chore(deps): bump google.golang.org/protobuf from 1.30.0 to 1.33.0 #2147
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
dependabot
bot
force-pushed
the
dependabot/go_modules/google.golang.org/protobuf-1.33.0
branch
from
c964583
to
3c2a4c8
Compare
Bumps google.golang.org/protobuf from 1.30.0 to 1.33.0. --- updated-dependencies: - dependency-name: google.golang.org/protobuf dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]>
simar7
force-pushed
the
dependabot/go_modules/google.golang.org/protobuf-1.33.0
branch
from
3c2a4c8
to
7009470
Compare
simar7
deleted the
dependabot/go_modules/google.golang.org/protobuf-1.33.0
branch
|
hi @simar7 it seems like some actions related to this change (which resulted in v1.28.7) have failed: https://github.com/aquasecurity/tfsec/actions/runs/9703602551/job/26782098511 I believe this might impact people using the aquasecurity/tfsec-action Github action without setting a tfsec version |
scottames
referenced
this pull request
in scottames/dots
Jun 29, 2024
[](https://renovatebot.com) This PR contains the following updates: | Package | Update | Change | |---|---|---| | [aquaproj/aqua-registry](https://togithub.com/aquaproj/aqua-registry) | minor | `v4.196.0` -> `v4.198.0` | | [aquasecurity/tfsec](https://togithub.com/aquasecurity/tfsec) | patch | `v1.28.6` -> `v1.28.9` | | [cli/cli](https://togithub.com/cli/cli) | minor | `v2.51.0` -> `v2.52.0` | | [cue-lang/cue](https://togithub.com/cue-lang/cue) | patch | `v0.9.1` -> `v0.9.2` | | [dagger/dagger](https://togithub.com/dagger/dagger) | patch | `v0.11.8` -> `v0.11.9` | | [dlvhdr/gh-dash](https://togithub.com/dlvhdr/gh-dash) | minor | `v4.1.2` -> `v4.3.0` | | [eza-community/eza](https://togithub.com/eza-community/eza) | patch | `v0.18.19` -> `v0.18.20` | | [leg100/pug](https://togithub.com/leg100/pug) | patch | `v0.2.0` -> `v0.2.2` | | [snyk/cli](https://togithub.com/snyk/cli) | minor | `v1.1291.1` -> `v1.1292.1` | | [twpayne/chezmoi](https://togithub.com/twpayne/chezmoi) | patch | `v2.49.0` -> `v2.49.1` | --- > [!WARNING] > Some dependencies could not be looked up. Check the Dependency Dashboard for more information. --- ### Release Notes <details> <summary>aquaproj/aqua-registry (aquaproj/aqua-registry)</summary> ### [`v4.198.0`](https://togithub.com/aquaproj/aqua-registry/releases/tag/v4.198.0) [Compare Source](https://togithub.com/aquaproj/aqua-registry/compare/v4.197.0...v4.198.0) [Issues](https://togithub.com/aquaproj/aqua-registry/issues?q=is%3Aissue+milestone%3Av4.198.0) | [Pull Requests](https://togithub.com/aquaproj/aqua-registry/pulls?q=is%3Apr+milestone%3Av4.198.0) | aquaproj/aqua-registry@v4.197.0...v4.198.0 #### 🎉 New Packages [#​24320](https://togithub.com/aquaproj/aqua-registry/issues/24320) [handlename/let-rds-sleep](https://togithub.com/handlename/let-rds-sleep): Keep sleeping AWS RDS/Aurora Cluster [@​ponkio-o](https://togithub.com/ponkio-o) [#​24332](https://togithub.com/aquaproj/aqua-registry/issues/24332) [ned1313/terrahash](https://togithub.com/ned1313/terrahash): Create and store a hash of the Terraform modules used by your configuration [#​24297](https://togithub.com/aquaproj/aqua-registry/issues/24297) [yassinebridi/serpl](https://togithub.com/yassinebridi/serpl): A simple terminal UI for search and replace, ala VS Code [@​4513ECHO](https://togithub.com/4513ECHO) #### Fix [#​24373](https://togithub.com/aquaproj/aqua-registry/issues/24373) astral-sh/ruff: Follow up changes of ruff 0.5.0 https://github.com/astral-sh/ruff/releases/tag/0.5.0 > The released archives now include an extra level of nesting, which can be removed with --strip-components=1 when untarring. > The release artifact's file name no longer includes the version tag. This enables users to install via /latest URLs on GitHub. ### [`v4.197.0`](https://togithub.com/aquaproj/aqua-registry/releases/tag/v4.197.0) [Compare Source](https://togithub.com/aquaproj/aqua-registry/compare/v4.196.0...v4.197.0) [Issues](https://togithub.com/aquaproj/aqua-registry/issues?q=is%3Aissue+milestone%3Av4.197.0) | [Pull Requests](https://togithub.com/aquaproj/aqua-registry/pulls?q=is%3Apr+milestone%3Av4.197.0) | aquaproj/aqua-registry@v4.196.0...v4.197.0 #### 🎉 Reached 1,500 packages Thank you all contributors! #### 🎉 New Packages [#​24294](https://togithub.com/aquaproj/aqua-registry/issues/24294) [JFryy/qq](https://togithub.com/JFryy/qq): jq inspired interoperable config format transcoder with interactive querying [#​24214](https://togithub.com/aquaproj/aqua-registry/issues/24214) [SuperCuber/dotter](https://togithub.com/SuperCuber/dotter): A dotfile manager and templater written in rust [@​hituzi-no-sippo](https://togithub.com/hituzi-no-sippo) [#​24270](https://togithub.com/aquaproj/aqua-registry/issues/24270) [nerdypepper/dijo](https://togithub.com/nerdypepper/dijo): scriptable, curses-based, digital habit tracker [@​hituzi-no-sippo](https://togithub.com/hituzi-no-sippo) [#​24266](https://togithub.com/aquaproj/aqua-registry/issues/24266) [reemus-dev/gitnr](https://togithub.com/reemus-dev/gitnr): Create `.gitignore` files using one or more templates from TopTal, GitHub or your own collection [@​hituzi-no-sippo](https://togithub.com/hituzi-no-sippo) </details> <details> <summary>aquasecurity/tfsec (aquasecurity/tfsec)</summary> ### [`v1.28.9`](https://togithub.com/aquasecurity/tfsec/releases/tag/v1.28.9) [Compare Source](https://togithub.com/aquasecurity/tfsec/compare/v1.28.8...v1.28.9) #### What's Changed - Goreleaser update by [@​simar7](https://togithub.com/simar7) in [https://github.com/aquasecurity/tfsec/pull/2149](https://togithub.com/aquasecurity/tfsec/pull/2149) **Full Changelog**: aquasecurity/tfsec@v1.28.8...v1.28.9 ### [`v1.28.8`](https://togithub.com/aquasecurity/tfsec/releases/tag/v1.28.8) [Compare Source](https://togithub.com/aquasecurity/tfsec/compare/v1.28.7...v1.28.8) #### What's Changed - chore(deps): Fix goreleaser to use pinned version by [@​simar7](https://togithub.com/simar7) in [https://github.com/aquasecurity/tfsec/pull/2148](https://togithub.com/aquasecurity/tfsec/pull/2148) **Full Changelog**: aquasecurity/tfsec@v1.28.7...v1.28.8 ### [`v1.28.7`](https://togithub.com/aquasecurity/tfsec/releases/tag/v1.28.7) [Compare Source](https://togithub.com/aquasecurity/tfsec/compare/v1.28.6...v1.28.7) #### What's Changed - fix: typo by [@​testwill](https://togithub.com/testwill) in [https://github.com/aquasecurity/tfsec/pull/2110](https://togithub.com/aquasecurity/tfsec/pull/2110) - Bumped Go-Getter due High Vulnerability CVE-2024-6257 by [@​jdesouza](https://togithub.com/jdesouza) in [https://github.com/aquasecurity/tfsec/pull/2145](https://togithub.com/aquasecurity/tfsec/pull/2145) - chore(deps): bump golang.org/x/net from 0.19.0 to 0.23.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/aquasecurity/tfsec/pull/2146](https://togithub.com/aquasecurity/tfsec/pull/2146) - chore(deps): bump google.golang.org/protobuf from 1.30.0 to 1.33.0 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/aquasecurity/tfsec/pull/2147](https://togithub.com/aquasecurity/tfsec/pull/2147) #### New Contributors - [@​testwill](https://togithub.com/testwill) made their first contribution in [https://github.com/aquasecurity/tfsec/pull/2110](https://togithub.com/aquasecurity/tfsec/pull/2110) **Full Changelog**: aquasecurity/tfsec@v1.28.6...v1.28.7 </details> <details> <summary>cli/cli (cli/cli)</summary> ### [`v2.52.0`](https://togithub.com/cli/cli/releases/tag/v2.52.0): GitHub CLI 2.52.0 [Compare Source](https://togithub.com/cli/cli/compare/v2.51.0...v2.52.0) #### What's Changed - feat: add `-a` flag to `gh run list` by [@​joshuajtward](https://togithub.com/joshuajtward) in [https://github.com/cli/cli/pull/9162](https://togithub.com/cli/cli/pull/9162) - Attestation Verification - Buffer Fix by [@​Forrin](https://togithub.com/Forrin) in [https://github.com/cli/cli/pull/9198](https://togithub.com/cli/cli/pull/9198) - build(deps): bump actions/attest-build-provenance from 1.2.0 to 1.3.2 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/cli/cli/pull/9222](https://togithub.com/cli/cli/pull/9222) - build(deps): bump github.com/gorilla/websocket from 1.5.2 to 1.5.3 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/cli/cli/pull/9211](https://togithub.com/cli/cli/pull/9211) - build(deps): bump github.com/spf13/cobra from 1.8.0 to 1.8.1 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/cli/cli/pull/9218](https://togithub.com/cli/cli/pull/9218) - build(deps): bump github.com/google/go-containerregistry from 0.19.1 to 0.19.2 by [@​dependabot](https://togithub.com/dependabot) in [https://github.com/cli/cli/pull/9217](https://togithub.com/cli/cli/pull/9217) - Remove `gh at verify` public beta note by [@​phillmv](https://togithub.com/phillmv) in [https://github.com/cli/cli/pull/9243](https://togithub.com/cli/cli/pull/9243) #### New Contributors - [@​joshuajtward](https://togithub.com/joshuajtward) made their first contribution in [https://github.com/cli/cli/pull/9162](https://togithub.com/cli/cli/pull/9162) - [@​Forrin](https://togithub.com/Forrin) made their first contribution in [https://github.com/cli/cli/pull/9198](https://togithub.com/cli/cli/pull/9198) **Full Changelog**: cli/cli@v2.51.0...v2.52.0 </details> <details> <summary>cue-lang/cue (cue-lang/cue)</summary> ### [`v0.9.2`](https://togithub.com/cue-lang/cue/releases/tag/v0.9.2) [Compare Source](https://togithub.com/cue-lang/cue/compare/v0.9.1...v0.9.2) This release includes a fix for a regression around CUE files without a package name, and updates the compiled-in language version to match the actual tagged version v0.9.2. CL [1196785](https://cuelang.org/cl/1196785) fixes the `cue/load` logic to correctly take CUE files with out a package name into account (issue [#​3244](https://cuelang.org/issue/3244)). <details> <summary><b>Full list of changes since d8742c13dce6f5f02ff67740da2efe1f94a2ed0e</b></summary> - \[release-branch.v0.9] update cueversion.LanguageVersion to v0.9.2 by [@​rogpeppe](https://togithub.com/rogpeppe) in [`a02ef5a`](https://togithub.com/cue-lang/cue/commit/a02ef5abb5cf8d37a3f1e442f061885532fc6461) - cue/load: do not consider anonymous packages when checking package qualifier by [@​rogpeppe](https://togithub.com/rogpeppe) in [`f7e7c33`](https://togithub.com/cue-lang/cue/commit/f7e7c33ce43c02e4d480a37d069969a0fa7789c2) - cmd/cue,cue/load: add tests for underscore packages by [@​rogpeppe](https://togithub.com/rogpeppe) in [`bbbfea0`](https://togithub.com/cue-lang/cue/commit/bbbfea05317b32e4174bf0d2d8fbf2c8fec14ee1) </details> </details> <details> <summary>dagger/dagger (dagger/dagger)</summary> ### [`v0.11.9`](https://togithub.com/dagger/dagger/blob/HEAD/CHANGELOG.md#v0119---2024-06-24) [Compare Source](https://togithub.com/dagger/dagger/compare/v0.11.8...v0.11.9) ##### Fixed - Fix engine local disk cache growing indefinitely by [@​sipsma](https://togithub.com/sipsma) in [https://github.com/dagger/dagger/pull/7738](https://togithub.com/dagger/dagger/pull/7738) ##### What to do next? - Read the [documentation](https://docs.dagger.io) - Join our [Discord server](https://discord.gg/dagger-io) - Follow us on [Twitter](https://twitter.com/dagger_io) </details> <details> <summary>dlvhdr/gh-dash (dlvhdr/gh-dash)</summary> ### [`v4.3.0`](https://togithub.com/dlvhdr/gh-dash/releases/tag/v4.3.0) [Compare Source](https://togithub.com/dlvhdr/gh-dash/compare/v4.2.0...v4.3.0) #### Changelog - [`96cca1a`](https://togithub.com/dlvhdr/gh-dash/commit/96cca1a) feat: support showing the number of results in tab bar ([#​401](https://togithub.com/dlvhdr/gh-dash/issues/401)) ### [`v4.2.0`](https://togithub.com/dlvhdr/gh-dash/releases/tag/v4.2.0) [Compare Source](https://togithub.com/dlvhdr/gh-dash/compare/v4.1.2...v4.2.0) #### Changelog - [`da1221b`](https://togithub.com/dlvhdr/gh-dash/commit/da1221b) support modifying default keybindings prototype ([#​356](https://togithub.com/dlvhdr/gh-dash/issues/356)) </details> <details> <summary>eza-community/eza (eza-community/eza)</summary> ### [`v0.18.20`](https://togithub.com/eza-community/eza/releases/tag/v0.18.20): eza v0.18.20 [Compare Source](https://togithub.com/eza-community/eza/compare/v0.18.19...v0.18.20) ### Changelog #### \[0.18.20] - 2024-06-27 ##### Features - Add --no-|show-symlinks flags for filtering output ##### Miscellaneous Tasks - Release eza v0.18.20 ### Checksums #### sha256sum 25c29dd41b48e7064c212a2b3b9ed26c81c1efe2e05f96f70ffcb3c8e979ad6d ./target/bin-0.18.20/eza_aarch64-unknown-linux-gnu.tar.gz 29ec043779be6cd8aca2469b1e4a68e0a98ca98fd39bd3f44f3a553ea0c2ed4d ./target/bin-0.18.20/eza_aarch64-unknown-linux-gnu.zip 44ef91a28367c23f2c6a6d2107de23703ff6a9116959ebf3173245626f0e25b5 ./target/bin-0.18.20/eza_arm-unknown-linux-gnueabihf.tar.gz 4232974d29d8d81c0a091c9d003f5a86b5eafdaf4d347b12d605dbf58af7139f ./target/bin-0.18.20/eza_arm-unknown-linux-gnueabihf.zip 89227b15f7502864ae61ed5b15bc23bbef51a7388b05a856937ad833ca45dab1 ./target/bin-0.18.20/eza.exe_x86_64-pc-windows-gnu.tar.gz 48d509ee21c4a324a443dc9148b72c47614c3962d28cff1f590c908ece81bfad ./target/bin-0.18.20/eza.exe_x86_64-pc-windows-gnu.zip 7de95d7409cb3bc34f21e9945df0abdc38f8968882ac3c9d7f3eb8c35d3db670 ./target/bin-0.18.20/eza_x86_64-unknown-linux-gnu.tar.gz 4c6dd75763a0a5cf95fca8d85cbdb9b8cc62f4994822d5ebd16692a477677510 ./target/bin-0.18.20/eza_x86_64-unknown-linux-gnu.zip a91d718ad8b8a6dcd8ee3b350682ed76cae58c90e6a723f87899a6facb9092a4 ./target/bin-0.18.20/eza_x86_64-unknown-linux-musl.tar.gz a24061fa880e1cbbc0143f880c61376ffa4ccb181ca950afc47cf1b84d5b6981 ./target/bin-0.18.20/eza_x86_64-unknown-linux-musl.zip #### md5sum c73fbcba212fa35b4a69260f68730517 ./target/bin-0.18.20/eza_aarch64-unknown-linux-gnu.tar.gz 7435784eaa78da5e13cc33d6fe67b40c ./target/bin-0.18.20/eza_aarch64-unknown-linux-gnu.zip de0b25f2edd05870bccd93722fd80453 ./target/bin-0.18.20/eza_arm-unknown-linux-gnueabihf.tar.gz 4a274da21872113538bc210daeb9fc46 ./target/bin-0.18.20/eza_arm-unknown-linux-gnueabihf.zip 3d119a21297cccc22bfb895dcaa57cda ./target/bin-0.18.20/eza.exe_x86_64-pc-windows-gnu.tar.gz 02037e1c11f20a6e4ea4f51c2e818fda ./target/bin-0.18.20/eza.exe_x86_64-pc-windows-gnu.zip 0973c85f165dc8da2edb640d2edde947 ./target/bin-0.18.20/eza_x86_64-unknown-linux-gnu.tar.gz 3315057532936a5bed4ce85486039772 ./target/bin-0.18.20/eza_x86_64-unknown-linux-gnu.zip 4a6070a9408dee8fa70edbbaee067a67 ./target/bin-0.18.20/eza_x86_64-unknown-linux-musl.tar.gz 15a73f9494fc9a28ef1ad8167d39290f ./target/bin-0.18.20/eza_x86_64-unknown-linux-musl.zip #### blake3sum a0b6c8b387cdd9955531930e96e7856cbd56bd273d54b0f6c5905371d436a5b9 ./target/bin-0.18.20/eza_aarch64-unknown-linux-gnu.tar.gz 4a65973574802ca11fe4505e2941712bf1a9a822baf352c6e527a8ae7c58fef0 ./target/bin-0.18.20/eza_aarch64-unknown-linux-gnu.zip 05aae75e30a14e780056c7579e5b94b35ea6fa2cd614d5999cfbbddd2612bdf7 ./target/bin-0.18.20/eza_arm-unknown-linux-gnueabihf.tar.gz bea28a8dfc5c45271ab100357fb32b9075132d796b5a73de9d72216aae421714 ./target/bin-0.18.20/eza_arm-unknown-linux-gnueabihf.zip d5a8f44546894e6c1e1fe13f506836fa5547cccc2d4cf8c68e054b115da12fbb ./target/bin-0.18.20/eza.exe_x86_64-pc-windows-gnu.tar.gz 0ccfc8ffeee1660d4715f3bef4c78d1b6ebe0456862545273e41051e0f90574c ./target/bin-0.18.20/eza.exe_x86_64-pc-windows-gnu.zip 99eb333f6397acc4ebc09632853774a90652bd226ed15e35fdd0183a7e496167 ./target/bin-0.18.20/eza_x86_64-unknown-linux-gnu.tar.gz e6c4b6e34b7088d25efec5035ed5986a080f4b16ac3cf04de808107eb2fec4a0 ./target/bin-0.18.20/eza_x86_64-unknown-linux-gnu.zip a0783f8d56f9d097da3fe583bb7b700037d82881f021db2be3bd4547ee9e6c0b ./target/bin-0.18.20/eza_x86_64-unknown-linux-musl.tar.gz 5f7a3f89373a57da4ade9f3332df3877b83ca0558a67ece11a2671e61069dfbd ./target/bin-0.18.20/eza_x86_64-unknown-linux-musl.zip </details> <details> <summary>leg100/pug (leg100/pug)</summary> ### [`v0.2.2`](https://togithub.com/leg100/pug/releases/tag/v0.2.2) [Compare Source](https://togithub.com/leg100/pug/compare/v0.2.1...v0.2.2) ##### Features - terragrunt mode ([#​77](https://togithub.com/leg100/pug/issues/77)) ([9be2914](https://togithub.com/leg100/pug/commit/9be29144fef6c1ed9c810f1393c39f44949cc06e)) ##### Bug Fixes - border w/o preview nr invisible on light bg ([ba2313a](https://togithub.com/leg100/pug/commit/ba2313a7a7d76721309805e2d7e417c8ac01901a)) - detect applies with no changes ([84cfb6f](https://togithub.com/leg100/pug/commit/84cfb6f323d75f02b915e96f50e29199f012415b)) ##### Miscellaneous - remove run status from UI ([805eb6b](https://togithub.com/leg100/pug/commit/805eb6bc2e54a68592d4ce9ec283037a782e9bfb)) - update tofu/terragrunt support docs ([394f173](https://togithub.com/leg100/pug/commit/394f173e0c72265c79f7cc0895343057cecac945)) ### [`v0.2.1`](https://togithub.com/leg100/pug/releases/tag/v0.2.1) [Compare Source](https://togithub.com/leg100/pug/compare/v0.2.0...v0.2.1) ##### Features - require approval before retrying tasks ([0f5e7e3](https://togithub.com/leg100/pug/commit/0f5e7e38cdf74fe6c2a5b2f55aaa9f6c46529ecf)) ##### Bug Fixes - go install broken by replace directive ([8ab6fb3](https://togithub.com/leg100/pug/commit/8ab6fb35b8be4244edbaa990ea8e221bc492bbf9)) - provide further info when pruning selection ([4c863e9](https://togithub.com/leg100/pug/commit/4c863e91114ec6b169d684d4e059fc2a5582f4f1)) - table current row always track item ([e9c673b](https://togithub.com/leg100/pug/commit/e9c673b9bbb1b4bcb01dae68507ce727a6ce02a7)) ##### Miscellaneous - add terminal trove badge to README.md ([3b0c0a2](https://togithub.com/leg100/pug/commit/3b0c0a2c5db7714165f8e6f4953d46453d3e20e5)) - removed unused progress bar ([f5fa390](https://togithub.com/leg100/pug/commit/f5fa3909b880982e95f80a330db0e40210180441)) - styling changes ([51ab14b](https://togithub.com/leg100/pug/commit/51ab14b241b8a1b556bb238c4db2255b2ba588ce)) - update demo ([dbb8458](https://togithub.com/leg100/pug/commit/dbb845870cde3fc1c518805581119994962bc482)) </details> <details> <summary>snyk/cli (snyk/cli)</summary> ### [`v1.1292.1`](https://togithub.com/snyk/cli/releases/tag/v1.1292.1) [Compare Source](https://togithub.com/snyk/cli/compare/v1.1292.0...v1.1292.1) The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see [this documentation](https://docs.snyk.io/snyk-cli/releases-and-channels-for-the-snyk-cli) #### Complete changelog ##### Bug Fixes - **test,monitor**: fix improper permission error handling when accessing 'enablePnpmCli' feature flag ### [`v1.1292.0`](https://togithub.com/snyk/cli/releases/tag/v1.1292.0) [Compare Source](https://togithub.com/snyk/cli/compare/v1.1291.1...v1.1292.0) The Snyk CLI is being deployed to different deployment channels, users can select the stability level according to their needs. For details please see [this documentation](https://docs.snyk.io/snyk-cli/releases-and-channels-for-the-snyk-cli) ##### News This Snyk CLI release delivers an assortment of bug fixes and improvements. - We've added support for pnpm, giving you more flexibility in your project setup. - You can now scan npm/yarn projects even without lockfiles, ensuring comprehensive vulnerability detection regardless of your dependency management approach. - We're committed to strengthening security. This release includes redaction of additional sensitive data in debug logs, minimizing potential risks. #### Complete changelog ##### Features - **test:** Added pnpm support under 'enablePnpmCli' feature flag ([#​5181](https://togithub.com/snyk/snyk/issues/5181)) ([46769cc](https://togithub.com/snyk/snyk/commit/46769ccefc0c9ca98a44ad4bdd2b4d8161294dbf)) - **test:** Support scan of npm/yarn projects without lockfiles ([e2d77a9](https://togithub.com/snyk/snyk/commit/e2d77a93da3701f4ade32e7432f870945c3763b2)) - **monitor:** Set target-reference in the monitor request ([51ed8f5](https://togithub.com/snyk/snyk/commit/51ed8f53595d7545537900762836823ced29c958)) - **code:** Centrally check if code test is enabled ([#​5239](https://togithub.com/snyk/snyk/issues/5239)) ([e5a00e2](https://togithub.com/snyk/snyk/commit/e5a00e24cbe17b3b9859a39d74f1fe85e773ae4b)) - **sbom:** Improve depgraph for Maven projects ([fbb33d7](https://togithub.com/snyk/snyk/commit/fbb33d7e17f5866501abd4e4022e86eecb390415)) - **sbom:** Use RFC 3339 for all timestamps in sbom test result ([#​5204](https://togithub.com/snyk/snyk/issues/5204)) ([91bf191](https://togithub.com/snyk/snyk/commit/91bf1911997534c0bc2a6c0e093cf113f1292c49)) - **language-server:** Add --all-projects flag scans by default[#5247](https://togithub.com/snyk/snyk/issues/5247)k/snyk/issues/5247\)) ([fdcf30e](https://togithub.com/snyk/snyk/commit/fdcf30e7421b7f8342d11003508f293661264a66)) - **language-server:** Enable incremental scanning[#5291](https://togithub.com/snyk/snyk/issues/5291)k/snyk/issues/5291\)) ([d198685](https://togithub.com/snyk/snyk/commit/d1986856b152419e1712fa2c35b9b73303c428f9)) - **language-server:** Add support for IDE themes ([c1c4d08](https://togithub.com/snyk/snyk/commit/c1c4d0805252ee96c7e081edd6b4e42a23cee3b8)) - **language-server:** Consistent styling across intellij and vscode ([#​5282](https://togithub.com/snyk/snyk/issues/5282)) ([9aa6f76](https://togithub.com/snyk/snyk/commit/9aa6f76201661e8270a92ccc38c75285df435634)) - **logging:** Redact additional types of sensitive data from debug logs ([#​5254](https://togithub.com/snyk/snyk/issues/5254)) ([056cdab](https://togithub.com/snyk/snyk/commit/056cdab070102aec927db831090b5bb82df9d31e)) ##### Bug Fixes - **auth:** Autodetect IDE usage and fallback to API token based authentication ([#​5241](https://togithub.com/snyk/snyk/issues/5241)) ([4c795e0](https://togithub.com/snyk/snyk/commit/4c795e008e17386ac04466a45a9785e81258853b)) - **iac:** Upgrade iac custom rules to address Vulnerabilities[#5191](https://togithub.com/snyk/snyk/issues/5191)yk/snyk/issues/5191\)) ([453db24](https://togithub.com/snyk/snyk/commit/453db24fb3fa8e58e4a69920ba18045ecbd650a2)) - **language-server:** Caching problem when no vulnerabilities in the IDE ([#​5223](https://togithub.com/snyk/snyk/issues/5223)) ([89c9491](https://togithub.com/snyk/snyk/commit/89c949162edd89d0553b6e6cbb1c14c62379eae9)) - **language-server:** Remove incorrect /v1 path ([#​5214](https://togithub.com/snyk/snyk/issues/5214)) ([cf16470](https://togithub.com/snyk/snyk/commit/cf16470090b6f1db7fd7f7577a243e4d356d843f)) - **dependencies:** Update dependencies to reduce vulnerabilities ([#​5131](https://togithub.com/snyk/snyk/issues/5131)) ([4c7cb3c](https://togithub.com/snyk/snyk/commit/4c7cb3cd0931e0b8717425ac4857b116cee001ee)) - **sbom:** sbom test output padding ([e3b7cac](https://togithub.com/snyk/snyk/commit/e3b7cac1b3fc628407e1ba520302f3569684d115)) - **sbom:** Fix container purl generation for apt and rpm ([#​5207](https://togithub.com/snyk/snyk/issues/5207)) ([fa9d512](https://togithub.com/snyk/snyk/commit/fa9d512512203adcdc133ed988ac260543f8816a)) - **sbom:** Retain error code during SBOM generation ([#​5202](https://togithub.com/snyk/snyk/issues/5202)) ([5e98aaa](https://togithub.com/snyk/snyk/commit/5e98aaa6b14fe2d3622a3cc1ce76b655f43bb42c)) - **test:** support cyclic dependencies in maven with dverbose ([#​5208](https://togithub.com/snyk/snyk/issues/5208)) ([fb24c02](https://togithub.com/snyk/snyk/commit/fb24c024a8bee69ae59acf79adfac7866255b2b7)) - **test:** Add tool version and informationUri to sarif output ([#​5203](https://togithub.com/snyk/snyk/issues/5203)) ([b899fd3](https://togithub.com/snyk/snyk/commit/b899fd3af211e8b95656a08b9b0ecefc086ef5d5)) - **test:** fixing several .NET bugs ([#​5217](https://togithub.com/snyk/snyk/issues/5217)) ([c27d767](https://togithub.com/snyk/snyk/commit/c27d7671c1c9d20089f10663b71875e6bcf05481)) - **test:** fixing a bug causing .NET beta scanning to fail on older versions of .NET ([#​5228](https://togithub.com/snyk/snyk/issues/5228)) ([5fdecf7](https://togithub.com/snyk/snyk/commit/5fdecf72e6f370bd31baadce6d1e5273018798c1)) - **test:** .NET runtime resolution testing now supports projects targeting .NET Standard frameworks ([#​5169](https://togithub.com/snyk/snyk/issues/5169)) ([44d0861](https://togithub.com/snyk/snyk/commit/44d0861e41de81f847c6b57c74a67c5fc816e9df)) - **test:** fix issues of type 'Cannot find module ...' in snyk-docker-plugin ([#​5301](https://togithub.com/snyk/snyk/issues/5301)) ([88efd54](https://togithub.com/snyk/snyk/commit/88efd549956513fd3052de8af47da5d0a1bfb477)) - **monitor:** fix project name when using assets-project-name flag ([#​5077](https://togithub.com/snyk/snyk/issues/5077)) ([57dc718](https://togithub.com/snyk/snyk/commit/57dc7189eb6c353041b8526af3fe939b0526d996)) </details> <details> <summary>twpayne/chezmoi (twpayne/chezmoi)</summary> ### [`v2.49.1`](https://togithub.com/twpayne/chezmoi/releases/tag/v2.49.1) [Compare Source](https://togithub.com/twpayne/chezmoi/compare/v2.49.0...v2.49.1) #### Changelog ##### Fixes - [`af65574`](https://togithub.com/twpayne/chezmoi/commit/af655748d) fix: Accept line-endings template directive as well as line-ending </details> --- ### Configuration 📅 **Schedule**: Branch creation - "after 4pm on thursday" in timezone America/Los_Angeles, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://togithub.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Mend Renovate](https://www.mend.io/free-developer-tools/renovate/). View repository job log [here](https://developer.mend.io/github/scottames/dots). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy40MjAuMSIsInVwZGF0ZWRJblZlciI6IjM3LjQyMC4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=--> --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: scottames-github-bot[bot] <162828115+scottames-github-bot[bot]@users.noreply.github.com>
](https://renovatebot.com){kind=link}
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps google.golang.org/protobuf from 1.30.0 to 1.33.0.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)You can disable automated security fix PRs for this repo from the Security Alerts page.