Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(deps): update go dependencies (major) #663

Closed
wants to merge 1 commit into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Jul 10, 2021

WhiteSource Renovate

This PR contains the following updates:

Package Type Update Change
github.com/Masterminds/sprig require major v2.22.0+incompatible -> v3.2.2
github.com/bmatcuk/doublestar require major v1.3.4 -> v4.0.2
github.com/docker/docker require major v1.13.1 -> v20.10.7
github.com/mattn/go-sqlite3 require major v1.14.7 -> v2.0.6

Release Notes

Masterminds/sprig

v3.2.2

Compare Source

This release is here simply to satisfy the Go module system. The code is precisely the same as v3.2.1.

v3.2.1

Compare Source

This is a security release for Masterminds/goutils v1.1.1. See the Security Advisory.

Changelog

Release 3.2.1 (2021-02-04)

Changed

v3.2.0

Compare Source

Added
Changed
  • Removed testing and support for Go 1.12. ed25519 support requires Go 1.13 or newer
  • Using semver 3.1.1 and mergo 0.3.11
Fixed

NOTE: The dependency github.com/imdario/mergo reverted the breaking change in
0.3.9 via 0.3.10 release.

v3.1.0

Compare Source

NOTE: The dependency github.com/imdario/mergo made a behavior change in 0.3.9
that impacts sprig functionality. Do not use sprig with a version newer than 0.3.8.

Added
Changed
Fixed

v3.0.2

Compare Source

Fixed
  • #​220: Updating to semver v3.0.3 to fix issue with <= ranges
  • #​218: fix typo elyptical->elliptic in ecdsa key description (thanks @​laverya)

v3.0.1

Compare Source

Fixed

  • #​212: Updated semver fixing broken constraint checking with ^0.0

v3.0.0

Compare Source

Sprig v3 brings some changes while retaining the same Go API. This should enable projects to migrate to v3 with relative ease.

You might be wondering, why increment the major version if the Go API didn't break? The reason for that is some edge case behavior changed. Most importantly the use of ^ while handling major version 0 use cases with semver. To be cautious, the major version of sprig was incremented to limit the number of surprises.

Added
Changed
  • #​186: Moving dependency management to Go modules
  • #​186: Updated semver to v3. This has changes in the way ^ is handled
  • #​194: Updated documentation on merging and how it copies. Added example using deepCopy
  • #​196: trunc now supports negative values (thanks @​Dean-Coakley)
bmatcuk/doublestar

v4.0.2

Compare Source

Thanks @​micimize!

v4.0.1

Compare Source

Fixed some Windows bugs in v4.0.0.

v4.0.0

Compare Source

v4 is a complete rewrite with a focus on performance. Additionally, doublestar has been updated to use the new io/fs package for filesystem access. As a result, it is only supported by golang v1.16+. See README.md and UPGRADING.md for additional information.

v3.0.0

Compare Source

To match POSIX patterns, v3 of doublestar supports negating character classes with exclamation marks (ie, [!...]) in addition to carets ([^...]). This is a minor breaking change if any of your existing patterns happen to include an exclamation mark as the first character in a character class. To fix the issue, simply escape the exclamation mark (ie, [\!...]) or move it later in the character class (ie, `[...!...]').

v2.0.4

Compare Source

Thanks @​pavelbazika!

v2.0.3

Compare Source

This release reduces some of the allocations in Match and PathMatch, improving performance. I've also added benchmarks in the tests.

v2.0.2

Compare Source

A small change to close directories immediately, rather than deferring. Thanks @​luhring!

v2.0.1

Compare Source

If Readdir failed, doublestar was returning nil instead of the accumulated results. Thanks for the bug report @​InfiniteTF!

v2.0.0

Compare Source

doublestar only needs Readdir and the Closer interface for the type returned by OS.Open(). By changing the return type to this basic interface, it's even easier to abstract the calls to the filesystem for testing. This is an API change, though, necessitating a major version bump. Updating should be fairly easy. See: https://github.com/bmatcuk/doublestar/blob/master/UPGRADING.md

Thanks for the suggestion @​c4milo!

docker/docker

v20.10.7

Compare Source

20.10.7

Client
  • Suppress warnings for deprecated cgroups docker/cli#​3099.
  • Prevent sending SIGURG signals to container on Linux and macOS. The Go runtime
    (starting with Go 1.14) uses SIGURG signals internally as an interrupt to
    support preemptable syscalls. In situations where the Docker CLI was attached
    to a container, these interrupts were forwarded to the container. This fix
    changes the Docker CLI to ignore SIGURG signals docker/cli#​3107,
    moby/moby#​42421.
Builder
  • Update BuildKit to version v0.8.3-3-g244e8cde moby/moby#​42448:
    • Transform relative mountpoints for exec mounts in the executor to work around
      a breaking change in runc v1.0.0-rc94 and up. moby/buildkit#​2137.
    • Add retry on image push 5xx errors. moby/buildkit#​2043.
    • Fix build-cache not being invalidated when renaming a file that is copied using
      a COPY command with a wildcard. Note that this change invalidates
      existing build caches for copy commands that use a wildcard. moby/buildkit#​2018.
    • Fix build-cache not being invalidated when using mounts moby/buildkit#​2076.
  • Fix build failures when FROM image is not cached when using legacy schema 1 images moby/moby#​42382.
Logging
Rootless
  • Fix capabilities not being honored when an image was built on a daemon with
    user-namespaces enabled moby/moby#​42352.
Networking
  • Update libnetwork to fix publishing ports on environments with kernel boot
    parameter ipv6.disable=1, and to fix a deadlock causing internal DNS lookups
    to fail moby/moby#​42413.
Contrib
  • Update rootlesskit to v0.14.2 to fix a timeout when starting the userland proxy
    with the slirp4netns port driver moby/moby#​42294.
  • Fix "Device or resource busy" errors when running docker-in-docker on a rootless
    daemon moby/moby#​42342.
Packaging

v20.10.6

Compare Source

release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20106](https://togithub.com/docker/docker/issues/20106)

v20.10.5

Compare Source

release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20105](https://togithub.com/docker/docker/issues/20105)

20.10.5
Client

v20.10.4

Compare Source

release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20104](https://togithub.com/docker/docker/issues/20104)

20.10.4

Builder
  • Fix incorrect cache match for inline cache import with empty layers moby/moby#​42061
  • Update BuildKit to v0.8.2 moby/moby#​42061
    • resolver: avoid error caching on token fetch
    • fileop: fix checksum to contain indexes of inputs preventing certain cache misses
    • Fix reference count issues on typed errors with mount references (fixing invalid mutable ref errors)
    • git: set token only for main remote access allowing cloning submodules with different credentials
  • Ensure blobs get deleted in /var/lib/docker/buildkit/content/blobs/sha256 after pull. To clean up old state run builder prune moby/moby#​42065
  • Fix parallel pull synchronization regression moby/moby#​42049
  • Ensure libnetwork state files do not leak moby/moby#​41972
Client
Runtime
Logger
  • Honor labels-regex config even if labels is not set moby/moby#​42046
  • Handle long log messages correctly preventing awslogs in non-blocking mode to split events bigger than 16kB mobymoby#​41975
Rootless
Security
Swarm

v20.10.3

Compare Source

Release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20103](https://togithub.com/docker/docker/issues/20103)

20.10.3

Security
  • CVE-2021-21285 Prevent an invalid image from crashing docker daemon
  • CVE-2021-21284 Lock down file permissions to prevent remapped root from accessing docker state
  • Ensure AppArmor and SELinux profiles are applied when building with BuildKit
Client
  • Check contexts before importing them to reduce risk of extracted files escaping context store
  • Windows: prevent executing certain binaries from current directory docker/cli#​2950

v20.10.2

Compare Source

Release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20102](https://togithub.com/docker/docker/issues/20102)

v20.10.1

Compare Source

Release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20101](https://togithub.com/docker/docker/issues/20101)

v20.10.0

Compare Source

Release notes: https://docs.docker.com/engine/release-notes/[#&#8203;20100](https://togithub.com/docker/docker/issues/20100)

mattn/go-sqlite3

v2.0.6

Compare Source

v2.0.5

Compare Source

v2.0.4

Compare Source

v2.0.3

Compare Source

v2.0.2

Compare Source

v2.0.1

Compare Source

v1.14.8

Compare Source


Configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box.

This PR has been generated by WhiteSource Renovate. View repository job log here.

@renovate
Copy link
Author

renovate bot commented Jul 10, 2021

⚠ Artifact update problem

Renovate failed to update artifacts related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you check the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: apps/go.sum
Command failed: docker run --rm --name=renovate_go --label=renovate_child -v "/mnt/renovate/gh/nimona/go-nimona":"/mnt/renovate/gh/nimona/go-nimona" -v "/tmp/renovate-cache":"/tmp/renovate-cache" -v "/tmp/renovate-cache/others/go":"/tmp/renovate-cache/others/go" -e GOPATH -e GOFLAGS -e CGO_ENABLED -w "/mnt/renovate/gh/nimona/go-nimona/apps" docker.io/renovate/go:1.16.5 bash -l -c "git config --global url.\"https://**redacted**@github.com/\".insteadOf \"https://github.com/\" && go get -d ./... && go install github.com/marwan-at-work/mod/cmd/mod@latest && mod upgrade --mod-name=github.com/Masterminds/sprig -t=3 && go mod tidy && go mod tidy"
go: downloading github.com/charmbracelet/bubbletea v0.12.4
go: downloading github.com/charmbracelet/bubbles v0.7.6
go: downloading github.com/andybalholm/brotli v1.0.1
go: downloading github.com/geoah/go-hotwire v0.0.0-20210403142409-b24e1f385185
go: downloading github.com/go-chi/chi/v5 v5.0.2
go: downloading github.com/muesli/termenv v0.8.0
go: downloading github.com/mattn/go-runewidth v0.0.10
go: downloading golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1
nimona.io/apps/hub imports
	nimona.io/pkg/certificateutils: cannot find module providing package nimona.io/pkg/certificateutils
nimona.io/apps/hub imports
	nimona.io/pkg/chore: cannot find module providing package nimona.io/pkg/chore
nimona.io/apps/hub imports
	nimona.io/schema/relationship: cannot find module providing package nimona.io/schema/relationship
go: warning: github.com/andybalholm/[email protected]: retracted by module author: occasional panics and data corruption
go: to switch to the latest unretracted version, run:
	go get github.com/andybalholm/brotli@latest

File name: go.sum
Command failed: docker run --rm --name=renovate_go --label=renovate_child -v "/mnt/renovate/gh/nimona/go-nimona":"/mnt/renovate/gh/nimona/go-nimona" -v "/tmp/renovate-cache":"/tmp/renovate-cache" -v "/tmp/renovate-cache/others/go":"/tmp/renovate-cache/others/go" -e GOPATH -e GOFLAGS -e CGO_ENABLED -w "/mnt/renovate/gh/nimona/go-nimona" docker.io/renovate/go:1.16.5 bash -l -c "git config --global url.\"https://**redacted**@github.com/\".insteadOf \"https://github.com/\" && go get -d ./... && go install github.com/marwan-at-work/mod/cmd/mod@latest && mod upgrade --mod-name=github.com/bmatcuk/doublestar -t=3 && mod upgrade --mod-name=github.com/mattn/go-sqlite3 -t=3 && go mod tidy && go mod tidy"
go: github.com/mattn/go-sqlite3/[email protected]: go.mod has non-.../v2 module path "github.com/mattn/go-sqlite3" (and .../v2/go.mod does not exist) at revision v2.0.6

File name: internal/simulation/go.sum
Command failed: docker run --rm --name=renovate_go --label=renovate_child -v "/mnt/renovate/gh/nimona/go-nimona":"/mnt/renovate/gh/nimona/go-nimona" -v "/tmp/renovate-cache":"/tmp/renovate-cache" -v "/tmp/renovate-cache/others/go":"/tmp/renovate-cache/others/go" -e GOPATH -e GOFLAGS -e CGO_ENABLED -w "/mnt/renovate/gh/nimona/go-nimona/internal/simulation" docker.io/renovate/go:1.16.5 bash -l -c "git config --global url.\"https://**redacted**@github.com/\".insteadOf \"https://github.com/\" && go get -d ./... && go install github.com/marwan-at-work/mod/cmd/mod@latest && mod upgrade --mod-name=github.com/docker/docker -t=3 && go mod tidy && go mod tidy"
go: github.com/docker/docker/[email protected]: missing github.com/docker/docker/go.mod and .../v20/go.mod at revision v20.10.7

@renovate renovate bot force-pushed the renovate/major-go-dependencies branch from 106b79b to b9f8512 Compare July 10, 2021 21:38
@geoah geoah closed this Aug 1, 2021
@geoah geoah deleted the renovate/major-go-dependencies branch January 31, 2023 21:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants