Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump the go-mod-magefiles group in /magefiles with 2 updates #302

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 17, 2025

Bumps the go-mod-magefiles group in /magefiles with 2 updates: github.com/bufbuild/buf and github.com/golangci/golangci-lint.

Updates github.com/bufbuild/buf from 1.50.0 to 1.50.1

Release notes

Sourced from github.com/bufbuild/buf's releases.

v1.50.1

  • Security: Improved input validation to prevent unsafe command execution when running buf registry login. (Reported by Matt Austin)
Changelog

Sourced from github.com/bufbuild/buf's changelog.

[v1.50.1] - 2025-03-10

  • Minor fixes and dependency updates.
Commits

Updates github.com/golangci/golangci-lint from 1.64.6 to 1.64.7

Release notes

Sourced from github.com/golangci/golangci-lint's releases.

v1.64.7

golangci-lint is a free and open-source project built by volunteers.

If you value it, consider supporting us, the maintainers and linter authors.

We appreciate it! ❤️

For key updates, see the changelog.

Changelog

  • 94946f3c52a89774b2c7d255311c34f17f8fac7a build(deps): bump github.com/OpenPeeDeeP/depguard/v2 from 2.2.0 to 2.2.1 (#5509)
  • 132365e252c985a191c6eaea3f0cc01ca9120ccc build(deps): bump github.com/golangci/dupl from 3e9179ac440a to f665c8d69b32 (#5512)
  • bddd1bcedbc2f3d767e2362be91ff9eb481493cd build(deps): bump github.com/securego/gosec/v2 from 2.22.1 to 2.22.2 (#5515)
  • 624fb4e717dc89f1b55d6a84a69355fe64d60036 build(deps): bump golang.org/x/mod from 0.23.0 to 0.24.0 (#5507)
  • 8cffdb7d21e5b2b89f163f70c60ac9686c9d6180 build(deps): bump golang.org/x/oauth2 from 0.27.0 to 0.28.0 in /scripts/gen_github_action_config in the scripts group (#5521)
  • 7a3f3d7c941475ee01edca221c44ea5ba59290a3 build(deps): bump golang.org/x/tools from 0.30.0 to 0.31.0 (#5508)
  • c13fd5b7627c436246f36044a575990b5ec75c7d build(deps): bump honnef.co/go/tools from 0.6.0 to 0.6.1 (#5510)
Changelog

Sourced from github.com/golangci/golangci-lint's changelog.

v1.64.7

  1. Linters bug fixes
    • depguard: from 2.2.0 to 2.2.1
    • dupl: from 3e9179ac440a to f665c8d69b32
    • gosec: from 2.22.1 to 2.22.2
    • staticcheck: from 0.6.0 to 0.6.1
  2. Documentation
    • Add GitLab documentation
Commits
  • 8cffdb7 build(deps): bump golang.org/x/oauth2 from 0.27.0 to 0.28.0 in /scripts/gen_g...
  • bddd1bc build(deps): bump github.com/securego/gosec/v2 from 2.22.1 to 2.22.2 (#5515)
  • 132365e build(deps): bump github.com/golangci/dupl from 3e9179ac440a to f665c8d69b32 ...
  • c13fd5b build(deps): bump honnef.co/go/tools from 0.6.0 to 0.6.1 (#5510)
  • 94946f3 build(deps): bump github.com/OpenPeeDeeP/depguard/v2 from 2.2.0 to 2.2.1 (#5509)
  • 7a3f3d7 build(deps): bump golang.org/x/tools from 0.30.0 to 0.31.0 (#5508)
  • 624fb4e build(deps): bump golang.org/x/mod from 0.23.0 to 0.24.0 (#5507)
  • e1eb4cb dev: fix schema not accepting valid timeout (#5501)
  • abfa051 docs: fix logo url
  • 24797a7 docs: add sponsors section
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the area/dependencies Affects dependencies label Mar 17, 2025
Bumps the go-mod-magefiles group in /magefiles with 2 updates: [github.com/bufbuild/buf](https://github.com/bufbuild/buf) and [github.com/golangci/golangci-lint](https://github.com/golangci/golangci-lint).


Updates `github.com/bufbuild/buf` from 1.50.0 to 1.50.1
- [Release notes](https://github.com/bufbuild/buf/releases)
- [Changelog](https://github.com/bufbuild/buf/blob/main/CHANGELOG.md)
- [Commits](bufbuild/buf@v1.50.0...v1.50.1)

Updates `github.com/golangci/golangci-lint` from 1.64.6 to 1.64.7
- [Release notes](https://github.com/golangci/golangci-lint/releases)
- [Changelog](https://github.com/golangci/golangci-lint/blob/main/CHANGELOG.md)
- [Commits](golangci/golangci-lint@v1.64.6...v1.64.7)

---
updated-dependencies:
- dependency-name: github.com/bufbuild/buf
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-mod-magefiles
- dependency-name: github.com/golangci/golangci-lint
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-mod-magefiles
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner March 17, 2025 02:39
Copy link
Contributor

@tstirrat15 tstirrat15 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@tstirrat15 tstirrat15 added this pull request to the merge queue Mar 17, 2025
Merged via the queue into main with commit a2641d6 Mar 17, 2025
10 checks passed
@tstirrat15 tstirrat15 deleted the dependabot/go_modules/magefiles/go-mod-magefiles-e9b23bad79 branch March 17, 2025 13:15
@github-actions github-actions bot locked and limited conversation to collaborators Mar 17, 2025
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
area/dependencies Affects dependencies
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant