build(deps): bump github.com/go-jose/go-jose/v4 from 4.0.4 to 4.1.3 in /controller#8
Conversation
GitHub Actions: - Move all workflows to unified .github/workflows/ directory - Add path filters to run workflows only on relevant changes - Merge duplicate backport workflows into single workflow - Consolidate lint workflows (Go, Helm, protobuf, Python, typos) - Merge container image builds (controller + python) into single workflow - Adapt e2e/action.yml for monorepo structure (remove separate checkouts) - Add combined dependabot.yml for all package ecosystems - Remove old .github directories from controller/, e2e/, protocol/, python/ Documentation: - Add unified README.md with overview of all components
Bumps [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) from 4.0.4 to 4.1.3. - [Release notes](https://github.com/go-jose/go-jose/releases) - [Commits](go-jose/go-jose@v4.0.4...v4.1.3) --- updated-dependencies: - dependency-name: github.com/go-jose/go-jose/v4 dependency-version: 4.1.3 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
dependabot
bot
added
dependencies
|
Important Review skippedBot user detected. To trigger a single review, invoke the You can disable this status message by setting the Comment |
mangelajo
force-pushed
the
main
branch
11 times, most recently
from
cdfbc9c to
6d38ce2
Compare
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
bot
deleted the
dependabot/go_modules/controller/github.com/go-jose/go-jose/v4-4.1.3
branch
1 participant
Bumps github.com/go-jose/go-jose/v4 from 4.0.4 to 4.1.3.
Release notes
Sourced from github.com/go-jose/go-jose/v4's releases.
... (truncated)
Commits
5348b9aReject JWS with an unprotected critical b64 header (#210)9153a5eBump actions/setup-python from 5 to 6 (#208)2126e17Bump actions/setup-go from 5 to 6 (#209)9860c65Bump actions/checkout from 4 to 5 (#206)14239fdRemove Go 1.23 support (#205)a16e158Update CI to run on Go 1.24 and 1.25 (#204)a1565a4testutils/assert: remove True, Nil, NotNil (#202)3a80e13jwe: accept non-pointer JSONWebKey in Recipient (#200)e2cde04jwk: JSONWebKey.UnmarshalJSON can return ErrUnsupportedKeyType (#191)6a17172jwk: list all missing fields on error (#195)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)