chore(deps): bump the dependencies group with 3 updates #1005
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the dependencies group with 3 updates: github.com/cheggaaa/pb/v3, github.com/go-git/go-git/v5 and github.com/sirupsen/logrus.
Updates
github.com/cheggaaa/pb/v3
from 3.1.2 to 3.1.4Commits
f7e7374
Merge pull request #210 from cheggaaa/fix-win-builde03c551
fix windows build0eed328
Merge pull request #208 from cheggaaa/pool-redraw-line39ed47a
pool: fill line with spaces1e17fcc
Merge pull request #203 from cheggaaa/dependabot/go_modules/v3/github.com/fat...9803a7c
Bump github.com/fatih/color from 1.14.1 to 1.15.0 in /v3229859f
Merge pull request #206 from cheggaaa/dependabot/go_modules/v3/github.com/mat...3e54b91
Bump github.com/mattn/go-isatty from 0.0.18 to 0.0.19 in /v3aa5c836
Merge pull request #205 from testwill/master7932cf5
Merge pull request #204 from cheggaaa/dependabot/go_modules/v3/github.com/mat...Updates
github.com/go-git/go-git/v5
from 5.8.1 to 5.9.0Release notes
Sourced from github.com/go-git/go-git/v5's releases.
Commits
e24e0f7
*: Bump go-billy to v5.5.0ff0bd08
Merge pull request #837 from pjbgf/bumpcbbeb49
*: Bump to Go 1.19cf3a75c
*: Bump dependencies51e9c9f
Merge pull request #835 from matejrisek/feature/do-not-swallow-vcs-host-errors5ad72db
plumbing: Do not swallow http message coming from VCS providers.0377d06
Merge pull request #821 from daolis/bug/resetfix753b0d5
git: worktree, reset ignored files that are part of the worktree: Fixes #819cd3a21c
Merge pull request #832 from svghadi/CVE-2023-37788f71a449
*: Bump goproxy dep. Fixes #826Updates
github.com/sirupsen/logrus
from 1.9.0 to 1.9.3Release notes
Sourced from github.com/sirupsen/logrus's releases.
Commits
d40e25c
fix panic in Writerf9291a5
Revert "Revert "Merge pull request #1376 from ozfive/master""352781d
Revert "Merge pull request #1376 from ozfive/master"b30aa27
Merge pull request #1339 from xieyuschen/patch-16acd903
Merge pull request #1376 from ozfive/master105e63f
Merge pull request #1 from ashmckenzie/ashmckenzie/fix-writer-scannerc052ba6
Scan text in 64KB chunkse59b167
Merge pull request #1372 from tommyblue/syslog_different_loglevels766cfec
This commit fixes a potential denial of service vulnerability in logrus.Write...70234da
Add instructions to use different log levels for local and syslogDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebase
will rebase this PR@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it@dependabot merge
will merge this PR after your CI passes on it@dependabot squash and merge
will squash and merge this PR after your CI passes on it@dependabot cancel merge
will cancel a previously requested merge and block automerging@dependabot reopen
will reopen this PR if it is closed@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions