deps(docker): bump the docker group across 1 directory with 14 updates #6502

dependabot · 2025-01-13T14:02:30Z

Bumps the docker group with 14 updates in the / directory:

Package	From	To
alpine/terragrunt	`1.9.8`	`1.10.3`
terraform-linters/tflint	`v0.54.0`	`v0.55.0`
alpine/helm	`3.16.3`	`3.16.4`
golang	`1.23.3-alpine`	`1.23.4-alpine`
golangci/golangci-lint	`v1.62.0`	`v1.63.4`
goreleaser/goreleaser	`v2.4.8`	`v2.5.1`
hashicorp/terraform	`1.9.8`	`1.10.4`
mstruebing/editorconfig-checker	`v3.0.3`	`v3.1.2`
rhysd/actionlint	`1.7.4`	`1.7.6`
zricethezav/gitleaks	`v8.21.2`	`v8.22.1`
yoheimuta/protolint	`0.50.5`	`0.52.0`
dart	`3.5.4-sdk`	`3.6.1-sdk`
dotnet/sdk	`9.0.100-alpine3.20`	`9.0.101-alpine3.20`
composer/composer	`2.8.3`	`2.8.4`

Updates alpine/terragrunt from 1.9.8 to 1.10.3

Updates terraform-linters/tflint from v0.54.0 to v0.55.0

Release notes

Sourced from terraform-linters/tflint's releases.

v0.55.0

What's Changed

Breaking Changes

plugin: Drop support for plugin SDK v0.14/v0.15 by @wata727 in terraform-linters/tflint#2203

Plugins built with SDKs v0.14/v0.15 are no longer supported. If you get "SDK version is incompatible" error, you need to update the plugin to use SDK v0.16+.

Enhancements

Move recursive init output to debug when there are no changes by @pvickery-ParamountCommerce in terraform-linters/tflint#2150

Introduce plugin keyless verification by @wata727 in terraform-linters/tflint#2159

For third-party plugins that are not PGP signed and have uploaded artifact attestations, TFLint will now attempt to verify them via the Sigstore ecosystem.

Add support for Terraform v1.10 by @wata727 in terraform-linters/tflint#2178

cmd: Simplify recursive init outputs by @wata727 in terraform-linters/tflint#2204

Chores

build(deps): Bump goreleaser/goreleaser-action from 6.0.0 to 6.1.0 by @dependabot in terraform-linters/tflint#2165

build(deps): Bump actions/attest-build-provenance from 1.4.3 to 1.4.4 by @dependabot in terraform-linters/tflint#2166

build(deps): Bump golang.org/x/net from 0.30.0 to 0.31.0 by @dependabot in terraform-linters/tflint#2164

build(deps): Bump google.golang.org/grpc from 1.67.1 to 1.68.0 by @dependabot in terraform-linters/tflint#2160

build(deps): Bump golang.org/x/oauth2 from 0.23.0 to 0.24.0 by @dependabot in terraform-linters/tflint#2163

build(deps): Bump github.com/zclconf/go-cty from 1.15.0 to 1.15.1 by @dependabot in terraform-linters/tflint#2174

build(deps): Bump docker/build-push-action from 6.9.0 to 6.10.0 by @dependabot in terraform-linters/tflint#2173

build(deps): Bump mislav/bump-homebrew-formula-action from 3.1 to 3.2 by @dependabot in terraform-linters/tflint#2171

build(deps): Bump docker/metadata-action from 5.5.1 to 5.6.1 by @dependabot in terraform-linters/tflint#2170

build(deps): Bump github.com/hashicorp/hcl/v2 from 2.22.0 to 2.23.0 by @dependabot in terraform-linters/tflint#2168

build(deps): Bump github.com/theupdateframework/go-tuf/v2 from 2.0.0 to 2.0.1 by @dependabot in terraform-linters/tflint#2177

install: handle GitHub API JSON without newlines by @bendrucker in terraform-linters/tflint#2176

