{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":285864234,"defaultBranch":"main","name":"go-jose","ownerLogin":"go-jose","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2020-08-07T15:38:05.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/68707210?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1715878865.0","currentOid":""},"activityList":{"items":[{"before":"2b40ad6d5d5242ad29b5a4f81cdd799596f50e30","after":null,"ref":"refs/heads/dependabot/go_modules/github.com/stretchr/testify-1.9.0","pushedAt":"2024-05-16T17:05:09.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"}},{"before":"b4f2d537fed3a279179c6e1a418a1f0ad1c98319","after":"696da50b9ef6b1fc40668b3126ae1d4163c1d194","ref":"refs/heads/main","pushedAt":"2024-05-16T17:05:09.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0 (#124)\n\nBumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.2 to 1.9.0.\r\n- [Release notes](https://github.com/stretchr/testify/releases)\r\n- [Commits](stretchr/testify@v1.8.2...v1.9.0)\r\n\r\n---\r\nupdated-dependencies:\r\n- dependency-name: github.com/stretchr/testify\r\n dependency-type: direct:production\r\n update-type: version-update:semver-minor\r\n...\r\n\r\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0 (#124)"}},{"before":"8567ed5343f6b41b51601727d49cac29b22d7517","after":"2b40ad6d5d5242ad29b5a4f81cdd799596f50e30","ref":"refs/heads/dependabot/go_modules/github.com/stretchr/testify-1.9.0","pushedAt":"2024-05-16T17:02:08.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0\n\nBumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.2 to 1.9.0.\n- [Release notes](https://github.com/stretchr/testify/releases)\n- [Commits](https://github.com/stretchr/testify/compare/v1.8.2...v1.9.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/stretchr/testify\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0"}},{"before":"c04f32f74f5afcdd1c066f4725e5e5d2b209967b","after":null,"ref":"refs/heads/dependabot/go_modules/golang.org/x/crypto-0.23.0","pushedAt":"2024-05-16T17:01:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"}},{"before":"27bd43862730fee0db29baf6683fee9e32bbe96a","after":"b4f2d537fed3a279179c6e1a418a1f0ad1c98319","ref":"refs/heads/main","pushedAt":"2024-05-16T17:01:04.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Bump golang.org/x/crypto from 0.19.0 to 0.23.0 (#123)\n\nBumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.19.0 to 0.23.0.\r\n- [Commits](golang/crypto@v0.19.0...v0.23.0)\r\n\r\n---\r\nupdated-dependencies:\r\n- dependency-name: golang.org/x/crypto\r\n dependency-type: direct:production\r\n update-type: version-update:semver-minor\r\n...\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump golang.org/x/crypto from 0.19.0 to 0.23.0 (#123)"}},{"before":"de3c477e673f5edcbde46658d544348b75217b8c","after":"c04f32f74f5afcdd1c066f4725e5e5d2b209967b","ref":"refs/heads/dependabot/go_modules/golang.org/x/crypto-0.23.0","pushedAt":"2024-05-16T16:58:32.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump golang.org/x/crypto from 0.19.0 to 0.23.0\n\nBumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.19.0 to 0.23.0.\n- [Commits](https://github.com/golang/crypto/compare/v0.19.0...v0.23.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/crypto\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump golang.org/x/crypto from 0.19.0 to 0.23.0"}},{"before":"cfc672a67282c1e710198b5fa576004a81b513f9","after":"8567ed5343f6b41b51601727d49cac29b22d7517","ref":"refs/heads/dependabot/go_modules/github.com/stretchr/testify-1.9.0","pushedAt":"2024-05-16T16:58:31.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0\n\nBumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.2 to 1.9.0.\n- [Release notes](https://github.com/stretchr/testify/releases)\n- [Commits](https://github.com/stretchr/testify/compare/v1.8.2...v1.9.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/stretchr/testify\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0"}},{"before":"3cded5e5ef5887f708a7adf6d51f8121816f70c8","after":null,"ref":"refs/heads/dependabot/go_modules/github.com/google/go-cmp-0.6.0","pushedAt":"2024-05-16T16:57:29.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"}},{"before":"2326aec17b920f9b770c5dde94ca625a05b8777a","after":"27bd43862730fee0db29baf6683fee9e32bbe96a","ref":"refs/heads/main","pushedAt":"2024-05-16T16:57:29.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 (#121)\n\nBumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from\r\n0.5.9 to 0.6.0.\r\n
\r\nRelease notes\r\n

Sourced from github.com/google/go-cmp's\r\nreleases.

\r\n
\r\n

v0.6.0

\r\n

New API:

\r\n
    \r\n
  • (#340)\r\nAdd cmpopts.EquateComparable
    • \r\n
\r\n

Documentation changes:

\r\n
    \r\n
  • (#337)\r\nUse of hotlinking of Go identifiers
    • \r\n
\r\n

Build changes:

\r\n
    \r\n
  • (#325)\r\nRemove purego fallbacks
    • \r\n
\r\n

Testing changes:

\r\n
    \r\n
  • (#322)\r\nRun tests for Go 1.20 version
    • \r\n
  • (#332)\r\nPin GitHub action versions
    • \r\n
  • (#327)\r\nset workflow permission to read-only
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • c3ad843\r\nAdd cmpopts.EquateComparable (#340)
    • \r\n
  • e250a55\r\nUse of hotlinking of Go identifiers (#337)
    • \r\n
  • 8a3e8dd\r\nset workflow permission to read-only (#327)
    • \r\n
  • 8cea5de\r\nPin GitHub action versions (#332)
    • \r\n
  • 3bb304a\r\nRun tests for Go 1.20 version (#322)
    • \r\n
  • 571a56b\r\nRemove purego fallbacks (#325)
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/google/go-cmp&package-manager=go_modules&previous-version=0.5.9&new-version=0.6.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump github.com/google/go-cmp from 0.5.9 to 0.6.0 (#121)"}},{"before":"f64c5d0e86ead0b930672dc6719fe53e97e97b05","after":null,"ref":"refs/heads/dependabot/github_actions/actions/setup-go-5","pushedAt":"2024-05-16T16:55:53.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"}},{"before":"562dc2c214cd4d1dca9229414c4882d3dbcf0011","after":"2326aec17b920f9b770c5dde94ca625a05b8777a","ref":"refs/heads/main","pushedAt":"2024-05-16T16:55:52.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Bump actions/setup-go from 4 to 5 (#122)\n\nBumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to\r\n5.\r\n
\r\nRelease notes\r\n

Sourced from actions/setup-go's\r\nreleases.

\r\n
\r\n

v5.0.0

\r\n

What's Changed

\r\n

In scope of this release, we change Nodejs runtime from node16 to\r\nnode20 (actions/setup-go#421).\r\nMoreover, we update some dependencies to the latest versions (actions/setup-go#445).

\r\n

Besides, this release contains such changes as:

\r\n
    \r\n
  • Fix hosted tool cache usage on windows by @​galargh in actions/setup-go#411
    • \r\n
  • Improve documentation regarding dependencies caching by @​artemgavrilov\r\nin actions/setup-go#417
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​galargh made\r\ntheir first contribution in actions/setup-go#411
    • \r\n
  • @​artemgavrilov\r\nmade their first contribution in actions/setup-go#417
    • \r\n
  • @​chenrui333 made\r\ntheir first contribution in actions/setup-go#421
    • \r\n
\r\n

Full Changelog: https://github.com/actions/setup-go/compare/v4...v5.0.0

\r\n

v4.1.0

\r\n

What's Changed

\r\n

In scope of this release, slow installation on Windows was fixed by\r\n@​dsame in actions/setup-go#393\r\nand OS version was added to primaryKey for Ubuntu runners\r\nto avoid conflicts (actions/setup-go#383)

\r\n

This release also includes the following changes:

