Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Bump github.com/go-logr/logr from 1.2.4 to 1.4.1 (#324)
Bumps [github.com/go-logr/logr](https://github.com/go-logr/logr) from 1.2.4 to 1.4.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/go-logr/logr/releases">github.com/go-logr/logr's releases</a>.</em></p> <blockquote> <h2>v1.4.1</h2> <h2>What's Changed</h2> <ul> <li>slogr: fix unintended API break in v1.4.0 by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/253">go-logr/logr#253</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-logr/logr/compare/v1.4.0...v1.4.1">https://github.com/go-logr/logr/compare/v1.4.0...v1.4.1</a></p> <h2>v1.4.0</h2> <p>This release dramatically improves interoperability with Go's <code>log/slog</code> package. In particular, <code>logr.NewContext</code> and <code>logr.NewContextWithSlogLogger</code> use the same context key, which allows <code>logr.FromContext</code> and <code>logr.FromContextAsSlogLogger</code> to return <code>logr.Logger</code> or <code>*slog.Logger</code> respectively, including transparently converting each to the other as needed.</p> <p>Functions <code>logr/slogr.NewLogr</code> and <code>logr/slogr.ToSlogHandler</code> have been superceded by <code>logr.FromSlogHandler</code> and <code>logr.ToSlogHandler</code> respectively, and type <code>logr/slogr.SlogSink</code> has been superceded by <code>logr.SlogSink</code>. All of the old names in <code>logr/slogr</code> remain, for compatibility.</p> <p>Package <code>logr/funcr</code> now supports <code>logr.SlogSink</code>, meaning that it's output passes all but one of the Slog conformance tests (that exception being that <code>funcr</code> handles the timestamp itself).</p> <p>Users who have a <code>logr.Logger</code> and need a <code>*slog.Logger</code> can call <code>slog.New(logr.ToSlogHandler(...))</code> and all output will go through the same stack.</p> <p>Users who have a <code>*slog.Logger</code> or <code>slog.Handler</code> can call <code>logr.FromSlogHandler(...)</code> and all output will go through the same stack.</p> <h2>What's Changed</h2> <ul> <li>slog context support by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/237">go-logr/logr#237</a></li> <li>slog support: fix WithGroup + WithValues combination by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/243">go-logr/logr#243</a></li> <li>Add tests for context with slog by <a href="https://github.com/thockin"><code>@thockin</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/246">go-logr/logr#246</a></li> <li>sloghandler: unnamed groups should be inlined by <a href="https://github.com/thockin"><code>@thockin</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/245">go-logr/logr#245</a></li> <li>Add SlogSink support to funcr by <a href="https://github.com/thockin"><code>@thockin</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/241">go-logr/logr#241</a></li> <li>funcr: Add LogInfoLevel Option to skip logging level in the info log by <a href="https://github.com/spacewander"><code>@spacewander</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/240">go-logr/logr#240</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/spacewander"><code>@spacewander</code></a> made their first contribution in <a href="https://redirect.github.com/go-logr/logr/pull/240">go-logr/logr#240</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-logr/logr/compare/v1.3.0...v1.4.0">https://github.com/go-logr/logr/compare/v1.3.0...v1.4.0</a></p> <h2>v1.3.0</h2> <p>This release adds <a href="https://github.com/go-logr/logr#slog-interoperability">support for slog</a> in a new, self-contained <code>logr/slogr</code> package. Implementers of a <code>logr.LogSink</code> are encouraged, but not required, to extend their implementation to improve the quality of log output coming from a <code>slog</code> API call.</p> <p><em>Breaking change</em>: the call depth for <code>LogSink.Enabled</code> when called via <code>Logger.Enabled</code> <a href="https://redirect.github.com/go-logr/logr/pull/218">was fixed</a> to be the same as for other call paths. Implementers of a <code>LogSink</code> who have worked around this bug will need to remove their workarounds.</p> <p>Security best practices were improved. Only Go versions >= 1.18 are supported by this release.</p> <h2>What's Changed</h2> <ul> <li>Fix golangci-lint fails by <a href="https://github.com/thockin"><code>@thockin</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/173">go-logr/logr#173</a></li> <li>Add minimal permissions to workflows by <a href="https://github.com/pnacht"><code>@pnacht</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/177">go-logr/logr#177</a></li> <li>Add a security policy by <a href="https://github.com/pnacht"><code>@pnacht</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/178">go-logr/logr#178</a></li> <li>Update security email by <a href="https://github.com/thockin"><code>@thockin</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/181">go-logr/logr#181</a></li> <li>docs: explain relationship between Logger{} and Discard() by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/182">go-logr/logr#182</a></li> <li>Add the OpenSSF Scorecard workflow by <a href="https://github.com/pnacht"><code>@pnacht</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/186">go-logr/logr#186</a></li> <li>README: show of OpenSSF Scorecard badge by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/187">go-logr/logr#187</a></li> <li>Hash-pin workflow Actions by <a href="https://github.com/pnacht"><code>@pnacht</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/189">go-logr/logr#189</a></li> <li>Bump go versions to 1.18+ by <a href="https://github.com/thockin"><code>@thockin</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/203">go-logr/logr#203</a></li> <li>slogr: add glue code for logging to slog.Handler and with slog.Logger by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/205">go-logr/logr#205</a></li> <li>slogr: restore original backend when converting back and forth by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/210">go-logr/logr#210</a></li> <li>slogr: add SlogSink by <a href="https://github.com/pohly"><code>@pohly</code></a> in <a href="https://redirect.github.com/go-logr/logr/pull/211">go-logr/logr#211</a></li> </ul> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/go-logr/logr/commit/dcdc3f2cd12e8a5c4e2a6712d6958c90e2e5bd98"><code>dcdc3f2</code></a> slogr: fix unintended API break in v0.8.0 (<a href="https://redirect.github.com/go-logr/logr/issues/253">#253</a>)</li> <li><a href="https://github.com/go-logr/logr/commit/5d88f52f7c0bad12180de7bd4bd5a56fa7ce0ec3"><code>5d88f52</code></a> funcr: Add LogInfoLevel Option to skip logging level in the info log (<a href="https://redirect.github.com/go-logr/logr/issues/240">#240</a>)</li> <li><a href="https://github.com/go-logr/logr/commit/177005d4eef9d394e2cb5702ab1c0dfb51ddef0f"><code>177005d</code></a> build(deps): bump actions/upload-artifact from 3.1.3 to 4.0.0</li> <li><a href="https://github.com/go-logr/logr/commit/e7f489a410309014c7d2ddc70800f2e3031a34f6"><code>e7f489a</code></a> build(deps): bump github/codeql-action from 2.22.9 to 3.22.11</li> <li><a href="https://github.com/go-logr/logr/commit/cf56c3b5da5a00eacf11e94616fe5dfe873bee52"><code>cf56c3b</code></a> build(deps): bump actions/setup-go from 4 to 5</li> <li><a href="https://github.com/go-logr/logr/commit/2ad296ec40a3bbda65a372e58a27d566e2e05083"><code>2ad296e</code></a> build(deps): bump github/codeql-action from 2.22.8 to 2.22.9</li> <li><a href="https://github.com/go-logr/logr/commit/d55b4e2d2159a37e0eb7728f3d6ae0abb563393a"><code>d55b4e2</code></a> Merge pull request <a href="https://redirect.github.com/go-logr/logr/issues/241">#241</a> from thockin/master</li> <li><a href="https://github.com/go-logr/logr/commit/98ee9d96bccd21c2ddb6cbe144aed9022119b233"><code>98ee9d9</code></a> Clean up slog testing and restore coverage</li> <li><a href="https://github.com/go-logr/logr/commit/b228ba8636d02f868be6802747693a8489b182e2"><code>b228ba8</code></a> Break examples to new file</li> <li><a href="https://github.com/go-logr/logr/commit/64328772921a64a598eb222e2b0d0b9317651521"><code>6432877</code></a> Add benchmarks for slogSink</li> <li>Additional commits viewable in <a href="https://github.com/go-logr/logr/compare/v1.2.4...v1.4.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
- Loading branch information