build(deps): Bump alpine from 3.20 to 3.21 by @dependabot in terraform-linters/tflint#2180

build(deps): Bump google.golang.org/grpc from 1.68.0 to 1.68.1 by @dependabot in terraform-linters/tflint#2181

build(deps): Bump actions/attest-build-provenance from 1.4.4 to 2.0.1 by @dependabot in terraform-linters/tflint#2185

build(deps): Bump golang.org/x/crypto from 0.29.0 to 0.30.0 by @dependabot in terraform-linters/tflint#2183

build(deps): Bump golang.org/x/net from 0.31.0 to 0.32.0 by @dependabot in terraform-linters/tflint#2184

build(deps): Bump alpine to 3.21 and golangci-lint to 1.62.2 by @chenrui333 in terraform-linters/tflint#2188

build(deps): Bump golang.org/x/crypto from 0.30.0 to 0.31.0 by @dependabot in terraform-linters/tflint#2189

build(deps): Bump actions/attest-build-provenance from 2.0.1 to 2.1.0 by @dependabot in terraform-linters/tflint#2190

build(deps): Bump docker/setup-buildx-action from 3.7.1 to 3.8.0 by @dependabot in terraform-linters/tflint#2191

build(deps): Bump google.golang.org/grpc from 1.68.1 to 1.69.0 by @dependabot in terraform-linters/tflint#2192

build(deps): Bump google.golang.org/grpc from 1.69.0 to 1.69.2 by @dependabot in terraform-linters/tflint#2196

build(deps): Bump golang.org/x/net from 0.32.0 to 0.33.0 by @dependabot in terraform-linters/tflint#2195

chore: fix typos by @chenrui333 in terraform-linters/tflint#2198

build(deps): Bump github.com/zclconf/go-cty from 1.15.1 to 1.16.0 by @dependabot in terraform-linters/tflint#2199

build(deps): Bump golang.org/x/crypto from 0.31.0 to 0.32.0 by @dependabot in terraform-linters/tflint#2200

build(deps): Bump golang.org/x/oauth2 from 0.24.0 to 0.25.0 by @dependabot in terraform-linters/tflint#2202

New Contributors

@pvickery-ParamountCommerce made their first contribution in terraform-linters/tflint#2150

Full Changelog: terraform-linters/tflint@v0.54.0...v0.55.0

Commits

241a807 Bump up version to v0.55.0
ced1af6 Simplify recursive init outputs (#2204)
7a23f6a Drop support for plugin SDK v0.14/v0.15 (#2203)
b638d2f Add support for Terraform v1.10 (#2178)
0686ef9 Merge pull request #2202 from terraform-linters/dependabot/go_modules/golang....
4f10097 Merge pull request #2200 from terraform-linters/dependabot/go_modules/golang....
98af99e Merge pull request #2199 from terraform-linters/dependabot/go_modules/github....
0046783 build(deps): Bump golang.org/x/oauth2 from 0.24.0 to 0.25.0
3e598f8 build(deps): Bump golang.org/x/crypto from 0.31.0 to 0.32.0
6b265e8 build(deps): Bump github.com/zclconf/go-cty from 1.15.1 to 1.16.0
Additional commits viewable in compare view