\r\n
    \r\n
  • Remove implicit dependencies by @​nikolai-laevskii\r\nin actions/setup-go#378
    • \r\n
  • Update action.yml by @​mkelly in actions/setup-go#379
    • \r\n
  • Added a description that go-version should be specified as a string\r\ntype by @​n3xem in\r\nactions/setup-go#367
    • \r\n
  • Add note about YAML parsing versions by @​dmitry-shibanov\r\nin actions/setup-go#382
    • \r\n
  • Automatic update of configuration files from 05/23/2023 by @​github-actions\r\nin actions/setup-go#377
    • \r\n
  • Bump tough-cookie and @​azure/ms-rest-js by @​dependabot in actions/setup-go#392
    • \r\n
  • Bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in actions/setup-go#397
    • \r\n
  • Bump semver from 6.3.0 to 6.3.1 by @​dependabot in actions/setup-go#396
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​mkelly made\r\ntheir first contribution in actions/setup-go#379
    • \r\n
  • @​n3xem made\r\ntheir first contribution in actions/setup-go#367
    • \r\n
\r\n

Full Changelog: https://github.com/actions/setup-go/compare/v4...v4.1.0

\r\n

v4.0.1

\r\n

What's Changed

\r\n
    \r\n
  • Update documentation for v4 by @​dsame in actions/setup-go#354
    • \r\n
  • Fix glob bug in the package.json scripts section by @​IvanZosimov in\r\nactions/setup-go#359
    • \r\n
  • Bump xml2js dependency by @​dmitry-shibanov\r\nin actions/setup-go#370
    • \r\n
  • Bump @actions/cache dependency to v3.2.1 by @​nikolai-laevskii\r\nin actions/setup-go#374
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​nikolai-laevskii\r\nmade their first contribution in actions/setup-go#374
    • \r\n
\r\n

Full Changelog: https://github.com/actions/setup-go/compare/v4...v4.0.1

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • cdcb360\r\nRemove the description of the old go.mod specification (#458)
    • \r\n
  • 99176a8\r\nUpdate README.md with V5 release notes (#459)
    • \r\n
  • be1aa11\r\nBump undici from 5.28.2 to 5.28.3 (#465)
    • \r\n
  • 6c1fd22\r\ndocs: bump actions/setup-go to v5 (#449)
    • \r\n
  • 0c52d54\r\nUpdate dependencies for node20 (#445)
    • \r\n
  • bfd2fb3\r\nMerge pull request #421\r\nfrom chenrui333/node20-runtime
    • \r\n
  • 3d65fa5\r\nfeat: bump to use actions/checkout@v4
    • \r\n
  • 8a505c9\r\nfeat: bump to use node20 runtime
    • \r\n
  • 883490d\r\nMerge pull request #417\r\nfrom artemgavrilov/main
    • \r\n
  • d45ebba\r\nRephrase sentence
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/setup-go&package-manager=github_actions&previous-version=4&new-version=5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump actions/setup-go from 4 to 5 (#122)"}},{"before":"a399a2bf35f2716f4a81fa0f4e31463719dbfa65","after":null,"ref":"refs/heads/dependabot/github_actions/actions/checkout-4","pushedAt":"2024-05-16T16:54:57.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"}},{"before":"dc0288c748072fe738b8ea4d0f50fab028a58343","after":"562dc2c214cd4d1dca9229414c4882d3dbcf0011","ref":"refs/heads/main","pushedAt":"2024-05-16T16:54:56.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 3 to 4 (#120)\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 3 to\r\n4.\r\n
\r\nRelease notes\r\n

Sourced from actions/checkout's\r\nreleases.

\r\n
\r\n

v4.0.0

\r\n

What's Changed

\r\n
    \r\n
  • Update default runtime to node20 by @​takost in actions/checkout#1436
    • \r\n
  • Support fetching without the --progress option by @​simonbaird in actions/checkout#1067
    • \r\n
  • Release 4.0.0 by @​takost in actions/checkout#1447
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​takost made\r\ntheir first contribution in actions/checkout#1436
    • \r\n
  • @​simonbaird made\r\ntheir first contribution in actions/checkout#1067
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v3...v4.0.0

\r\n

v3.6.0

\r\n

What's Changed

\r\n
    \r\n
  • Mark test scripts with Bash'isms to be run via Bash by @​dscho in actions/checkout#1377
    • \r\n
  • Add option to fetch tags even if fetch-depth > 0 by @​RobertWieczoreck\r\nin actions/checkout#579
    • \r\n
  • Release 3.6.0 by @​luketomlinson\r\nin actions/checkout#1437
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​RobertWieczoreck\r\nmade their first contribution in actions/checkout#579
    • \r\n
  • @​luketomlinson\r\nmade their first contribution in actions/checkout#1437
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v3.5.3...v3.6.0

\r\n

v3.5.3

\r\n

What's Changed

\r\n
    \r\n
  • Fix: Checkout Issue in self hosted runner due to faulty submodule\r\ncheck-ins by @​megamanics in actions/checkout#1196
    • \r\n
  • Fix typos found by codespell by @​DimitriPapadopoulos\r\nin actions/checkout#1287
    • \r\n
  • Add support for sparse checkouts by @​dscho and @​dfdez in actions/checkout#1369
    • \r\n
  • Release v3.5.3 by @​TingluoHuang\r\nin actions/checkout#1376
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​megamanics made\r\ntheir first contribution in actions/checkout#1196
    • \r\n
  • @​DimitriPapadopoulos\r\nmade their first contribution in actions/checkout#1287
    • \r\n
  • @​dfdez made\r\ntheir first contribution in actions/checkout#1369
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v3...v3.5.3

\r\n

v3.5.2

\r\n

What's Changed

\r\n
    \r\n
  • Fix: Use correct API url / endpoint in GHES by @​fhammerl in actions/checkout#1289\r\nbased on #1286\r\nby @​1newsr
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v3.5.1...v3.5.2

\r\n

v3.5.1

\r\n

What's Changed

\r\n
    \r\n
  • Improve checkout performance on Windows runners by upgrading\r\n@​actions/github dependency by @​BrettDong in actions/checkout#1246
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​BrettDong\r\nmade their first contribution in actions/checkout#1246
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from actions/checkout's\r\nchangelog.

\r\n
\r\n

Changelog

\r\n

v4.1.4

\r\n
    \r\n
  • Disable extensions.worktreeConfig when disabling\r\nsparse-checkout by @​jww3 in actions/checkout#1692
    • \r\n
  • Add dependabot config by @​cory-miller in\r\nactions/checkout#1688
    • \r\n
  • Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
    • \r\n
  • Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643
    • \r\n
\r\n

v4.1.3

\r\n
    \r\n
  • Check git version before attempting to disable\r\nsparse-checkout by @​jww3 in actions/checkout#1656
    • \r\n
  • Add SSH user parameter by @​cory-miller in\r\nactions/checkout#1685
    • \r\n
  • Update actions/checkout version in\r\nupdate-main-version.yml by @​jww3 in actions/checkout#1650
    • \r\n
\r\n

v4.1.2

\r\n
    \r\n
  • Fix: Disable sparse checkout whenever sparse-checkout\r\noption is not present @​dscho in actions/checkout#1598
    • \r\n
\r\n

v4.1.1

\r\n
    \r\n
  • Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
    • \r\n
  • Link to release page from what's new section by @​cory-miller in\r\nactions/checkout#1514
    • \r\n
\r\n

v4.1.0

\r\n\r\n

v4.0.0

\r\n
    \r\n
  • Support\r\nfetching without the --progress option
    • \r\n
  • Update to\r\nnode20
    • \r\n
\r\n

