Skip to content
This repository has been archived by the owner on Apr 3, 2024. It is now read-only.

Bump github.com/temporalio/ui-server/v2 from 2.7.0 to 2.7.1 #152

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 14, 2022

Bumps github.com/temporalio/ui-server/v2 from 2.7.0 to 2.7.1.

Release notes

Sourced from github.com/temporalio/ui-server/v2's releases.

v2.7.1

Changes

Bump docker base image versions to address security issues: CVE-2022-35252 CVE-2022-2097 CVE-2022-32205 CVE-2022-32206 CVE-2022-32208 CVE-2022-29458 CVE-2022-27780 CVE-2022-27781 CVE-2022-27782 CVE-2022-37434 CVE-2022-32207

Changelog:

  • 2022-10-12 - 0a91a9c3 - Bump base image versions (#238)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/temporalio/ui-server/v2](https://github.com/temporalio/ui-server) from 2.7.0 to 2.7.1.
- [Release notes](https://github.com/temporalio/ui-server/releases)
- [Commits](temporalio/ui-server@v2.7.0...v2.7.1)

---
updated-dependencies:
- dependency-name: github.com/temporalio/ui-server/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Oct 14, 2022
@codecov-commenter
Copy link

Codecov Report

Merging #152 (8febf1a) into main (faebcf9) will increase coverage by 0.10%.
The diff coverage is n/a.

@@            Coverage Diff             @@
##             main     #152      +/-   ##
==========================================
+ Coverage   63.67%   63.77%   +0.10%     
==========================================
  Files          13       13              
  Lines         969      969              
==========================================
+ Hits          617      618       +1     
+ Misses        313      312       -1     
  Partials       39       39              
Impacted Files Coverage Δ
cmd/temporalite/main.go 68.79% <0.00%> (-0.38%) ⬇️
temporaltest/logger.go 86.66% <0.00%> (+13.33%) ⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

@jlegrone jlegrone merged commit 61fc4f3 into main Oct 20, 2022
@jlegrone jlegrone deleted the dependabot/go_modules/github.com/temporalio/ui-server/v2-2.7.1 branch October 20, 2022 04:05
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants