Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix(deps): update osv-scanner minor #1204

Merged
merged 5 commits into from
Sep 11, 2024
Merged

fix(deps): update osv-scanner minor #1204

merged 5 commits into from
Sep 11, 2024

Conversation

renovate-bot
Copy link
Collaborator

@renovate-bot renovate-bot commented Aug 25, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence Type Update
github.com/charmbracelet/bubbles v0.19.0 -> v0.20.0 age adoption passing confidence require minor
golang.org/x/exp 778ce7b -> 701f63a age adoption passing confidence require digest
golang.org/x/mod v0.20.0 -> v0.21.0 age adoption passing confidence require minor
golang.org/x/net v0.28.0 -> v0.29.0 age adoption passing confidence require minor
golang.org/x/term v0.23.0 -> v0.24.0 age adoption passing confidence require minor
google.golang.org/grpc v1.65.0 -> v1.66.1 age adoption passing confidence require minor

Release Notes

charmbracelet/bubbles (github.com/charmbracelet/bubbles)

v0.20.0

Compare Source

Focus. Breathe.

This features support for Bubble Tea's new focus-blur feature as well as a quality-of-life update to paginator. Enjoy!

Focus

You heard that right. Focus-blur window events are now enabled for textinput and textarea which were recently added to Bubble Tea v1.1.0. As long as WithReportFocus is enabled in your Program you'll automatically get nicer inputs.

To enable focus reporting:

p := tea.NewProgram(model{}, tea.WithReportFocus())

Remember to stay focused and hydrated!

Paginator opts

Speaking of functional arguments, paginator also received some some new quality-of-life startup options, courtesy @​nervo.

p := paginator.New(
	paginator.WithPerPage(42),
	paginator.WithTotalPages(42),
)

Of course, you can still set the values on the model directly too:

p := paginator.New()
p.PerPage = 42
p.TotalPages = 24

Happy paging!

Changelog

New!
Deps

The Charm logo

Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, The Fediverse, or on Discord.

grpc/grpc-go (google.golang.org/grpc)

v1.66.1

Compare Source

v1.66.0: Release 1.66.0

Compare Source

New Features

Bug Fixes

  • grpc: Clients now return status code INTERNAL instead of UNIMPLEMENTED when the server uses an unsupported compressor. This is consistent with the gRPC compression spec. (#​7461)
  • transport: Fix a bug which could result in writes busy looping when the underlying conn.Write returns errors (#​7394)
  • client: fix race that could lead to orphaned connections and associated resources. (#​7390)
  • xds: use locality from the connected address for load reporting with pick_first (#​7378)
    • without this fix, if a priority contains multiple localities with pick_first, load was reported for the wrong locality
  • client: prevent hanging during ClientConn.Close() when the network is unreachable (#​7540)

Performance Improvements

  • transport: double buffering is avoided when using an http connect proxy and the target server waits for client to send the first message. (#​7424)
  • codec: Implement a new Codec which uses buffer recycling for encoded message (#​7356)

Configuration

📅 Schedule: Branch creation - "before 6am on monday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@forking-renovate forking-renovate bot added the dependencies Pull requests that update a dependency file label Aug 25, 2024
@codecov-commenter
Copy link

codecov-commenter commented Aug 25, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 67.81%. Comparing base (6f61445) to head (69c1f7b).

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1204      +/-   ##
==========================================
- Coverage   67.83%   67.81%   -0.02%     
==========================================
  Files         174      174              
  Lines       16769    16769              
==========================================
- Hits        11375    11372       -3     
- Misses       4765     4767       +2     
- Partials      629      630       +1

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@renovate-bot renovate-bot changed the title fix(deps): update golang.org/x/exp digest to 9b4947d fix(deps): update osv-scanner minor Aug 28, 2024
@forking-renovate Forking Renovate
Copy link

forking-renovate bot commented Aug 28, 2024
edited
Loading

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 3 additional dependencies were updated

Details:

Package Change
golang.org/x/sys v0.24.0 -> v0.25.0
google.golang.org/genproto/googleapis/api v0.0.0-20240528184218-531527333157 -> v0.0.0-20240604185151-ef581f913117
google.golang.org/genproto/googleapis/rpc v0.0.0-20240528184218-531527333157 -> v0.0.0-20240604185151-ef581f913117

@renovate-bot renovate-bot force-pushed the renovate/osv-scanner-minor branch 2 times, most recently from d621eee to 58b16ac Compare September 4, 2024 18:18
@forking-renovate Forking Renovate
Copy link

forking-renovate bot commented Sep 4, 2024
edited
Loading

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: go.sum
Command failed: go get -d -t ./...
go: module golang.org/x/exp@v0.0.0-20240909161429-701f63a606c0 requires go >= 1.22.0; switching to go1.22.7
go: downloading go1.22.7 (linux/amd64)
go: download go1.22.7: golang.org/toolchain@v0.0.1-go1.22.7.linux-amd64: verifying module: checksum database disabled by GOSUMDB=off

@renovate-bot renovate-bot force-pushed the renovate/osv-scanner-minor branch 4 times, most recently from 64bbb19 to 99a295f Compare September 9, 2024 03:42
@cuixq cuixq mentioned this pull request Sep 9, 2024
Merged
cuixq added a commit that referenced this pull request Sep 10, 2024
@cuixq
chore: update Go to version 1.22.7 (#1233)
07619c0 
A few Go vulnerabilities are reported so this PR updates Go to the fixed
version 1.22.7.

Also `golang.org/x/mod@v0.21.0` requires Go 1.22.0 as mentioned in
#1204.

Due to this version update, there are two new lint checks:
[copyloopvar](https://github.com/karamaru-alpha/copyloopvar) and
[intrange](https://github.com/ckaznocha/intrange).
@forking-renovate Forking Renovate
Copy link

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@cuixq cuixq merged commit 5402211 into google:main Sep 11, 2024
13 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cuixq cuixq cuixq approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@renovate-bot @codecov-commenter @cuixq