Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore(deps): bump the dev-dependencies group with 10 updates #46

Merged
merged 1 commit into from
Jul 7, 2023
Merged

chore(deps): bump the dev-dependencies group with 10 updates #46

merged 1 commit into from
Jul 7, 2023

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 7, 2023

Bumps the dev-dependencies group with 10 updates:

Package Update
github.com/grpc-ecosystem/go-grpc-middleware 1.3.0 to 1.4.0
github.com/hashicorp/consul/api 1.1.0 to 1.22.0
github.com/kubernetes-csi/csi-lib-utils 0.9.1 to 0.14.0
github.com/prometheus/client_golang 1.14.0 to 1.16.0
github.com/spf13/cobra 1.6.0 to 1.7.0
github.com/spf13/viper 1.7.1 to 1.16.0
golang.org/x/net 0.10.0 to 0.12.0
google.golang.org/grpc 1.55.0 to 1.56.2
google.golang.org/protobuf 1.30.0 to 1.31.0
k8s.io/klog/v2 2.90.1 to 2.100.1

Updates github.com/grpc-ecosystem/go-grpc-middleware from 1.3.0 to 1.4.0

Release notes

Sourced from github.com/grpc-ecosystem/go-grpc-middleware's releases.

v1.4.0

What's Changed

New Contributors

Full Changelog: grpc-ecosystem/go-grpc-middleware@v1.3.0...v1.4.0

Commits
  • d42ae9d v1: Mentioned v2 in README; fixed CI; removed changelog (we will use release ...
  • da1b13e Update nicemd.go (#539)
  • 99612e8 Fix OSX build error in outdated golang.org/x/sys dependency (#514)
  • 7c811bc fix typo in nicemd (#509)
  • 854bd94 use strconv.FormatUint instead of fmt.Sprintf (#503)
  • 7fdae0e Fix memory leakage in kit.PayloadUnaryServerInterceptor (#501)
  • 6aeac52 fix some typos (#493)
  • 68c8cdc Add OpenTelemetry interceptors (#491)
  • 560829f Fix: middleware unary chain order (#464)
  • b6d97fa Improve zap grpc logger documentation on verbosity levels (#456)
  • Additional commits viewable in compare view

Updates github.com/hashicorp/consul/api from 1.1.0 to 1.22.0

Release notes

Sourced from github.com/hashicorp/consul/api's releases.

v1.16.0

1.16.0 (June 26, 2023)

BREAKING CHANGES:

  • api: The /v1/health/connect/ and /v1/health/ingress/ endpoints now immediately return 403 "Permission Denied" errors whenever a token with insufficient service:read permissions is provided. Prior to this change, the endpoints returned a success code with an empty result list when a token with insufficient permissions was provided. [GH-17424]
  • peering: Removed deprecated backward-compatibility behavior. Upstream overrides in service-defaults will now only apply to peer upstreams when the peer field is provided. Visit the 1.16.x upgrade instructions for more information. [GH-16957]

SECURITY:

  • Bump Dockerfile base image to alpine:3.18. [GH-17719]
  • audit-logging: (Enterprise only) limit v1/operator/audit-hash endpoint to ACL token with operator:read privileges.

FEATURES:

  • api: (Enterprise only) Add POST /v1/operator/audit-hash endpoint to calculate the hash of the data used by the audit log hash function and salt.
  • cli: (Enterprise only) Add a new consul operator audit hash command to retrieve and compare the hash of the data used by the audit log hash function and salt.
  • cli: Adds new command - consul services export - for exporting a service to a peer or partition [GH-15654]
  • connect: (Consul Enterprise only) Implement order-by-locality failover.
  • mesh: Add new permissive mTLS mode that allows sidecar proxies to forward incoming traffic unmodified to the application. This adds AllowEnablingPermissiveMutualTLS setting to the mesh config entry and the MutualTLSMode setting to proxy-defaults and service-defaults. [GH-17035]
  • mesh: Support configuring JWT authentication in Envoy. [GH-17452]
  • server: (Enterprise Only) added server side RPC requests IP based read/write rate-limiter. [GH-4633]
  • server: (Enterprise Only) allow automatic license utilization reporting. [GH-5102]
  • server: added server side RPC requests global read/write rate-limiter. [GH-16292]
  • xds: Add property-override built-in Envoy extension that directly patches Envoy resources. [GH-17487]
  • xds: Add a built-in Envoy extension that inserts External Authorization (ext_authz) network and HTTP filters. [GH-17495]
  • xds: Add a built-in Envoy extension that inserts Wasm HTTP filters. [GH-16877]
  • xds: Add a built-in Envoy extension that inserts Wasm network filters. [GH-17505]

IMPROVEMENTS:

  • api: Support filtering for config entries. [GH-17183]
  • cli: Add -filter option to consul config list for filtering config entries. [GH-17183]
  • agent: remove agent cache dependency from service mesh leaf certificate management [GH-17075]
  • api: Enable setting query options on agent force-leave endpoint. [GH-15987]
  • audit-logging: (Enterprise only) enable error response and request body logging
  • ca: automatically set up Vault's auto-tidy setting for tidy_expired_issuers when using Vault as a CA provider. [GH-17138]
  • ca: support Vault agent auto-auth config for Vault CA provider using AliCloud authentication. [GH-16224]
  • ca: support Vault agent auto-auth config for Vault CA provider using AppRole authentication. [GH-16259]
  • ca: support Vault agent auto-auth config for Vault CA provider using Azure MSI authentication. [GH-16298]
  • ca: support Vault agent auto-auth config for Vault CA provider using JWT authentication. [GH-16266]
  • ca: support Vault agent auto-auth config for Vault CA provider using Kubernetes authentication. [GH-16262]
  • command: Adds ACL enabled to status output on agent startup. [GH-17086]
  • command: Allow creating ACL Token TTL with greater than 24 hours with the -expires-ttl flag. [GH-17066]
  • connect: (Enterprise Only) Add support for specifying "Partition" and "Namespace" in Prepared Queries failover rules.
  • connect: update supported envoy versions to 1.23.10, 1.24.8, 1.25.7, 1.26.2 [GH-17546]
  • connect: update supported envoy versions to 1.23.8, 1.24.6, 1.25.4, 1.26.0 [GH-5200]
  • fix metric names in /docs/agent/telemetry [GH-17577]

... (truncated)

Changelog

Sourced from github.com/hashicorp/consul/api's changelog.

1.16.0 (June 26, 2023)

BREAKING CHANGES:

  • api: The /v1/health/connect/ and /v1/health/ingress/ endpoints now immediately return 403 "Permission Denied" errors whenever a token with insufficient service:read permissions is provided. Prior to this change, the endpoints returned a success code with an empty result list when a token with insufficient permissions was provided. [GH-17424]
  • peering: Removed deprecated backward-compatibility behavior. Upstream overrides in service-defaults will now only apply to peer upstreams when the peer field is provided. Visit the 1.16.x upgrade instructions for more information. [GH-16957]

SECURITY:

  • Bump Dockerfile base image to alpine:3.18. [GH-17719]
  • audit-logging: (Enterprise only) limit v1/operator/audit-hash endpoint to ACL token with operator:read privileges.

FEATURES:

  • api: (Enterprise only) Add POST /v1/operator/audit-hash endpoint to calculate the hash of the data used by the audit log hash function and salt.
  • cli: (Enterprise only) Add a new consul operator audit hash command to retrieve and compare the hash of the data used by the audit log hash function and salt.
  • cli: Adds new command - consul services export - for exporting a service to a peer or partition [GH-15654]
  • connect: (Consul Enterprise only) Implement order-by-locality failover.
  • mesh: Add new permissive mTLS mode that allows sidecar proxies to forward incoming traffic unmodified to the application. This adds AllowEnablingPermissiveMutualTLS setting to the mesh config entry and the MutualTLSMode setting to proxy-defaults and service-defaults. [GH-17035]
  • mesh: Support configuring JWT authentication in Envoy. [GH-17452]
  • server: (Enterprise Only) added server side RPC requests IP based read/write rate-limiter. [GH-4633]
  • server: (Enterprise Only) allow automatic license utilization reporting. [GH-5102]
  • server: added server side RPC requests global read/write rate-limiter. [GH-16292]
  • xds: Add property-override built-in Envoy extension that directly patches Envoy resources. [GH-17487]
  • xds: Add a built-in Envoy extension that inserts External Authorization (ext_authz) network and HTTP filters. [GH-17495]
  • xds: Add a built-in Envoy extension that inserts Wasm HTTP filters. [GH-16877]
  • xds: Add a built-in Envoy extension that inserts Wasm network filters. [GH-17505]

IMPROVEMENTS:

    • api: Support filtering for config entries. [GH-17183]
    • cli: Add -filter option to consul config list for filtering config entries. [GH-17183]
  • agent: remove agent cache dependency from service mesh leaf certificate management [GH-17075]
  • api: Enable setting query options on agent force-leave endpoint. [GH-15987]
  • audit-logging: (Enterprise only) enable error response and request body logging
  • ca: automatically set up Vault's auto-tidy setting for tidy_expired_issuers when using Vault as a CA provider. [GH-17138]
  • ca: support Vault agent auto-auth config for Vault CA provider using AliCloud authentication. [GH-16224]
  • ca: support Vault agent auto-auth config for Vault CA provider using AppRole authentication. [GH-16259]
  • ca: support Vault agent auto-auth config for Vault CA provider using Azure MSI authentication. [GH-16298]
  • ca: support Vault agent auto-auth config for Vault CA provider using JWT authentication. [GH-16266]
  • ca: support Vault agent auto-auth config for Vault CA provider using Kubernetes authentication. [GH-16262]
  • command: Adds ACL enabled to status output on agent startup. [GH-17086]
  • command: Allow creating ACL Token TTL with greater than 24 hours with the -expires-ttl flag. [GH-17066]
  • connect: (Enterprise Only) Add support for specifying "Partition" and "Namespace" in Prepared Queries failover rules.
  • connect: update supported envoy versions to 1.23.10, 1.24.8, 1.25.7, 1.26.2 [GH-17546]
  • connect: update supported envoy versions to 1.23.8, 1.24.6, 1.25.4, 1.26.0 [GH-5200]
  • fix metric names in /docs/agent/telemetry [GH-17577]
  • gateway: Change status condition reason for invalid certificate on a listener from "Accepted" to "ResolvedRefs". [GH-17115]

... (truncated)

Commits

Updates github.com/kubernetes-csi/csi-lib-utils from 0.9.1 to 0.14.0

Release notes

Sourced from github.com/kubernetes-csi/csi-lib-utils's releases.

v0.14.0

Changelog

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.14.0/CHANGELOG/CHANGELOG-0.14.md

v0.13.0

Changelog

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.13.0/CHANGELOG/CHANGELOG-0.13.md

v0.12.0

Changelog

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.12.0/CHANGELOG/CHANGELOG-0.12.md

v0.11.0

Changelog

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.11.0/CHANGELOG/CHANGELOG-0.11.md

v0.10.0

Changelog

https://github.com/kubernetes-csi/csi-lib-utils/blob/v0.10.0/CHANGELOG/CHANGELOG-0.10.md

Commits
  • 7b2b0d3 Merge pull request #134 from carlory/patch-002
  • 5d66b37 Add release-note/changelog for v0.14.0
  • bfa15ce Merge pull request #131 from ConnorJC3/master
  • bbcd132 Add timeout to connection.Connect()
  • 1b2426d Merge pull request #133 from carlory/patch-002
  • 9ea2545 Add GetGroupControllerCapabilities common function
  • a0d716c Merge pull request #132 from carlory/patch-001
  • 3bb3880 Update dependency go modules for k8s v1.27.0
  • 597d128 Merge pull request #130 from sunnylovestiramisu/module-update-master-test
  • 6e7affd Merge commit '4c310a64938b5d6e48800ca78a9e574c63ff61bb' into module-update-ma...
  • Additional commits viewable in compare view

Updates github.com/prometheus/client_golang from 1.14.0 to 1.16.0

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.16.0

What's Changed

  • [BUGFIX] api: Switch to POST for LabelNames, Series, and QueryExemplars. #1252
  • [BUGFIX] api: Fix undefined execution order in return statements. #1260
  • [BUGFIX] native histograms: Fix bug in bucket key calculation. #1279
  • [ENHANCEMENT] Reduce constrainLabels allocations for all metrics. #1272
  • [ENHANCEMENT] promhttp: Add process start time header for scrape efficiency. #1278
  • [ENHANCEMENT] promlint: Improve metricUnits runtime. #1286

New Contributors

Full Changelog: prometheus/client_golang@v1.15.1...v1.16.0

v1.15.1

Changes

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.16.0 / 2023-06-15

  • [BUGFIX] api: Switch to POST for LabelNames, Series, and QueryExemplars. #1252
  • [BUGFIX] api: Fix undefined execution order in return statements. #1260
  • [BUGFIX] native histograms: Fix bug in bucket key calculation. #1279
  • [ENHANCEMENT] Reduce constrainLabels allocations for all metrics. #1272
  • [ENHANCEMENT] promhttp: Add process start time header for scrape efficiency. #1278
  • [ENHANCEMENT] promlint: Improve metricUnits runtime. #1286

1.15.1 / 2023-05-3

  • [BUGFIX] Fixed promhttp.Instrument* handlers wrongly trying to attach exemplar to unsupported metrics (e.g. summary),
    causing panics. #1253

1.15.0 / 2023-04-13

  • [BUGFIX] Fix issue with atomic variables on ppc64le. #1171
  • [BUGFIX] Support for multiple samples within same metric. #1181
  • [BUGFIX] Bump golang.org/x/text to v0.3.8 to mitigate CVE-2022-32149. #1187
  • [ENHANCEMENT] Add exemplars and middleware examples. #1173
  • [ENHANCEMENT] Add more context to "duplicate label names" error to enable debugging. #1177
  • [ENHANCEMENT] Add constrained labels and constrained variant for all MetricVecs. #1151
  • [ENHANCEMENT] Moved away from deprecated github.com/golang/protobuf package. #1183
  • [ENHANCEMENT] Add possibility to dynamically get label values for http instrumentation. #1066
  • [ENHANCEMENT] Add ability to Pusher to add custom headers. #1218
  • [ENHANCEMENT] api: Extend and improve efficiency of json-iterator usage. #1225
  • [ENHANCEMENT] Added (official) support for go 1.20. #1234
  • [ENHANCEMENT] timer: Added support for exemplars. #1233
  • [ENHANCEMENT] Filter expected metrics as well in CollectAndCompare. #1143
  • [ENHANCEMENT] ⚠️ Only set start/end if time is not Zero. This breaks compatibility in experimental api package. If you strictly depend on empty time.Time as actual value, the behavior is now changed. #1238
Commits
  • 3583c1e Cut v1.16.0 (#1292)
  • 2feda42 Fixed README & CHANGELOG; Added fmt makefile command (+bingo) for easier cont...
  • 5b9cf9c Merge pull request #1290 from prometheus/fix-nh-docstring-refs
  • 1b19d5f Fix docstring references to renamed native histogram fields / functions.
  • 7352ab7 Moving fully to GH actions. (#1288)
  • e4ff34d Improve metricUnits runtime (#1286)
  • 781ea28 added circleci as gh action YAML (#1281)
  • a09a1d3 Reduce constrainLabels allocations (#1272)
  • 8840afc Bump github.com/prometheus/procfs from 0.9.0 to 0.10.1 (#1283)
  • 5e78d5f Merge pull request #1279 from prometheus/beorn7/histogram
  • Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.6.0 to 1.7.0

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.7.0

✨ Features

🐛 Bug fixes

🧪 Testing & CI/CD

🔧 Maintenance

✏️ Documentation

This release contains several long running fixes, improvements to powershell completions, and further optimizations for completions.

Thank you everyone who contributed to this release and all your hard work! Cobra and this community would never be possible without all of you! 🐍

Full changelog: spf13/cobra@v1.6.1...v1.7.0

... (truncated)

Commits

Updates github.com/spf13/viper from 1.7.1 to 1.16.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.16.0

What's Changed

Enhancements 🚀

Bug Fixes 🐛

Dependency Updates ⬆️

Other Changes

New Contributors

Full Changelog: spf13/viper@v1.15.0...v1.16.0

v1.15.0

What's Changed

Exciting New Features 🎉

Enhancements 🚀

Breaking Changes 🛠

... (truncated)

Commits
  • 21a7fd8 Allow ConfigParseError to unwrap (#1433)
  • 53cdb52 chore: improve log messages
  • 24ece16 drop std' logger in favor of jww one
  • 98b1b9f add:viper: allow to disable internal log messages
  • 2ee1631 extend viper's pflag binding to stringToInt pflag
  • 8652057 docs: Coder uses Viper
  • b850f34 build(deps): bump github.com/pelletier/go-toml/v2 from 2.0.7 to 2.0.8
  • 23b123a doc: add bearer/bearer as projects using Viper
  • a0fed9f Update main image to better handle dark background
  • 143e3bc build(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.10.0 to 0.12.0

Commits
  • c73c09c go.mod: update golang.org/x dependencies
  • 4fc2eb9 http2: revert Transport change from CL 486156
  • 63727cc http2: validate Host header before sending
  • 1bb09e6 quic: pass the connection ID length into 1-RTT packet parsing
  • 952fc9c quic: move ack_delay_exponent handling out of frame parsing
  • 02fe9a5 quic: loss detection
  • c8a2c5a quic: remove stray debugging print
  • 5d50b40 quic: add packetFate enum
  • ee81e8c quic: correct rttvar updates
  • ab184e6 quic: rename side type to connSide
  • Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.55.0 to 1.56.2

Release notes

Sourced from google.golang.org/grpc's releases.

Description has been truncated

@dependabot
chore(deps): bump the dev-dependencies group with 10 updates
ab91346 
Bumps the dev-dependencies group with 10 updates:

| Package | Update |
| --- | --- |
| [github.com/grpc-ecosystem/go-grpc-middleware](https://github.com/grpc-ecosystem/go-grpc-middleware) | 1.3.0 to 1.4.0 |
| [github.com/hashicorp/consul/api](https://github.com/hashicorp/consul) | 1.1.0 to 1.22.0 |
| [github.com/kubernetes-csi/csi-lib-utils](https://github.com/kubernetes-csi/csi-lib-utils) | 0.9.1 to 0.14.0 |
| [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) | 1.14.0 to 1.16.0 |
| [github.com/spf13/cobra](https://github.com/spf13/cobra) | 1.6.0 to 1.7.0 |
| [github.com/spf13/viper](https://github.com/spf13/viper) | 1.7.1 to 1.16.0 |
| [golang.org/x/net](https://github.com/golang/net) | 0.10.0 to 0.12.0 |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | 1.55.0 to 1.56.2 |
| google.golang.org/protobuf | 1.30.0 to 1.31.0 |
| [k8s.io/klog/v2](https://github.com/kubernetes/klog) | 2.90.1 to 2.100.1 |


Updates `github.com/grpc-ecosystem/go-grpc-middleware` from 1.3.0 to 1.4.0
- [Release notes](https://github.com/grpc-ecosystem/go-grpc-middleware/releases)
- [Commits](grpc-ecosystem/go-grpc-middleware@v1.3.0...v1.4.0)

Updates `github.com/hashicorp/consul/api` from 1.1.0 to 1.22.0
- [Release notes](https://github.com/hashicorp/consul/releases)
- [Changelog](https://github.com/hashicorp/consul/blob/main/CHANGELOG.md)
- [Commits](hashicorp/consul@v1.1.0...api/v1.22.0)

Updates `github.com/kubernetes-csi/csi-lib-utils` from 0.9.1 to 0.14.0
- [Release notes](https://github.com/kubernetes-csi/csi-lib-utils/releases)
- [Commits](kubernetes-csi/csi-lib-utils@v0.9.1...v0.14.0)

Updates `github.com/prometheus/client_golang` from 1.14.0 to 1.16.0
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](prometheus/client_golang@v1.14.0...v1.16.0)

Updates `github.com/spf13/cobra` from 1.6.0 to 1.7.0
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](spf13/cobra@v1.6.0...v1.7.0)

Updates `github.com/spf13/viper` from 1.7.1 to 1.16.0
- [Release notes](https://github.com/spf13/viper/releases)
- [Commits](spf13/viper@v1.7.1...v1.16.0)

Updates `golang.org/x/net` from 0.10.0 to 0.12.0
- [Commits](golang/net@v0.10.0...v0.12.0)

Updates `google.golang.org/grpc` from 1.55.0 to 1.56.2
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.55.0...v1.56.2)

Updates `google.golang.org/protobuf` from 1.30.0 to 1.31.0

Updates `k8s.io/klog/v2` from 2.90.1 to 2.100.1
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](kubernetes/klog@v2.90.1...v2.100.1)

---
updated-dependencies:
- dependency-name: github.com/grpc-ecosystem/go-grpc-middleware
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: github.com/hashicorp/consul/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: github.com/kubernetes-csi/csi-lib-utils
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: github.com/spf13/cobra
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: github.com/spf13/viper
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: k8s.io/klog/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 7, 2023

The following labels could not be found: dependencies.

@m-yosefpor m-yosefpor merged commit 376901d into main Jul 7, 2023
3 of 4 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/dev-dependencies-46f8ba73f4 branch July 7, 2023 12:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@m-yosefpor