Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
build(deps): bump honnef.co/go/tools from 0.4.5 to 0.4.6 in /tools (#140
) Bumps [honnef.co/go/tools](https://github.com/dominikh/go-tools) from 0.4.5 to 0.4.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/dominikh/go-tools/releases">honnef.co/go/tools's releases</a>.</em></p> <blockquote> <h2>Staticcheck 2023.1.6 (v0.4.6)</h2> <p>This release fixes the following bugs:</p> <ul> <li>A crash when using the upcoming Go 1.22 (<a href="https://staticcheck.io/issues/1442">issue 1442</a>)</li> <li>A false positive in <a href="https://staticcheck.io/docs/checks/#SA9005">SA9005</a> when embedding basic types (<a href="https://staticcheck.io/issues/1443">issue 1443</a>)</li> </ul> <h2>Staticcheck 2023.1.5 (v0.4.5)</h2> <p>This release fixes the following bug:</p> <ul> <li>A crash involving methods named <code>_</code></li> </ul> <h2>Staticcheck 2023.1.4 (v0.4.4)</h2> <p>This release adds support for <strong>Go 1.21</strong> and fixes the following bugs:</p> <ul> <li>Three crashes when encountering unnecessarily parenthesized statements (<a href="https://redirect.github.com/dominikh/go-tools/issues/1393">#1393</a>, <a href="https://redirect.github.com/dominikh/go-tools/issues/1400">#1400</a>)</li> <li>Unnecessarily high memory usage when analyzing composite literals such as <code>[]int{1<<31: 1}</code> (<a href="https://redirect.github.com/dominikh/go-tools/issues/1393">#1393</a>)</li> <li>A false positive in <a href="https://staticcheck.dev/docs/checks/#S1011">S1011</a> when appending to a dynamic left-hand side (<a href="https://redirect.github.com/dominikh/go-tools/issues/1399">#1399</a>)</li> <li>A crash involving generics (<a href="https://redirect.github.com/dominikh/go-tools/issues/1410">#1410</a>)</li> <li>A false positive in <a href="https://staticcheck.dev/docs/checks/#SA9001">SA9001</a> involving control flow statements (<a href="https://redirect.github.com/dominikh/go-tools/issues/488">#488</a>)</li> <li>A false positive in <a href="https://staticcheck.dev/docs/checks/#ST1003">ST1003</a>, complaining about the names of fuzz functions (<a href="https://redirect.github.com/dominikh/go-tools/issues/1420">#1420</a>)</li> </ul> <h2>Staticcheck 2023.1.3 (v0.4.3)</h2> <p>This release fixes the following bugs:</p> <ul> <li>A crash when embedding type aliases of unnamed types (<a href="https://staticcheck.io/issues/1361">issue 1361</a>)</li> <li>A false positive in U1000, claiming that type aliases are unused (<a href="https://staticcheck.io/issues/1365">issue 1365</a>)</li> <li>A bug in the binary formatter that prevented correct merging behavior for some checks (<a href="https://staticcheck.io/issues/1372">issue 1372</a>)</li> </ul> <h2>Staticcheck 2023.1.2 (v0.4.2)</h2> <p>This release fixes a bug that prevented the <code>binary</code> formatter from working (<a href="https://staticcheck.io/issues/1370">issue 1370</a>).</p> <h2>Staticcheck 2023.1.1 (v0.4.1)</h2> <p>This release fixes a crash, a false positive in U1000 (<a href="https://staticcheck.io/issues/1360">issue 1360</a>) and improves the way deprecated API is flagged (<a href="https://staticcheck.io/issues/1318">issue 1318</a>).</p> <p>When targeting a Go version that is older than the version that deprecated an API, <a href="https://staticcheck.io/docs/checks/#SA1019">SA1019</a> will no longer flag the use even if there is already an alternative available in the targeted Go version.</p> <p>For example, <code>math/rand.Seed</code> has been deprecated in Go 1.20, but an alternative has existed since Go 1.0. In the past, we would flag uses of <code>Seed</code> even if targeting e.g. Go 1.19, to encourage better forwards compatibility. This can lead to unnecessary churn, however, because the correct change may depend on the Go version in use. For example, for <code>Seed</code> before Go 1.20, the alternative is to use a separate instance of <code>math/rand.Rand</code>, whereas in Go 1.20, a possible alternative is to simply drop the call to <code>Seed</code>.</p> <h2>Staticcheck 2023.1 (v0.4.0)</h2> <p>Staticcheck 2023.1 adds support for Go 1.20, brings minor improvements to various checks, and replaces U1000 with a new implementation.</p> <p>The following checks have been improved:</p> <ul> <li>The wording of <a href="https://staticcheck.io/docs/checks/#S1001">S1001</a> has been made clearer for cases involving arrays. Furthermore, it no longer suggests using copy when the function has been shadowed.</li> <li><a href="https://staticcheck.io/docs/checks/#S1011">S1011</a> now recognizes index-based loops (<a href="https://staticcheck.io/issues/881">issue 881</a>).</li> <li><a href="https://staticcheck.io/docs/checks/#SA1019">SA1019</a> no longer flags tests (internal or external) that use deprecated API from the package under test (<a href="https://staticcheck.io/issues/1285">issue 1285</a>). Furthermore, entire declaration groups (such as groups of constants) can now be marked as deprecated (<a href="https://staticcheck.io/issues/1313">issue 1313</a>).</li> <li><a href="https://staticcheck.io/docs/checks/#SA4017">SA4017</a> now detects more functions, including those in the time package (<a href="https://staticcheck.io/issues/1353">issue 1353</a>). Additionally, its wording has been made clearer.</li> <li><a href="https://staticcheck.io/docs/checks/#SA5010">SA5010</a> no longer gets confused by type assertions involving generic types (<a href="https://staticcheck.io/issues/1354">issue 1354</a>).</li> <li><a href="https://staticcheck.io/docs/checks/#ST1005">ST1005</a> no longer flags errors that start with alpha-numeric acronyms such as P384.</li> <li>Improvements to our intermediate representation may allow various checks to find more problems.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/dominikh/go-tools/commit/f57fec247eddf41c04774af84b91e41dd78a3173"><code>f57fec2</code></a> Version 2023.1.6 (v0.4.6)</li> <li><a href="https://github.com/dominikh/go-tools/commit/a36643ede2e4d962c7058dbfc5cf6cd515a949dc"><code>a36643e</code></a> website: go mod tidy</li> <li><a href="https://github.com/dominikh/go-tools/commit/fd8f26e997b26625c4534646694e05f059585be2"><code>fd8f26e</code></a> website: add 2023.1.6 release notes</li> <li><a href="https://github.com/dominikh/go-tools/commit/7e20d40c0d159831c6973a7fae83567be9c2bbdf"><code>7e20d40</code></a> go/types/typeutil: when flattening, don't ignore embedded types that aren't s...</li> <li><a href="https://github.com/dominikh/go-tools/commit/0aaa8fab6437e87b113f67501b21057291729012"><code>0aaa8fa</code></a> Update dependency on golang.org/x/tools</li> <li>See full diff in <a href="https://github.com/dominikh/go-tools/compare/v0.4.5...v0.4.6">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=honnef.co/go/tools&package-manager=go_modules&previous-version=0.4.5&new-version=0.4.6)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
- Loading branch information