Collector interface. #​1103

New Contributors

Full Changelog: prometheus/client_golang@v1.13.1...v1.14.0

v1.13.1: 1.13.1 / 2022-11-02

Compare Source

  • [BUGFIX] Fix race condition with Exemplar in Counter. #​1146
  • [BUGFIX] Fix CumulativeCount value of +Inf bucket created from exemplar. #​1148
  • [BUGFIX] Fix double-counting bug in promhttp.InstrumentRoundTripperCounter. #​1118

Full Changelog: prometheus/client_golang@v1.13.0...v1.13.1

v1.13.0: 1.13.0 / 2022-08-06

Compare Source

  • [CHANGE] Minimum required Go version is now 1.17 (we also test client_golang against the new 1.19 version).
  • [ENHANCEMENT] Added prometheus.TransactionalGatherer interface for promhttp.Handler use which allows using low allocation update techniques for custom collectors. #​989
  • [ENHANCEMENT] Added exemplar support to prometheus.NewConstHistogram. See ExampleNewConstHistogram_WithExemplar example on how to use it. #​986
  • [ENHANCEMENT] Query requests are now retried after network error. #​1022
  • [ENHANCEMENT] prometheus/push.Pusher now has context-aware methods that pass context to HTTP requests. #​1028
  • [ENHANCEMENT] prometheus/push.Pusher has now Error method that retrieve last error. #​1075
  • [ENHANCEMENT] testutil.GatherAndCompare provides now readable diff on failed comparisons. #​998
  • [ENHANCEMENT] Query API now supports timeouts. #​1014
  • [ENHANCEMENT] New MetricVec method DeletePartialMatch(labels Labels) for deleting all metrics that match provided labels. #​1013
  • [ENHANCEMENT] api.Config now accepts passing custom *http.Client. #​1025
  • [BUGFIX] Raise exemplar labels limit from 64 to 128 bytes as specified in OpenMetrics spec. #​1091
  • [BUGFIX] Allow adding exemplar to +Inf bucket to const histograms. #​1094
  • [ENHANCEMENT] Most promhttp.Instrument* middlewares now support adding exemplars to metrics. This allows hooking those to your tracing middleware that retrieves trace ID and puts it in exemplar if present. #​1055
  • [ENHANCEMENT] Added testutil.ScrapeAndCompare method. #​1043
  • [BUGFIX] Fixed GopherJS build support. #​897
  • [ENHANCEMENT] ⚠️ Added way to specify what runtime/metrics collectors.NewGoCollector should use. See ExampleGoCollector_WithAdvancedGoMetrics. #​1102

New Contributors ❤️

Commits
spf13/viper

v1.14.0

Compare Source

What's Changed

Enhancements 🚀
Breaking Changes 🛠
Dependency Updates ⬆️

Full Changelog: spf13/viper@v1.13.0...v1.14.0

v1.13.0

Compare Source

Important: This is the last release supporting Go 1.15.

What's Changed
Exciting New Features 🎉
Enhancements 🚀
Bug Fixes 🐛
Dependency Updates ⬆️
New Contributors

Full Changelog: spf13/viper@v1.12.0...v1.13.0

valyala/fasthttp

v1.43.0

Compare Source

v1.42.0

Compare Source

v1.41.0

Compare Source

v1.40.0

Compare Source

  • 2f1e949 Improve isTLSAlready check (Erik Dubbelboer)
  • 404c8a8 Chore (#​1365) (tyltr)
  • 79ccfff Don't use tls ClientSessionCache (Erik Dubbelboer)
  • 28bec71 Fix "use of closed network connection" error check (Erik Dubbelboer)
  • 3b147b7 Fix(server): reset maxRequestBodySize to the server's config (#​1360) (Geralt X Li)
  • af94725 Reduce slice growth in adaptor (#​1356) (Qing Moy)

v1.39.0

Compare Source

v1.38.0

Compare Source

  • 16d30c4 Support AIX SO_REUSEADDR and SO_REUSEPORT (#​1328) (zhangyongding)
  • bc24f9d Consolidate TCPKeepalive in server.Serve (#​1320) (#​1324) (Y.Horie)
  • 8a32089 Add ConnPoolStrategy field to client (#​1317) (Thearas)
  • 35aca7b BodyDecoded() for request and responses (#​1308) (Sergey Ponomarev)
  • 66cd502 header.go Referer() optimize (#​1313) (Sergey Ponomarev)
  • c9f43ea Response.ContentEncoding(): store as field and avoid using Header.SetCanonical() (#​1311) (Sergey Ponomarev)
  • de18824 Optimize server connection close logic (#​1310) (Sergey Ponomarev)

v1.37.0

Compare Source

  • 66bc61e Add an option to allow empty root in the fsHandler (#​1299) (RW)
  • 9961079 Fix userdata re-use after Remove (Erik Dubbelboer)

v1.36.0

Compare Source

v1.35.0

Compare Source

golang/go

v1.19.4

v1.19.3

v1.19.2

v1.19.1

v1.19.0

v1.18.9

v1.18.8

v1.18.7

v1.18.6

v1.18.5

v1.18.4

v1.18.3

v1.18.2

v1.18.1

v1.18.0

etcd-io/etcd

v3.5.6

Compare Source

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.5.6

### choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}

rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test

curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-

</details>

---

### Configuration

📅 **Schedule**: Branch creation - "after 6am on thursday" (UTC), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://app.renovatebot.com/dashboard#github/giantswarm/rbac-operator).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzMi4xMjAuMCIsInVwZGF0ZWRJblZlciI6IjM0LjUxLjAifQ==-->

@renovate renovate bot requested a review from a team July 21, 2022 11:27
@renovate renovate bot added the dependencies Pull requests that update a dependency file label Jul 21, 2022
@renovate renovate bot changed the title Update etc modules Update module go to 1.18 Aug 2, 2022
@renovate renovate bot force-pushed the renovate/etc-modules branch 2 times, most recently from 6ab5fe4 to b66038e Compare August 2, 2022 17:42
@renovate renovate bot changed the title Update module go to 1.18 Update module go to 1.19 Aug 2, 2022
@renovate renovate bot force-pushed the renovate/etc-modules branch 3 times, most recently from 11ef09e to 80d027c Compare August 6, 2022 10:22
@renovate renovate bot changed the title Update module go to 1.19 Update etc modules Aug 6, 2022
@renovate renovate bot force-pushed the renovate/etc-modules branch 2 times, most recently from 6529d21 to 070add4 Compare August 11, 2022 10:52
@renovate renovate bot force-pushed the renovate/etc-modules branch 8 times, most recently from 6f65db3 to bf56889 Compare August 24, 2022 12:40
@renovate renovate bot force-pushed the renovate/etc-modules branch 2 times, most recently from 9bdb50b to cba7a3b Compare November 8, 2022 09:00
@renovate renovate bot force-pushed the renovate/etc-modules branch 3 times, most recently from 8ebac24 to a347558 Compare November 21, 2022 16:59
@renovate renovate bot force-pushed the renovate/etc-modules branch 4 times, most recently from d1a35ed to 2460322 Compare November 28, 2022 15:30
@renovate renovate bot force-pushed the renovate/etc-modules branch 6 times, most recently from 2239e49 to 8077424 Compare December 4, 2022 15:57
@renovate renovate bot changed the title Update etc modules Update etc modules - autoclosed Dec 9, 2022
@renovate renovate bot closed this Dec 9, 2022
@renovate renovate bot deleted the renovate/etc-modules branch December 9, 2022 08:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants