build(deps): bump the go-mod group across 1 directory with 7 updates #393

dependabot · 2024-07-05T12:49:45Z

Bumps the go-mod group with 7 updates in the / directory:

Package	From	To
github.com/authzed/authzed-go	`0.12.1-0.20240607163830-a28f71a1b0e5`	`0.13.0`
github.com/authzed/spicedb	`1.33.1-0.20240615003920-ebe0417c815b`	`1.34.0`
github.com/samber/lo	`1.39.0`	`1.44.0`
github.com/spf13/cobra	`1.8.0`	`1.8.1`
golang.org/x/mod	`0.18.0`	`0.19.0`
golang.org/x/term	`0.21.0`	`0.22.0`
google.golang.org/grpc	`1.64.0`	`1.65.0`

Updates github.com/authzed/authzed-go from 0.12.1-0.20240607163830-a28f71a1b0e5 to 0.13.0

Release notes

Sourced from github.com/authzed/authzed-go's releases.

v0.13.0

What's Changed

Bump the go-mod-magefiles group in /magefiles with 3 updates by @dependabot in authzed/authzed-go#203

Bump the go-mod group with 2 updates by @dependabot in authzed/authzed-go#202

Bump the go-mod-magefiles group in /magefiles with 2 updates by @dependabot in authzed/authzed-go#204

generate Authzed Materialize v0 Go client code by @vroldanbet in authzed/authzed-go#205

Add error reason for wildcard uses by @josephschorr in authzed/authzed-go#206

Bump the go-mod group with 2 updates by @dependabot in authzed/authzed-go#207

Bump the go-mod-magefiles group in /magefiles with 2 updates by @dependabot in authzed/authzed-go#208

Bump the go-mod-magefiles group in /magefiles with 2 updates by @dependabot in authzed/authzed-go#210

Bump google.golang.org/protobuf from 1.34.1 to 1.34.2 in the go-mod group by @dependabot in authzed/authzed-go#209

Bump github.com/bufbuild/buf from 1.33.0 to 1.34.0 in /magefiles in the go-mod-magefiles group by @dependabot in authzed/authzed-go#211

regenerate authzed-go after API 1.34 by @vroldanbet in authzed/authzed-go#212

Full Changelog: authzed/authzed-go@v0.12.0...v0.13.0

Commits

See full diff in compare view

Updates github.com/authzed/spicedb from 1.33.1-0.20240615003920-ebe0417c815b to 1.34.0

Release notes

Sourced from github.com/authzed/spicedb's releases.

v1.34.0

[!NOTE]
All datastores have a migration to add a new table for the count relationships API

Highlights

🧮 New experimental count relationships API ⏩ Better performance for minimize_latency calls on multi-region Spanner 🚩Better error messages for attempting to write invalid subjects on relationships

What's Changed

makes it possible to compare datastore-specific revisions with datastore.NoRevision by @vroldanbet in authzed/spicedb#1907

Add Experimental Relationship Counter API by @josephschorr in authzed/spicedb#1901

goreleaser: refactor brew formula by @jzelinskie in authzed/spicedb#1912

Make sure to escape underscores in resource ID prefix matches in filters by @josephschorr in authzed/spicedb#1911

goreleaser: use build.head? in install by @jzelinskie in authzed/spicedb#1913

Ensure stability of exclusions in validation package by @josephschorr in authzed/spicedb#1916

Bump the go-mod group with 21 updates by @dependabot in authzed/spicedb#1919

adds automaxprocs and automemlimit by @vroldanbet in authzed/spicedb#1921

Update CLA link in CONTRIBUTING.md to point to v2 by @coderbydesign in authzed/spicedb#1918

Return a proper error code if a wildcard subject is specified by @josephschorr in authzed/spicedb#1928

Bump github.com/mostynb/go-grpc-compression from 1.2.2 to 1.2.3 in the go_modules group by @dependabot in authzed/spicedb#1932

spanner: use stale reads for current_timestamp for optimized revision by @ecordell in authzed/spicedb#1935

README: fix discord badge by @jzelinskie in authzed/spicedb#1936

Add the debug trace to the details of the recursion error by @josephschorr in authzed/spicedb#1930

Ensure the object type prefix is used for caveat refs as well by @josephschorr in authzed/spicedb#1940

Support credential JSON for Spanner by @lexcao in authzed/spicedb#1942

Add a custom linter to find any recursive error marshaling for zerolog by @josephschorr in authzed/spicedb#1944

Add better subject error messages on write/delete validation by @josephschorr in authzed/spicedb#1943

Export Spanner credential JSON for datastore by @lexcao in authzed/spicedb#1946

Fix/bulk loader nullstring by @heissa83 in authzed/spicedb#1945

Small optimized revision handling improvements by @josephschorr in authzed/spicedb#1947

Move to go 1.22.4 for a reported go vuln by @josephschorr in authzed/spicedb#1950

Fix empty value on optional credentialsJSON for Spanner by @lexcao in authzed/spicedb#1948

.github: bump to snapcraft 8.x by @jzelinskie in authzed/spicedb#1952

New Contributors

@coderbydesign made their first contribution in authzed/spicedb#1918

@lexcao made their first contribution in authzed/spicedb#1942

@heissa83 made their first contribution in authzed/spicedb#1945

Full Changelog: authzed/spicedb@v1.33.0...v1.34.0

Docker Images

This release is available at authzed/spicedb:v1.34.0, quay.io/authzed/spicedb:v1.34.0, ghcr.io/authzed/spicedb:v1.34.0

v1.33.1

⚠️ This release has a security fix: GHSA-grjv-gjgr-66g2

... (truncated)

Commits

See full diff in compare view

Updates github.com/samber/lo from 1.39.0 to 1.44.0

Release notes

Sourced from github.com/samber/lo's releases.

v1.44.0

What's Changed

feat: Add slice Splice an element or multiple elements at index i. by @wenlingang in samber/lo#371

feat: Make Filter() preserve type. by @FGasper in samber/lo#365

feat: Added DropByIndex helper for slice by @phith0n in samber/lo#398

feat: upgrade to math/rand/v2 by @samber in samber/lo#483

chore: remove golang.org/x/exp since it doesn't follow go 1 compatibility promise by @trim21 in samber/lo#478

New Contributors

@wenlingang made their first contribution in samber/lo#371

@jason-zhj made their first contribution in samber/lo#376

@FGasper made their first contribution in samber/lo#365

@phith0n made their first contribution in samber/lo#398

Full Changelog: samber/lo@v1.43.0...v1.44.0

v1.43.0

What's Changed

feat: adding HasKey by @samber in samber/lo#477

feat: adding lo.WaitFor by @samber in samber/lo#269

improvement: Optimize the performance of union method, avoid repeated expansion by @cwb2819259 in samber/lo#397

New Contributors

@cwb2819259 made their first contribution in samber/lo#397

Full Changelog: samber/lo@v1.42.0...v1.43.0

v1.42.0

What's Changed

feat: add Nil by @gubtos in samber/lo#383

feat: Add First and FirstOrZeroValue functions by @Alireza-Kiani in samber/lo#451

feat: adding LastOrEmpty and LastOr by @samber in samber/lo#474

feat: Feature/contains iterate by index by @lennon-guan in samber/lo#428

feat: speed up loops by reducing allocations by @samber in samber/lo#475

doc: inconsistent expression in README.md by @rolancia in samber/lo#406

New Contributors

@gubtos made their first contribution in samber/lo#383

@Alireza-Kiani made their first contribution in samber/lo#451

@rolancia made their first contribution in samber/lo#406

@lennon-guan made their first contribution in samber/lo#428

Full Changelog: samber/lo@v1.41.0...v1.42.0

v1.41.0

What's Changed

feat: adding Elipse by @samber in samber/lo#470

feat: adding CoalesceOrEmpty by @samber in samber/lo#469

feat: adding Earliest and Latest by @samber in samber/lo#468

feat: adding duration by @samber in samber/lo#471

... (truncated)

Changelog

Sourced from github.com/samber/lo's changelog.

Changelog

@samber: I sometimes forget to update this file. Ping me on Twitter or open an issue in case of error. We need to keep a clear changelog for easier lib upgrade.

Commits

7c4fdcc bump v1.44.0
3b29b7d feat: upgrade to math/rand/v2 (#483)
0a145c7 style: replace interface{} by any
9405c90 chore: adding issue template (#481)
52e17fa Added DropByIndex helper for slice (#398)
93686db feat: preserve type alias of slices and maps (see #365)
3ba93a1 feat: preserve type alias of slices and maps (see #365)
de419c7 Make Filter() preserve type. (#365)
2ec43f4 Revert "Add new method Concat (#376)" (#479)
940ded8 Add new method Concat (#376)
Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.8.0 to 1.8.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.8.1

✨ Features

Add env variable to suppress completion descriptions on create by @scop in spf13/cobra#1938

🐛 Bug fixes

Micro-optimizations by @scop in spf13/cobra#1957

🔧 Maintenance

build(deps): bump github.com/cpuguy83/go-md2man/v2 from 2.0.3 to 2.0.4 by @dependabot in spf13/cobra#2127

Consistent annotation names by @nirs in spf13/cobra#2140

Remove fully inactivated linters by @nirs in spf13/cobra#2148

Address golangci-lint deprecation warnings, enable some more linters by @scop in spf13/cobra#2152

🧪 Testing & CI/CD

Add test for func in cobra.go by @korovindenis in spf13/cobra#2094

ci: test golang 1.22 by @cyrilico in spf13/cobra#2113

Optimized and added more linting by @scop in spf13/cobra#2099

build(deps): bump actions/setup-go from 4 to 5 by @dependabot in spf13/cobra#2087

build(deps): bump actions/labeler from 4 to 5 by @dependabot in spf13/cobra#2086

build(deps): bump golangci/golangci-lint-action from 3.7.0 to 4.0.0 by @dependabot in spf13/cobra#2108

build(deps): bump actions/cache from 3 to 4 by @dependabot in spf13/cobra#2102

✏️ Documentation

Fixes and docs for usage as plugin by @nirs in spf13/cobra#2070

flags: clarify documentation that LocalFlags related function do not modify the state by @niamster in spf13/cobra#2064

chore: remove repetitive words by @racerole in spf13/cobra#2122

Add LXC to the list of projects using Cobra @VaradBelwalkar in spf13/cobra#2071

Update projects_using_cobra.md by @marcuskohlberg in spf13/cobra#2089

[chore]: update projects using cobra by @cmwylie19 in spf13/cobra#2093

Add Taikun CLI to list of projects by @Smidra in spf13/cobra#2098

Add Incus to the list of projects using Cobra by @montag451 in spf13/cobra#2118

... (truncated)

Commits

e94f6d0 Address golangci-lint deprecation warnings, enable some more linters (#2152)
8003b74 Remove fully inactivated linters (#2148)
5c2c1d6 Consistent annotation names (#2140)
5a1acea build(deps): bump github.com/cpuguy83/go-md2man/v2 from 2.0.3 to 2.0.4 (#2127)
0fc86c2 docs: update user guide (#2128)
6b5f577 More linting (#2099)
bd914e5 fix: remove deprecated io/ioutils package (#2120)
1f80fa2 chore: remove repetitive words (#2122)
c69ae4c ci: test golang 1.22 (#2113)
a30cee5 build(deps): bump actions/cache from 3 to 4 (#2102)
Additional commits viewable in compare view

Updates golang.org/x/mod from 0.18.0 to 0.19.0

Commits

d58be1c sumdb/tlog: set the hash of the empty tree according to RFC 6962
232e49f Revert "module: add COM0 and LPT0 to badWindowsNames"
See full diff in compare view

Updates golang.org/x/term from 0.21.0 to 0.22.0

Commits

c976cb1 go.mod: update golang.org/x dependencies
See full diff in compare view

Updates google.golang.org/grpc from 1.64.0 to 1.65.0

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.65.0

Dependencies

Change support policy to cover only the latest TWO releases of Go, matching the policy for Go itself. See #7249 for more information. (#7250)

Update x/net/http2 to address CVE-2023-45288 (#7282)

Behavior Changes

credentials/tls: clients and servers will now reject connections that don't support ALPN when environment variable GRPC_ENFORCE_ALPN_ENABLED is set to "true" (case insensitive). (#7184)

NOTE: this behavior will become the default in a future release.

metadata: remove String method from MD to make printing more consistent (#7373)

New Features

grpc: add WithMaxCallAttempts to configure gRPC's retry behavior per-channel. (#7229)

Special Thanks: @imoore76

Bug Fixes

ringhash: properly apply endpoint weights instead of ignoring them (#7156)

xds: fix a bug that could cause xds-enabled servers to stop accepting new connections after handshaking errors (#7128)

Special Thanks: @bozaro

Release 1.64.1

Dependencies

Update x/net/http2 to address CVE-2023-45288 (#7352)

metadata: remove String method from MD to make printing consistent (#7374)

Commits

2da9769 Change version to 1.65.0 (#7306)
ede96b7 metadata: remove String method (#7373)
64be203 grpc: Readd pick first name (#7336) (#7341)
25e33a6 examples: Add CSM Observability example (#7302) (#7318)
04a5f46 xds/internal/xdsclient: Emit unknown for CSM Labels if not present in CDS (#7...
cff5c3e stats/opentelemetry: Add e2e testing for CSM Observability (#7279) (#7316)
9b970fd dns: fix constant 30s backoff for re-resolution (#7262) (#7311)
6d23620 documentation: on server, use FromIncomingContext for retrieving context and...
7e5898e xds: unify xDS client creation APIs meant for testing (#7268)
5d7bd7a interop/xds: Interop client and server changes for CSM Observability (#7280)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the go-mod group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/authzed/authzed-go](https://github.com/authzed/authzed-go) | `0.12.1-0.20240607163830-a28f71a1b0e5` | `0.13.0` | | [github.com/authzed/spicedb](https://github.com/authzed/spicedb) | `1.33.1-0.20240615003920-ebe0417c815b` | `1.34.0` | | [github.com/samber/lo](https://github.com/samber/lo) | `1.39.0` | `1.44.0` | | [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.8.0` | `1.8.1` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.18.0` | `0.19.0` | | [golang.org/x/term](https://github.com/golang/term) | `0.21.0` | `0.22.0` | | [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.0` | `1.65.0` | Updates `github.com/authzed/authzed-go` from 0.12.1-0.20240607163830-a28f71a1b0e5 to 0.13.0 - [Release notes](https://github.com/authzed/authzed-go/releases) - [Commits](https://github.com/authzed/authzed-go/commits/v0.13.0) Updates `github.com/authzed/spicedb` from 1.33.1-0.20240615003920-ebe0417c815b to 1.34.0 - [Release notes](https://github.com/authzed/spicedb/releases) - [Changelog](https://github.com/authzed/spicedb/blob/main/.goreleaser.yml) - [Commits](https://github.com/authzed/spicedb/commits/v1.34.0) Updates `github.com/samber/lo` from 1.39.0 to 1.44.0 - [Release notes](https://github.com/samber/lo/releases) - [Changelog](https://github.com/samber/lo/blob/master/CHANGELOG.md) - [Commits](samber/lo@v1.39.0...v1.44.0) Updates `github.com/spf13/cobra` from 1.8.0 to 1.8.1 - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](spf13/cobra@v1.8.0...v1.8.1) Updates `golang.org/x/mod` from 0.18.0 to 0.19.0 - [Commits](golang/mod@v0.18.0...v0.19.0) Updates `golang.org/x/term` from 0.21.0 to 0.22.0 - [Commits](golang/term@v0.21.0...v0.22.0) Updates `google.golang.org/grpc` from 1.64.0 to 1.65.0 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.64.0...v1.65.0) --- updated-dependencies: - dependency-name: github.com/authzed/authzed-go dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-mod - dependency-name: github.com/authzed/spicedb dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-mod - dependency-name: github.com/samber/lo dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-mod - dependency-name: github.com/spf13/cobra dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go-mod - dependency-name: golang.org/x/mod dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-mod - dependency-name: golang.org/x/term dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-mod - dependency-name: google.golang.org/grpc dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go-mod ... Signed-off-by: dependabot[bot] <support@github.com>

vroldanbet · 2024-07-15T15:59:37Z

@dependabot recreate

dependabot · 2024-07-15T16:00:41Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added the area/dependencies Affects dependencies label Jul 5, 2024

vroldanbet force-pushed the dependabot/go_modules/go-mod-6f9722dd70 branch 2 times, most recently from b3f5cf9 to bb81f86 Compare July 5, 2024 12:52

vroldanbet enabled auto-merge July 5, 2024 12:52

vroldanbet previously approved these changes Jul 5, 2024

View reviewed changes

vroldanbet added this pull request to the merge queue Jul 5, 2024

vroldanbet removed this pull request from the merge queue due to a manual request Jul 5, 2024

vroldanbet dismissed their stale review via ec0d995 July 5, 2024 13:02

vroldanbet force-pushed the dependabot/go_modules/go-mod-6f9722dd70 branch from bb81f86 to ec0d995 Compare July 5, 2024 13:02

vroldanbet enabled auto-merge July 5, 2024 13:04

vroldanbet approved these changes Jul 15, 2024

View reviewed changes

vroldanbet added this pull request to the merge queue Jul 15, 2024

vroldanbet removed this pull request from the merge queue due to a manual request Jul 15, 2024

dependabot bot closed this Jul 15, 2024

dependabot bot deleted the dependabot/go_modules/go-mod-6f9722dd70 branch July 15, 2024 16:00

github-actions bot locked and limited conversation to collaborators Jul 15, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump the go-mod group across 1 directory with 7 updates #393

build(deps): bump the go-mod group across 1 directory with 7 updates #393

dependabot bot commented on behalf of github Jul 5, 2024 •

edited

Loading

vroldanbet commented Jul 15, 2024

dependabot bot commented on behalf of github Jul 15, 2024

build(deps): bump the go-mod group across 1 directory with 7 updates #393

build(deps): bump the go-mod group across 1 directory with 7 updates #393

Conversation

dependabot bot commented on behalf of github Jul 5, 2024 • edited Loading

v0.13.0

What's Changed

v1.34.0

Highlights

What's Changed

New Contributors

Docker Images

v1.33.1

v1.44.0

What's Changed

New Contributors

v1.43.0

What's Changed

New Contributors

v1.42.0

What's Changed

New Contributors

v1.41.0

What's Changed

Changelog

v1.8.1

✨ Features

🐛 Bug fixes

🔧 Maintenance

🧪 Testing & CI/CD

✏️ Documentation

Release 1.65.0

Dependencies

Behavior Changes

New Features

Bug Fixes

Release 1.64.1

Dependencies

vroldanbet commented Jul 15, 2024

dependabot bot commented on behalf of github Jul 15, 2024

dependabot bot commented on behalf of github Jul 5, 2024 •

edited

Loading