Skip to content
This repository has been archived by the owner on Oct 10, 2023. It is now read-only.

Bump github.com/vmware-tanzu/carvel-vendir from 0.26.0 to 0.33.1 in /addons #4494

Open
wants to merge 1 commit into
base: release-0.29
Choose a base branch
from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 17, 2023

Bumps github.com/vmware-tanzu/carvel-vendir from 0.26.0 to 0.33.1.

Release notes

Sourced from github.com/vmware-tanzu/carvel-vendir's releases.

v0.33.1

What's Changed

  • Bump imgpkg to version 0.36.0 (#224)
  • Fix parsing empty yaml documents (#228)
  • Bump go version and dependencies

Full Changelog: carvel-dev/vendir@v0.32.0...v0.33.1

🔈 Callouts

Thanks to

📂 Files Checksum

6c9ed811fe9983e03424f2ecfc00a4aaeb19646ef27c42eb2a6c643ea07bd32b  ./vendir-linux-amd64
155b6ff8c251b53dfd7e9554ff657b5bf626659dc288012a124a8bdb9186851e  ./vendir-darwin-amd64
35e37893eceb625a46c412651b2ca3818aea0fd994cc449fb976c741ccc1e9e9  ./vendir-darwin-arm64
b46151fb5c9e9ef43e3db599aa559fc2fc36ddeb978eb195ff77790fa2932aae  ./vendir-windows-amd64.exe
79e026faaa1ac75c36414a97ee7e58b4bf9c148b1ce34aee795c667b71745519  ./vendir-linux-arm64

v0.32.5

What's Changed

  • Revert bump of imgpkg to version 0.33.1 (#224)

Full Changelog: carvel-dev/vendir@v0.32.4...v0.32.5

📂 Files Checksum

0d8a45d2d85647ce932e1d630d49668e96552140ad33c6adad5f589bb800bb8a  ./vendir-linux-amd64
33c9654e6e5e865f45f411bf45ea12e28590fdcb43961f758b6d3b28be4c1caf  ./vendir-darwin-amd64
ccc34a3ca00eaf8965e8e5ba5b9e249399d218f10452cf70981afcfecdb158b5  ./vendir-darwin-arm64
d1110177cbd7bd715d3513f0fb89efa3ab1eba44d300fb2ac18c1fe0dd6e8e19  ./vendir-windows-amd64.exe
f05b9f453702f6f50cad66aecef4156b10f48c3b595cbad82c5940c155ec57a4  ./vendir-linux-arm64

v0.32.4

What's Changed

  • Change org and repository name (#213)
  • Enable imgpkg keychains when environment variable is provided (#210)
  • Bump go version to 1.19.5 for CVE fixes

Full Changelog: carvel-dev/vendir@v0.32.2...v0.32.4

📂 Files Checksum

... (truncated)

Commits
  • 99f8a36 Merge pull request #237 from carvel-dev/change-org-and-repo-in-develop
  • 0dd2222 Change org and repo name
  • 4d0c8fb Merge pull request #236 from carvel-dev/bump-go-version-1.19.6
  • c85d3ee Reverting go 1.20 to go 1.19
  • c9b34e0 Merge pull request #235 from carvel-dev/bump-go-version-1.20.1
  • 1b22135 Fixing golangci-lint error: rand.Seed has been deprecated since Go 1.20
  • 0e70cfd Bumping golang ci lint version to 0.51.2 as 49.0 doesn't support go 1.20
  • 29364e5 Bump go version to 1.20.1
  • 85962f9 bump imgpkg to 0.36.0 (#233)
  • e3e6725 Merge pull request #231 from carvel-dev/dependabot/go_modules/golang.org/x/ne...
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested review from a team as code owners March 17, 2023 16:55
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 17, 2023
@dependabot dependabot bot force-pushed the dependabot/go_modules/addons/github.com/vmware-tanzu/carvel-vendir-0.33.1 branch from c1ea690 to a1dd19f Compare March 17, 2023 17:28
@codecov
Copy link

codecov bot commented Mar 17, 2023

Codecov Report

Merging #4494 (a1dd19f) into main (8c695d7) will decrease coverage by 1.01%.
The diff coverage is n/a.

❗ Current head a1dd19f differs from pull request most recent head d2ea242. Consider uploading reports for the commit d2ea242 to get more accurate results

@@            Coverage Diff             @@
##             main    #4494      +/-   ##
==========================================
- Coverage   49.84%   48.83%   -1.01%     
==========================================
  Files         453      482      +29     
  Lines       45395    47275    +1880     
==========================================
+ Hits        22625    23089     +464     
- Misses      20620    22004    +1384     
- Partials     2150     2182      +32     

see 49 files with indirect coverage changes

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

Bumps [github.com/vmware-tanzu/carvel-vendir](https://github.com/vmware-tanzu/carvel-vendir) from 0.26.0 to 0.33.1.
- [Release notes](https://github.com/vmware-tanzu/carvel-vendir/releases)
- [Changelog](https://github.com/carvel-dev/vendir/blob/develop/.goreleaser.yml)
- [Commits](carvel-dev/vendir@v0.26.0...v0.33.1)

---
updated-dependencies:
- dependency-name: github.com/vmware-tanzu/carvel-vendir
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/addons/github.com/vmware-tanzu/carvel-vendir-0.33.1 branch from a1dd19f to d2ea242 Compare March 28, 2023 20:05
@dependabot dependabot bot changed the base branch from main to release-0.29 April 10, 2023 13:15
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
cla-not-required dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant