build(deps): bump actions/setup-go from 1 to 5 #202

dependabot · 2024-05-02T22:51:09Z

Release notes

Sourced from actions/setup-go's releases.

v5.0.0

What's Changed

In scope of this release, we change Nodejs runtime from node16 to node20 (actions/setup-go#421). Moreover, we update some dependencies to the latest versions (actions/setup-go#445).

Besides, this release contains such changes as:

Fix hosted tool cache usage on windows by @galargh in actions/setup-go#411

Improve documentation regarding dependencies caching by @artemgavrilov in actions/setup-go#417

New Contributors

@galargh made their first contribution in actions/setup-go#411

@artemgavrilov made their first contribution in actions/setup-go#417

@chenrui333 made their first contribution in actions/setup-go#421

Full Changelog: actions/setup-go@v4...v5.0.0

v4.1.0

What's Changed

In scope of this release, slow installation on Windows was fixed by @dsame in actions/setup-go#393 and OS version was added to primaryKey for Ubuntu runners to avoid conflicts (actions/setup-go#383)

This release also includes the following changes:

Remove implicit dependencies by @nikolai-laevskii in actions/setup-go#378

Update action.yml by @mkelly in actions/setup-go#379

Added a description that go-version should be specified as a string type by @n3xem in actions/setup-go#367

Add note about YAML parsing versions by @dmitry-shibanov in actions/setup-go#382

Automatic update of configuration files from 05/23/2023 by @github-actions in actions/setup-go#377

Bump tough-cookie and @azure/ms-rest-js by @dependabot in actions/setup-go#392

Bump word-wrap from 1.2.3 to 1.2.4 by @dependabot in actions/setup-go#397

Bump semver from 6.3.0 to 6.3.1 by @dependabot in actions/setup-go#396

New Contributors

@mkelly made their first contribution in actions/setup-go#379

@n3xem made their first contribution in actions/setup-go#367

Full Changelog: actions/setup-go@v4...v4.1.0

v4.0.1

What's Changed

Update documentation for v4 by @dsame in actions/setup-go#354

Fix glob bug in the package.json scripts section by @IvanZosimov in actions/setup-go#359

Bump xml2js dependency by @dmitry-shibanov in actions/setup-go#370

Bump @actions/cache dependency to v3.2.1 by @nikolai-laevskii in actions/setup-go#374

New Contributors

@nikolai-laevskii made their first contribution in actions/setup-go#374

Full Changelog: actions/setup-go@v4...v4.0.1

v4.0.0

In scope of release we enable cache by default. The action won’t throw an error if the cache can’t be restored or saved. The action will throw a warning message but it won’t stop a build process. The cache can be disabled by specifying cache: false.
</tr></table> 

... (truncated)

Commits

cdcb360 Remove the description of the old go.mod specification (#458)
99176a8 Update README.md with V5 release notes (#459)
be1aa11 Bump undici from 5.28.2 to 5.28.3 (#465)
6c1fd22 docs: bump actions/setup-go to v5 (#449)
0c52d54 Update dependencies for node20 (#445)
bfd2fb3 Merge pull request #421 from chenrui333/node20-runtime
3d65fa5 feat: bump to use actions/checkout@v4
8a505c9 feat: bump to use node20 runtime
883490d Merge pull request #417 from artemgavrilov/main
d45ebba Rephrase sentence
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Backport alpine upgrade

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Backport dexidp#2329: Fix GitHub Actions container image permissions

Bumps [entgo.io/ent](https://github.com/ent/ent) from 0.8.0 to 0.9.0. - [Release notes](https://github.com/ent/ent/releases) - [Commits](ent/ent@v0.8.0...v0.9.0) --- updated-dependencies: - dependency-name: entgo.io/ent dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps golang from 1.16.6-alpine3.13 to 1.16.7-alpine3.13. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.39.0 to 1.39.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.39.0...v1.39.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.52.0 to 0.53.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.52.0...v0.53.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.39.1 to 1.40.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.39.1...v1.40.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps alpine from 3.14.0 to 3.14.1. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Radoslav Dimitrov <dimitrovr@vmware.com>

Bumps [github.com/go-ldap/ldap/v3](https://github.com/go-ldap/ldap) from 3.3.0 to 3.4.0. - [Release notes](https://github.com/go-ldap/ldap/releases) - [Commits](go-ldap/ldap@v3.3.0...v3.4.0) --- updated-dependencies: - dependency-name: github.com/go-ldap/ldap/v3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.53.0 to 0.54.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.53.0...v0.54.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github.com/AppsFlyer/go-sundheit](https://github.com/AppsFlyer/go-sundheit) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/AppsFlyer/go-sundheit/releases) - [Commits](AppsFlyer/go-sundheit@v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: github.com/AppsFlyer/go-sundheit dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Bumps [google.golang.org/protobuf](https://github.com/protocolbuffers/protobuf-go) from 1.26.0 to 1.27.1. - [Release notes](https://github.com/protocolbuffers/protobuf-go/releases) - [Changelog](https://github.com/protocolbuffers/protobuf-go/blob/master/release.bash) - [Commits](protocolbuffers/protobuf-go@v1.26.0...v1.27.1) --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.36.1 to 1.40.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.36.1...v1.40.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github.com/go-ldap/ldap/v3](https://github.com/go-ldap/ldap) from 3.4.0 to 3.4.1. - [Release notes](https://github.com/go-ldap/ldap/releases) - [Commits](go-ldap/ldap@v3.4.0...v3.4.1) --- updated-dependencies: - dependency-name: github.com/go-ldap/ldap/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Bumps [entgo.io/ent](https://github.com/ent/ent) from 0.9.0 to 0.9.1. - [Release notes](https://github.com/ent/ent/releases) - [Commits](ent/ent@v0.9.0...v0.9.1) --- updated-dependencies: - dependency-name: entgo.io/ent dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps alpine from 3.14.1 to 3.14.2. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.54.0 to 0.55.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.54.0...v0.55.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.55.0 to 0.56.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/master/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.55.0...v0.56.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Happy2C0de <46957159+Happy2C0de@users.noreply.github.com>

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.11.0 to 1.12.0. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.11.0...v1.12.0) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.43.0 to 1.44.0. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.43.0...v1.44.0) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

Signed-off-by: Rahul M Chheda <rahul.chheda@accurics.com>

Bumps [go.etcd.io/etcd/client/v3](https://github.com/etcd-io/etcd) from 3.5.1 to 3.5.2. - [Release notes](https://github.com/etcd-io/etcd/releases) - [Changelog](https://github.com/etcd-io/etcd/blob/main/Dockerfile-release.amd64) - [Commits](etcd-io/etcd@v3.5.1...v3.5.2) --- updated-dependencies: - dependency-name: go.etcd.io/etcd/client/v3 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.65.0 to 0.67.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](googleapis/google-api-go-client@v0.65.0...v0.67.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.12.0 to 1.12.1. - [Release notes](https://github.com/prometheus/client_golang/releases) - [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md) - [Commits](prometheus/client_golang@v1.12.0...v1.12.1) --- updated-dependencies: - dependency-name: github.com/prometheus/client_golang dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

See go doc ./cmd/docker-entrypoint for why. Signed-off-by: Andrew Keesler <akeesler@vmware.com>

...so that we don't rely on a package manager to bring these down into the runner stage. Signed-off-by: Andrew Keesler <akeesler@vmware.com>

I can build this via: docker build --build-arg BASEIMAGE=gcr.io/distroless/static:latest -t andrew:distroless . Signed-off-by: Andrew Keesler <akeesler@vmware.com>

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Update to upstream v2.31.1

Removed the other workflows that deploy to an environment

Action updates

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 1 to 5. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v1...v5) --- updated-dependencies: - dependency-name: actions/setup-go dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2024-05-02T22:51:10Z

The following labels could not be found: area/dependencies.

dependabot · 2024-05-06T15:13:56Z

Superseded by #209.

sagikazarmark and others added 30 commits November 15, 2021 14:27

chore: upgrade alpine

1bd753d

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Merge pull request dexidp#2327 from dexidp/backport-alpine-upgrade

7e826fd

Backport alpine upgrade

ci: fix container image permissions

eb3c5e0

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Merge pull request dexidp#2330 from dexidp/backport-2329

6e30b36

Backport dexidp#2329: Fix GitHub Actions container image permissions

Custom auth proxy connector with additional headers

a612580

github actions for local ht shib proxy dex

bc2d048

Use ghcr.io instead of dockerhub

d4801cb

Update actions for production deploy

231b29d

build(deps): bump alpine from 3.14.0 to 3.14.1

a6cf59d

Bumps alpine from 3.14.0 to 3.14.1. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Bump Dex image to v2.30.0 for Kubernetes deployment example

6582890

Signed-off-by: Radoslav Dimitrov <dimitrovr@vmware.com>

chore: add dependabot config for the api module

f30baf0

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore: update golangci-lint

275157e

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore: update Go in Docker

1a1518c

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore: update Go in GitHub Actions

0f70caa

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore: update Go version in go.mod

57530fc

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

build(deps): bump alpine from 3.14.1 to 3.14.2

5782050

Bumps alpine from 3.14.1 to 3.14.2. --- updated-dependencies: - dependency-name: alpine dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

Happy2C0de and others added 25 commits May 4, 2022 11:43

Revert querying preferrredUsernameKey

f6dde48

Signed-off-by: Happy2C0de <46957159+Happy2C0de@users.noreply.github.com>

Add overrideWithMissingCustomEmailClaim test

4615e45

Signed-off-by: Happy2C0de <46957159+Happy2C0de@users.noreply.github.com>

Remove overrideWithMissingCustomEmailClaim

ea1c42e

Signed-off-by: Happy2C0de <46957159+Happy2C0de@users.noreply.github.com>

chore: update gomplate

0110ceb

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore: update golangci-lint download script

21277d6

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>

[fix] Replace /teams API w/ /workspaces endpoints

58a16e8

Signed-off-by: Rahul M Chheda <rahul.chheda@accurics.com>

distroless: rewrite docker-entrypoint.sh in go

6c6365d

See go doc ./cmd/docker-entrypoint for why. Signed-off-by: Andrew Keesler <akeesler@vmware.com>

distroless: fetch CA certificates in builder stage

6a04935

...so that we don't rely on a package manager to bring these down into the runner stage. Signed-off-by: Andrew Keesler <akeesler@vmware.com>

distroless: Dockerfile works with distroless base image

a031077

I can build this via: docker build --build-arg BASEIMAGE=gcr.io/distroless/static:latest -t andrew:distroless . Signed-off-by: Andrew Keesler <akeesler@vmware.com>

chore(deps): update dependencies

ee2bcc2

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore(deps): update dependencies

e8cadcc

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore(deps): update API package

1a5552b

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

build: only build static release binaries

9fe8f8a

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

chore: update golang image

93d4bec

Signed-off-by: Mark Sagi-Kazar <mark.sagikazar@gmail.com>

Merge pull request #129 from hathitrust/update-v2.31.1

6e187f6

Update to upstream v2.31.1

Updated Build, tests, and tag-release

fed76c5

Removed the other workflows that deploy to an environment

Updated tag-release to the templated version

51b1680

Merge pull request #194 from hathitrust/action-updates

d6af065

Action updates

aelkiss force-pushed the master branch from d6af065 to 14136df Compare May 6, 2024 15:13

dependabot bot closed this May 6, 2024

dependabot bot deleted the dependabot/github_actions/actions/setup-go-5 branch May 6, 2024 15:13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump actions/setup-go from 1 to 5 #202

build(deps): bump actions/setup-go from 1 to 5 #202

dependabot bot commented on behalf of github May 2, 2024 •

edited

Loading

dependabot bot commented on behalf of github May 2, 2024

dependabot bot commented on behalf of github May 6, 2024

build(deps): bump actions/setup-go from 1 to 5 #202

build(deps): bump actions/setup-go from 1 to 5 #202

Conversation

dependabot bot commented on behalf of github May 2, 2024 • edited Loading

v5.0.0

What's Changed

New Contributors

v4.1.0

What's Changed

New Contributors

v4.0.1

What's Changed

New Contributors

v4.0.0

dependabot bot commented on behalf of github May 2, 2024

dependabot bot commented on behalf of github May 6, 2024

dependabot bot commented on behalf of github May 2, 2024 •

edited

Loading