v3.6.0

\r\n\r\n

v3.5.3

\r\n\r\n

v3.5.2

\r\n\r\n

v3.5.1

\r\n\r\n

v3.5.0

\r\n\r\n

v3.4.0

\r\n
    \r\n
  • Upgrade\r\ncodeql actions to v2
    • \r\n
  • Upgrade\r\ndependencies
    • \r\n
  • Upgrade\r\n@​actions/io
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 0ad4b8f\r\nPrep Release v4.1.4 (#1704)
    • \r\n
  • 43045ae\r\nDisable extensions.worktreeConfig when disabling\r\nsparse-checkout (#1692)
    • \r\n
  • 37b0821\r\nBump the minor-actions-dependencies group with 2 updates (#1693)
    • \r\n
  • 9839dc1\r\nAdd dependabot config (#1688)
    • \r\n
  • 9b4c13b\r\nBump word-wrap from 1.2.3 to 1.2.5 (#1643)
    • \r\n
  • 1d96c77\r\nAdd SSH user parameter (#1685)
    • \r\n
  • cd7d8d6\r\nCheck git version before attempting to disable\r\nsparse-checkout (#1656)
    • \r\n
  • 8410ad0\r\nUpdate actions/checkout version in\r\nupdate-main-version.yml (#1650)
    • \r\n
  • 9bb5618\r\nPrep for release of v4.1.2 (#1649)
    • \r\n
  • 8eb1f6a\r\nBump @​babel/traverse from 7.20.5 to 7.24.0 (#1642)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=actions/checkout&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"Bump actions/checkout from 3 to 4 (#120)"}},{"before":null,"after":"cfc672a67282c1e710198b5fa576004a81b513f9","ref":"refs/heads/dependabot/go_modules/github.com/stretchr/testify-1.9.0","pushedAt":"2024-05-16T16:52:35.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0\n\nBumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.2 to 1.9.0.\n- [Release notes](https://github.com/stretchr/testify/releases)\n- [Commits](https://github.com/stretchr/testify/compare/v1.8.2...v1.9.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/stretchr/testify\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump github.com/stretchr/testify from 1.8.2 to 1.9.0"}},{"before":null,"after":"de3c477e673f5edcbde46658d544348b75217b8c","ref":"refs/heads/dependabot/go_modules/golang.org/x/crypto-0.23.0","pushedAt":"2024-05-16T16:52:33.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump golang.org/x/crypto from 0.19.0 to 0.23.0\n\nBumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.19.0 to 0.23.0.\n- [Commits](https://github.com/golang/crypto/compare/v0.19.0...v0.23.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/crypto\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump golang.org/x/crypto from 0.19.0 to 0.23.0"}},{"before":null,"after":"f64c5d0e86ead0b930672dc6719fe53e97e97b05","ref":"refs/heads/dependabot/github_actions/actions/setup-go-5","pushedAt":"2024-05-16T16:52:31.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/setup-go from 4 to 5\n\nBumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.\n- [Release notes](https://github.com/actions/setup-go/releases)\n- [Commits](https://github.com/actions/setup-go/compare/v4...v5)\n\n---\nupdated-dependencies:\n- dependency-name: actions/setup-go\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/setup-go from 4 to 5"}},{"before":null,"after":"3cded5e5ef5887f708a7adf6d51f8121816f70c8","ref":"refs/heads/dependabot/go_modules/github.com/google/go-cmp-0.6.0","pushedAt":"2024-05-16T16:52:31.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump github.com/google/go-cmp from 0.5.9 to 0.6.0\n\nBumps [github.com/google/go-cmp](https://github.com/google/go-cmp) from 0.5.9 to 0.6.0.\n- [Release notes](https://github.com/google/go-cmp/releases)\n- [Commits](https://github.com/google/go-cmp/compare/v0.5.9...v0.6.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/google/go-cmp\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump github.com/google/go-cmp from 0.5.9 to 0.6.0"}},{"before":null,"after":"a399a2bf35f2716f4a81fa0f4e31463719dbfa65","ref":"refs/heads/dependabot/github_actions/actions/checkout-4","pushedAt":"2024-05-16T16:52:29.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/checkout from 3 to 4\n\nBumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.\n- [Release notes](https://github.com/actions/checkout/releases)\n- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/actions/checkout/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: actions/checkout\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"Bump actions/checkout from 3 to 4"}},{"before":"1ed77bf7eabf7f7280fab146b8e7c1e9964de0dc","after":null,"ref":"refs/heads/dependabot.yml","pushedAt":"2024-05-16T16:51:42.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"}},{"before":"ca3a2783c470c40cc490f801fc87ff39b92b25d6","after":"dc0288c748072fe738b8ea4d0f50fab028a58343","ref":"refs/heads/main","pushedAt":"2024-05-16T16:51:42.