chore(deps): update all

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
actions/cache	action	patch	v2.1.6 -> v2.1.8
actions/checkout	action	minor	v2.3.4 -> v2.7.0
alex (source)	dependencies	patch	9.1.0 -> 9.1.1
alpine	final	minor	3.14.1 -> 3.20.3
docker/build-push-action	action	minor	v2.6.1 -> v2.10.0
github.com/stretchr/testify	require	minor	v1.7.0 -> v1.9.0
github.com/tailscale/depaware	require	digest	720c4b4 -> 3d7f3b3
go.uber.org/goleak	require	minor	v1.1.10 -> v1.3.0
go.uber.org/multierr	require	minor	v1.7.0 -> v1.11.0
go.uber.org/zap	require	minor	v1.19.0 -> v1.27.0
golang	stage	minor	1.16.7-alpine -> 1.23.3-alpine
goreleaser/goreleaser-action	action	minor	v2.7.0 -> v2.9.1
markdownlint-cli	dependencies	minor	0.28.1 -> 0.42.0

---

Release Notes

actions/cache (actions/cache)

v2.1.8: Updating actions/core to version 1.10.0

Compare Source

The ::save-state and ::set-output are deprecated. The newer version of actions/core >1.10.0 uses the new syntax for save and set output. After this change, customers using actions/cache@v2 won't see deprecation warning message.

v2.1.7

Compare Source

Support 10GB cache upload using the latest version 1.0.8 of @actions/cache

actions/checkout (actions/checkout)

v2.7.0

Compare Source

What's Changed

• Add new public key for known_hosts (#​1237) by @​TingluoHuang in https://github.com/actions/checkout/pull/1238

Full Changelog: actions/checkout@v2.6.0...v2.7.0

v2.6.0

Compare Source

What's Changed

• Add backports to v2 branch by @​cory-miller in https://github.com/actions/checkout/pull/1040
  • Includes backports from the following changes: https://github.com/actions/checkout/pull/964, https://github.com/actions/checkout/pull/1002, https://github.com/actions/checkout/pull/1029
  • Upgraded the licensed version to match what is used in v3.

Full Changelog: actions/checkout@v2.5.0...v2.6.0

v2.5.0

Compare Source

What's Changed

• Update @​actions/core to 1.10.0 by @​rentziass in https://github.com/actions/checkout/pull/962

Full Changelog: actions/checkout@v2...v2.5.0

v2.4.2

Compare Source

What's Changed

• Add set-safe-directory input to allow customers to take control. (#​770) by @​TingluoHuang in https://github.com/actions/checkout/pull/776
• Prepare changelog for v2.4.2. by @​TingluoHuang in https://github.com/actions/checkout/pull/778

Full Changelog: actions/checkout@v2...v2.4.2

v2.4.1

Compare Source

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

v2.4.0

Compare Source

• Convert SSH URLs like org-<ORG_ID>@&#8203;github.com: to https://github.com/ - pr

v2.3.5

Compare Source

Update dependencies

get-alex/alex (alex)

v9.1.1

Compare Source

• 223cde1 Add lock for remark-mdx

Full Changelog: get-alex/alex@9.1.0...9.1.1

docker/build-push-action (docker/build-push-action)

v2.10.0

Compare Source

• Add imageid output and use metadata to set digest output (#​569)
• Add build-contexts input (#​563)
• Enhance outputs display (#​559)

v2.9.0

Compare Source

• add-hosts input (#​553 #​555)
• Fix git context subdir example and improve README (#​552)
• Add e2e tests for ACR (#​548)
• Add description on github-token option to README (#​544)
• Bump node-fetch from 2.6.1 to 2.6.7 (#​549)

v2.8.0

Compare Source

• Allow specifying subdirectory with default git context (#​531)
• Add cgroup-parent, shm-size, ulimit inputs (#​501)
• Don't set outputs if empty or nil (#​470)
• docs: example to sanitize tags with metadata-action (#​476)
• docs: wrong syntax to sanitize repo slug (#​475)
• docs: test before pushing your image (#​455)
• readme: remove v1 section (#​500)
• ci: virtual env file system info (#​510)
• dev: update workflow (#​499)
• Bump @​actions/core from 1.5.0 to 1.6.0 (#​160)
• Bump ansi-regex from 5.0.0 to 5.0.1 (#​469)
• Bump tmpl from 1.0.4 to 1.0.5 (#​465)
• Bump csv-parse from 4.16.0 to 4.16.3 (#​451 #​459)

v2.7.0

Compare Source

• Add metadata output (#​412)
• Bump @​actions/core from 1.4.0 to 1.5.0 (#​439)
• Add note to sanitize tags (#​426)
• Cache backend API docs (#​406)
• Git context now supports subdir (#​407)
• Bump codecov/codecov-action from 1 to 2 (#​415)

stretchr/testify (github.com/stretchr/testify)

v1.9.0

Compare Source

What's Changed

• Fix Go modules version by @​SuperQ in https://github.com/stretchr/testify/pull/1394
• Document that require is not safe to call in created goroutines by @​programmer04 in https://github.com/stretchr/testify/pull/1392
• Remove myself from MAINTAINERS.md by @​mvdkleijn in https://github.com/stretchr/testify/pull/1367
• Correct spelling/grammar by @​echarrod in https://github.com/stretchr/testify/pull/1389
• docs: Update URLs in README by @​davidjb in https://github.com/stretchr/testify/pull/1349
• Update mockery link to Github Pages in README by @​LandonTClipp in https://github.com/stretchr/testify/pull/1346
• docs: Fix typos in tests and comments by @​alexandear in https://github.com/stretchr/testify/pull/1410
• CI: tests from go1.17 by @​SuperQ in https://github.com/stretchr/testify/pull/1409
• Fix adding ? when no values passed by @​lesichkovm in https://github.com/stretchr/testify/pull/1320
• codegen: use standard header for generated files by @​dolmen in https://github.com/stretchr/testify/pull/1406
• mock: AssertExpectations log reason only on failure by @​hikyaru-suzuki in https://github.com/stretchr/testify/pull/1360
• assert: fix flaky TestNeverTrue by @​dolmen in https://github.com/stretchr/testify/pull/1417
• README: fix typos "set up" vs "setup" by @​ossan-dev in https://github.com/stretchr/testify/pull/1428
• mock: move regexp compilation outside of Called by @​aud10slave in https://github.com/stretchr/testify/pull/631
• assert: refactor internal func getLen() by @​dolmen in https://github.com/stretchr/testify/pull/1445
• mock: deprecate type AnythingOfTypeArgument (#​1434) by @​dolmen in https://github.com/stretchr/testify/pull/1441
• Remove no longer needed assert.canConvert by @​alexandear in https://github.com/stretchr/testify/pull/1470
• assert: ObjectsAreEqual: use time.Equal for time.Time types by @​tscales in https://github.com/stretchr/testify/pull/1464
• Bump actions/checkout from 3 to 4 by @​dependabot in https://github.com/stretchr/testify/pull/1466
• Bump actions/setup-go from 3.2.0 to 4.1.0 by @​dependabot in https://github.com/stretchr/testify/pull/1451
• fix: make EventuallyWithT concurrency safe by @​czeslavo in https://github.com/stretchr/testify/pull/1395
• assert: fix httpCode and HTTPBody occur panic when http.Handler read Body by @​hidu in https://github.com/stretchr/testify/pull/1484
• assert.EqualExportedValues: fix handling of arrays by @​zrbecker in https://github.com/stretchr/testify/pull/1473
• .github: use latest Go versions by @​kevinburkesegment in https://github.com/stretchr/testify/pull/1489
• assert: Deprecate EqualExportedValues by @​HaraldNordgren in https://github.com/stretchr/testify/pull/1488
• suite: refactor test assertions by @​alexandear in https://github.com/stretchr/testify/pull/1474
• suite: fix SetupSubTest and TearDownSubTest execution order by @​linusbarth in https://github.com/stretchr/testify/pull/1471
• docs: Fix deprecation comments for http package by @​alexandear in https://github.com/stretchr/testify/pull/1335
• Add map support doc comments to Subset and NotSubset by @​jedevc in https://github.com/stretchr/testify/pull/1306
• TestErrorIs/TestNotErrorIs: check error message contents by @​craig65535 in https://github.com/stretchr/testify/pull/1435
• suite: fix subtest names (fix #​1501) by @​dolmen in https://github.com/stretchr/testify/pull/1504
• assert: improve unsafe.Pointer tests by @​dolmen in https://github.com/stretchr/testify/pull/1505
• assert: simplify isNil implementation by @​dolmen in https://github.com/stretchr/testify/pull/1506
• assert.InEpsilonSlice: fix expected/actual order and other improvements by @​dolmen in https://github.com/stretchr/testify/pull/1483
• Fix dependency cycle with objx #​1292 by @​dolmen in https://github.com/stretchr/testify/pull/1453
• mock: refactor TestIsArgsEqual by @​dolmen in https://github.com/stretchr/testify/pull/1444
• mock: optimize argument matching checks by @​dolmen in https://github.com/stretchr/testify/pull/1416
• assert: fix TestEventuallyTimeout by @​dolmen in https://github.com/stretchr/testify/pull/1412
• CI: add go 1.21 in GitHub Actions by @​dolmen in https://github.com/stretchr/testify/pull/1450
• suite: fix recoverAndFailOnPanic to report test failure at the right location by @​dolmen in https://github.com/stretchr/testify/pull/1502
• Update maintainers by @​brackendawson in https://github.com/stretchr/testify/pull/1533
• assert: Fix EqualValues to handle overflow/underflow by @​arjunmahishi in https://github.com/stretchr/testify/pull/1531
• assert: better formatting for Len() error by @​kevinburkesegment in https://github.com/stretchr/testify/pull/1485
• Ensure AssertExpectations does not fail in skipped tests by @​ianrose14 in https://github.com/stretchr/testify/pull/1331
• suite: fix deadlock in suite.Require()/Assert() by @​arjunmahishi in https://github.com/stretchr/testify/pull/1535
• Revert "assert: ObjectsAreEqual: use time.Equal for time.Time type" by @​brackendawson in https://github.com/stretchr/testify/pull/1537
• [chore] Add issue templates by @​arjunmahishi in https://github.com/stretchr/testify/pull/1538
• Update the build status badge by @​brackendawson in https://github.com/stretchr/testify/pull/1540
• Update Github workflows setup-go to V5 by @​hendrywiranto in https://github.com/stretchr/testify/pull/1545
• Support Pointer to Struct in EqualExportedValues by @​Lucaber in https://github.com/stretchr/testify/pull/1517
• README: drop link to gorc by @​guettli in https://github.com/stretchr/testify/pull/1248
• http_assertions: honour the msgAndArgs provided with each assertion by @​arjunmahishi in https://github.com/stretchr/testify/pull/1548
• fix typos in comments and tests by @​ccoVeille in https://github.com/stretchr/testify/pull/1247
• Include the auto-release notes in releases by @​brackendawson in https://github.com/stretchr/testify/pull/1550
• Add NotImplements and variants by @​hslatman in https://github.com/stretchr/testify/pull/1385
• Add support to compare uintptr by @​bogdandrutu in https://github.com/stretchr/testify/pull/1339
• build(deps): bump github.com/stretchr/objx from 0.5.1 to 0.5.2 by @​dependabot in https://github.com/stretchr/testify/pull/1552

New Contributors

• @​SuperQ made their first contribution in https://github.com/stretchr/testify/pull/1394
• @​programmer04 made their first contribution in https://github.com/stretchr/testify/pull/1392
• @​echarrod made their first contribution in https://github.com/stretchr/testify/pull/1389
• @​davidjb made their first contribution in https://github.com/stretchr/testify/pull/1349
• @​LandonTClipp made their first contribution in https://github.com/stretchr/testify/pull/1346
• @​alexandear made their first contribution in https://github.com/stretchr/testify/pull/1410
• @​lesichkovm made their first contribution in https://github.com/stretchr/testify/pull/1320
• @​dolmen made their first contribution in https://github.com/stretchr/testify/pull/1406
• @​hikyaru-suzuki made their first contribution in https://github.com/stretchr/testify/pull/1360
• @​ossan-dev made their first contribution in https://github.com/stretchr/testify/pull/1428
• @​aud10slave made their first contribution in https://github.com/stretchr/testify/pull/631
• @​tscales made their first contribution in https://github.com/stretchr/testify/pull/1464
• @​czeslavo made their first contribution in https://github.com/stretchr/testify/pull/1395
• @​hidu made their first contribution in https://github.com/stretchr/testify/pull/1484
• @​zrbecker made their first contribution in https://github.com/stretchr/testify/pull/1473
• @​kevinburkesegment made their first contribution in https://github.com/stretchr/testify/pull/1489
• @​linusbarth made their first contribution in https://github.com/stretchr/testify/pull/1471
• @​jedevc made their first contribution in https://github.com/stretchr/testify/pull/1306
• @​craig65535 made their first contribution in https://github.com/stretchr/testify/pull/1435
• @​arjunmahishi made their first contribution in https://github.com/stretchr/testify/pull/1531
• @​ianrose14 made their first contribution in https://github.com/stretchr/testify/pull/1331
• @​hendrywiranto made their first contribution in https://github.com/stretchr/testify/pull/1545
• @​Lucaber made their first contribution in https://github.com/stretchr/testify/pull/1517
• @​guettli made their first contribution in https://github.com/stretchr/testify/pull/1248
• @​ccoVeille made their first contribution in https://github.com/stretchr/testify/pull/1247
• @​hslatman made their first contribution in https://github.com/stretchr/testify/pull/1385
• @​bogdandrutu made their first contribution in https://github.com/stretchr/testify/pull/1339

Full Changelog: stretchr/testify@v1.8.4...v1.9.0

v1.8.4

Compare Source

v1.8.3

Compare Source

v1.8.2

Compare Source

v1.8.1

Compare Source

v1.8.0

Compare Source

v1.7.5

Compare Source

v1.7.4

Compare Source

v1.7.3

Compare Source

v1.7.2

Compare Source

v1.7.1

Compare Source

uber-go/goleak (go.uber.org/goleak)

v1.3.0

Compare Source

Fixed

• Built-in ignores now match function names more accurately.
  They will no longer ignore stacks because of file names
  that look similar to function names. (#​112)

Added

• Add an IgnoreAnyFunction option to ignore stack traces
  that have the provided function anywhere in the stack. (#​113)
• Ignore testing.runFuzzing and testing.runFuzzTests alongside
  other already-ignored test functions (testing.RunTests, etc). (#​105)

Changed

• Miscellaneous CI-related fixes. (#​103, #​108, #​114)

v1.2.1: v.1.2.1

Compare Source

[1.2.1]

Changed

• Drop golang/x/lint dependency.

v1.2.0

Compare Source

Added

• Add Cleanup option that can be used for registering cleanup callbacks. (#​78)

Changed

• Mark VerifyNone as a test helper. (#​75)

Thanks to @​tallclair for their contribution to this release.

v1.1.12

Compare Source

Fixed

• Fixed logic for ignoring trace related goroutines on Go versions 1.16 and above. (#​68)

v1.1.11

Compare Source

Fixed

• Documentation fix on how to test.
• Update dependency on stretchr/testify to v1.7.0. (#​59)
• Update dependency on golang.org/x/tools to address CVE-2020-14040. (#​62)

uber-go/multierr (go.uber.org/multierr)

v1.11.0

Compare Source

====================

• Errors now supports any error that implements multiple-error
  interface.
• Add Every function to allow checking if all errors in the chain
  satisfies errors.Is against the target error.

v1.10.0

Compare Source

====================

• Comply with Go 1.20's multiple-error interface.
• Drop Go 1.18 support.
  Per the support policy, only Go 1.19 and 1.20 are supported now.
• Drop all non-test external dependencies.

v1.9.0

Compare Source

===================

• Add AppendFunc that allow passsing functions to similar to
  AppendInvoke.

• Bump up yaml.v3 dependency to 3.0.1.

v1.8.0

Compare Source

===================

• Combine: perform zero allocations when there are no errors.

uber-go/zap (go.uber.org/zap)

v1.27.0

Compare Source

Enhancements:

• #​1378: Add WithLazy method for SugaredLogger.
• #​1399: zaptest: Add NewTestingWriter for customizing TestingWriter with more flexibility than NewLogger.
• #​1406: Add Log, Logw, Logln methods for SugaredLogger.
• #​1416: Add WithPanicHook option for testing panic logs.

Thanks to @​defval, @​dimmo, @​arxeiss, and @​MKrupauskas for their contributions to this release.

v1.26.0

Compare Source

Enhancements:

• #​1297: Add Dict as a Field.
• #​1319: Add WithLazy method to Logger which lazily evaluates the structured
  context.
• #​1350: String encoding is much (~50%) faster now.

Thanks to @​hhk7734, @​jquirke, @​cdvr1993 for their contributions to this release.

v1.25.0

Compare Source

This release contains several improvements including performance, API additions,
and two new experimental packages whose APIs are unstable and may change in the
future.

Enhancements:

• #​1246: Add zap/exp/zapslog package for integration with slog.
• #​1273: Add Name to Logger which returns the Logger's name if one is set.
• #​1281: Add zap/exp/expfield package which contains helper methods
  Str and Strs for constructing String-like zap.Fields.
• #​1310: Reduce stack size on Any.

Thanks to @​knight42, @​dzakaammar, @​bcspragu, and @​rexywork for their contributions
to this release.

v1.24.0

Compare Source

Enhancements:

• #​1148: Add Level to both Logger and SugaredLogger that reports the
  current minimum enabled log level.
• #​1185: SugaredLogger turns errors to zap.Error automatically.

Thanks to @​Abirdcfly, @​craigpastro, @​nnnkkk7, and @​sashamelentyev for their
contributions to this release.

v1.23.0

Compare Source

Enhancements:

• #​1147: Add a zapcore.LevelOf function to determine the level of a
  LevelEnabler or Core.
• #​1155: Add zap.Stringers field constructor to log arrays of objects
  that implement String() string.

v1.22.0

Compare Source

Enhancements:

• #​1071: Add zap.Objects and zap.ObjectValues field constructors to log
  arrays of objects. With these two constructors, you don't need to implement
  zapcore.ArrayMarshaler for use with zap.Array if those objects implement
  zapcore.ObjectMarshaler.
• #​1079: Add SugaredLogger.WithOptions to build a copy of an existing
  SugaredLogger with the provided options applied.
• #​1080: Add *ln variants to SugaredLogger for each log level.
  These functions provide a string joining behavior similar to fmt.Println.
• #​1088: Add zap.WithFatalHook option to control the behavior of the
  logger for Fatal-level log entries. This defaults to exiting the program.
• #​1108: Add a zap.Must function that you can use with NewProduction or
  NewDevelopment to panic if the system was unable to build the logger.
• #​1118: Add a Logger.Log method that allows specifying the log level for
  a statement dynamically.

Thanks to @​cardil, @​craigpastro, @​sashamelentyev, @​shota3506, and @​zhupeijun
for their contributions to this release.

v1.21.0

Compare Source

1.21.0 (7 Feb 2022)

Enhancements:

• #​1047: Add zapcore.ParseLevel to parse a Level from a string.
• #​1048: Add zap.ParseAtomicLevel to parse an AtomicLevel from a
  string.

Bugfixes:

• #​1058: Fix panic in JSON encoder when EncodeLevel is unset.

Other changes:

• #​1052: Improve encoding performance when the AddCaller and
  AddStacktrace options are used together.

Thanks to @​aerosol and @​Techassi for their contributions to this release.

v1.20.0

Compare Source

Enhancements:

• #​989: Add EncoderConfig.SkipLineEnding flag to disable adding newline
  characters between log statements.
• #​1039: Add EncoderConfig.NewReflectedEncoder field to customize JSON
  encoding of reflected log fields.

Bugfixes:

• #​1011: Fix inaccurate precision when encoding complex64 as JSON.
• #​554, #​1017: Close JSON namespaces opened in MarshalLogObject
  methods when the methods return.
• #​1033: Avoid panicking in Sampler core if thereafter is zero.

Other changes:

• #​1028: Drop support for Go < 1.15.

Thanks to @​psrajat, @​lruggieri, @​sammyrnycreal for their contributions to this release.

v1.19.1

Compare Source

Fixed

• #​1001: JSON: Fix complex number encoding with negative imaginary part. Thanks to @​hemantjadon.
• #​1003: JSON: Fix inaccurate precision when encoding float32.

goreleaser/goreleaser-action (goreleaser/goreleaser-action)

v2.9.1

Compare Source

What's Changed

• fix: current tag not taken into account by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/329

Full Changelog: goreleaser/goreleaser-action@v2...v2.9.1

v2.9.0

Compare Source

What's Changed

• refactor: setup context by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/325
• chore: update community files by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/328
• feat: add artifacts and metadata outputs by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/327

Full Changelog: goreleaser/goreleaser-action@v2.8.1...v2.9.0

v2.8.1

Compare Source

What's Changed

• fix: should not force snapshot when nightly is set by @​caarlos0 in https://github.com/goreleaser/goreleaser-action/pull/321

Full Changelog: goreleaser/goreleaser-action@v2.8.0...v2.8.1

v2.8.0

Compare Source

What's Changed

• chore(deps): bump @​actions/tool-cache from 1.7.0 to 1.7.1 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/290
• chore(deps): bump @​actions/core from 1.3.0 to 1.4.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/289
• chore(deps): bump @​actions/exec from 1.0.4 to 1.1.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/291
• refactor: use built-in getExecOutput by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/292
• chore(deps): bump codecov/codecov-action from 1 to 2.0.1 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/293
• chore(deps): update dev deps by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/294
• chore(deps): bump @​actions/core from 1.4.0 to 1.5.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/296
• fix: platform detection by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/299
• fix: platform detection v2 by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/300
• chore(deps): bump ghaction-import-gpg to v4 by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/302
• chore(deps): bump tmpl from 1.0.4 to 1.0.5 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/305
• chore(deps): bump ansi-regex from 5.0.0 to 5.0.1 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/306
• chore(deps): bump @​actions/core from 1.5.0 to 1.6.0 by [@​dependabot](

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[socket-security]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report↗︎