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Add dependabot configuration for Go and GH Actions (#119)\n\nConfigure dependabot to run weekly for Go and Github Actions","shortMessageHtmlLink":"Add dependabot configuration for Go and GH Actions (#119)"}},{"before":null,"after":"1ed77bf7eabf7f7280fab146b8e7c1e9964de0dc","ref":"refs/heads/dependabot.yml","pushedAt":"2024-05-16T15:53:35.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"mcpherrinm","name":"Matthew McPherrin","path":"/mcpherrinm","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/47425?s=80&v=4"},"commit":{"message":"Add dependabot configuration for Go and GH Actions","shortMessageHtmlLink":"Add dependabot configuration for Go and GH Actions"}},{"before":"aabe78e07ec6844422c49167d53c8777a0e5b8c6","after":"ca3a2783c470c40cc490f801fc87ff39b92b25d6","ref":"refs/heads/main","pushedAt":"2024-05-13T21:25:43.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"aarongable","name":"Aaron Gable","path":"/aarongable","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2474926?s=80&v=4"},"commit":{"message":"Define error values for missing x5c header and unsupported elliptic curves (#117)\n\nMost of the errors in the shared source have a dedicated error value\r\nexcept for a couple that got away:\r\n* x5c header missing in the JWT header\r\n* An unsupported/unknown elliptic curve is found\r\n\r\nThis commit defines the error values for those cases.\r\n\r\nThis would be helpful to https://github.com/distribution/distribution\r\nproject when discriminating between different errors during token\r\nvalidation.","shortMessageHtmlLink":"Define error values for missing x5c header and unsupported elliptic c…"}},{"before":"95facc981124058b1e460216e84c678472223f4c","after":null,"ref":"refs/heads/v2-decompress-backport","pushedAt":"2024-03-07T22:25:22.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"}},{"before":"17183d111d86cec795e74a832d9301d359cf3526","after":"0dd4dd541c665fb292d664f77604ba694726f298","ref":"refs/heads/v2","pushedAt":"2024-03-07T22:25:21.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"},"commit":{"message":"v2: backport decompression limit fix (#109)\n\nBackport from #107.","shortMessageHtmlLink":"v2: backport decompression limit fix (#109)"}},{"before":null,"after":"95facc981124058b1e460216e84c678472223f4c","ref":"refs/heads/v2-decompress-backport","pushedAt":"2024-03-07T21:39:33.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"},"commit":{"message":"v2: backport decompression limit fix\n\nBackport from #107.","shortMessageHtmlLink":"v2: backport decompression limit fix"}},{"before":"15e60b7a6906d5dcfc2163ab4fc1e412645c5ed5","after":null,"ref":"refs/heads/v3-backport-compression-limit","pushedAt":"2024-03-07T21:35:48.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"}},{"before":"11bb4e72bf7eb95794be9fef31b38ba85633fc84","after":"add6a284ea0f844fd6628cba637be5451fe4b28a","ref":"refs/heads/v3","pushedAt":"2024-03-07T21:35:47.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"},"commit":{"message":"v3: backport decompression limit fix (#107)\n\nBackport from #106.\r\n\r\nNote that there was a merge conflict on the CHANGELOG and I decided to\r\njust accept all the v4 entries. It's okay for the v3 branch's CHANGELOG\r\nto also talk about v4 releases. I'll send a separate PR updating the v4\r\nCHANGELOG to include v3.0.3.","shortMessageHtmlLink":"v3: backport decompression limit fix (#107)"}},{"before":"f4c051a0653d78199a053892f7619ebf96339502","after":"aabe78e07ec6844422c49167d53c8777a0e5b8c6","ref":"refs/heads/main","pushedAt":"2024-03-07T21:06:09.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"},"commit":{"message":"JSONWebKeySet is supported as well (#104)\n\n`Verify` calls `DetachedVerify` which calls `tryJWKS`.","shortMessageHtmlLink":"JSONWebKeySet is supported as well (#104)"}},{"before":"999d492eefc044a8c31b7773cf811a292845d79c","after":"15e60b7a6906d5dcfc2163ab4fc1e412645c5ed5","ref":"refs/heads/v3-backport-compression-limit","pushedAt":"2024-03-07T20:40:08.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"},"commit":{"message":"Avoid using max() and underscores in numbers","shortMessageHtmlLink":"Avoid using max() and underscores in numbers"}},{"before":"9e07c900c042b02dd2178f54442e3d1c1f02c948","after":null,"ref":"refs/heads/v2-update-readme","pushedAt":"2024-03-07T20:39:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"jsha","name":"Jacob Hoffman-Andrews","path":"/jsha","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/220205?s=80&v=4"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAES-M3cAA","startCursor":null,"endCursor":null}},"title":"Activity · go-jose/go-jose"}