Updates alpine/helm from 3.16.3 to 3.16.4

Updates golang from 1.23.3-alpine to 1.23.4-alpine

Updates golangci/golangci-lint from v1.62.0 to v1.63.4

Updates goreleaser/goreleaser from v2.4.8 to v2.5.1

Updates hashicorp/terraform from 1.9.8 to 1.10.4

Updates mstruebing/editorconfig-checker from v3.0.3 to v3.1.2

Updates rhysd/actionlint from 1.7.4 to 1.7.6

Updates zricethezav/gitleaks from v8.21.2 to v8.22.1

Updates yoheimuta/protolint from 0.50.5 to 0.52.0

Updates dart from 3.5.4-sdk to 3.6.1-sdk

Updates dotnet/sdk from 9.0.100-alpine3.20 to 9.0.101-alpine3.20

Updates composer/composer from 2.8.3 to 2.8.4

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the docker group with 14 updates in the / directory: | Package | From | To | | --- | --- | --- | | alpine/terragrunt | `1.9.8` | `1.10.3` | | [terraform-linters/tflint](https://github.com/terraform-linters/tflint) | `v0.54.0` | `v0.55.0` | | alpine/helm | `3.16.3` | `3.16.4` | | golang | `1.23.3-alpine` | `1.23.4-alpine` | | golangci/golangci-lint | `v1.62.0` | `v1.63.4` | | goreleaser/goreleaser | `v2.4.8` | `v2.5.1` | | hashicorp/terraform | `1.9.8` | `1.10.4` | | mstruebing/editorconfig-checker | `v3.0.3` | `v3.1.2` | | rhysd/actionlint | `1.7.4` | `1.7.6` | | zricethezav/gitleaks | `v8.21.2` | `v8.22.1` | | yoheimuta/protolint | `0.50.5` | `0.52.0` | | dart | `3.5.4-sdk` | `3.6.1-sdk` | | dotnet/sdk | `9.0.100-alpine3.20` | `9.0.101-alpine3.20` | | composer/composer | `2.8.3` | `2.8.4` | Updates `alpine/terragrunt` from 1.9.8 to 1.10.3 Updates `terraform-linters/tflint` from v0.54.0 to v0.55.0 - [Release notes](https://github.com/terraform-linters/tflint/releases) - [Changelog](https://github.com/terraform-linters/tflint/blob/master/CHANGELOG.md) - [Commits](terraform-linters/tflint@v0.54.0...v0.55.0) Updates `alpine/helm` from 3.16.3 to 3.16.4 Updates `golang` from 1.23.3-alpine to 1.23.4-alpine Updates `golangci/golangci-lint` from v1.62.0 to v1.63.4 Updates `goreleaser/goreleaser` from v2.4.8 to v2.5.1 Updates `hashicorp/terraform` from 1.9.8 to 1.10.4 Updates `mstruebing/editorconfig-checker` from v3.0.3 to v3.1.2 Updates `rhysd/actionlint` from 1.7.4 to 1.7.6 Updates `zricethezav/gitleaks` from v8.21.2 to v8.22.1 Updates `yoheimuta/protolint` from 0.50.5 to 0.52.0 Updates `dart` from 3.5.4-sdk to 3.6.1-sdk Updates `dotnet/sdk` from 9.0.100-alpine3.20 to 9.0.101-alpine3.20 Updates `composer/composer` from 2.8.3 to 2.8.4 --- updated-dependencies: - dependency-name: alpine/terragrunt dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker - dependency-name: terraform-linters/tflint dependency-type: direct:production dependency-group: docker - dependency-name: alpine/helm dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker - dependency-name: golang dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker - dependency-name: golangci/golangci-lint dependency-type: direct:production dependency-group: docker - dependency-name: goreleaser/goreleaser dependency-type: direct:production dependency-group: docker - dependency-name: hashicorp/terraform dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker - dependency-name: mstruebing/editorconfig-checker dependency-type: direct:production dependency-group: docker - dependency-name: rhysd/actionlint dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker - dependency-name: zricethezav/gitleaks dependency-type: direct:production dependency-group: docker - dependency-name: yoheimuta/protolint dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker - dependency-name: dart dependency-type: direct:production update-type: version-update:semver-minor dependency-group: docker - dependency-name: dotnet/sdk dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker - dependency-name: composer/composer dependency-type: direct:production update-type: version-update:semver-patch dependency-group: docker ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot requested review from zkoppert, Hanse00 and ferrarimarco as code owners January 13, 2025 14:02

dependabot bot added dependencies Pull requests that update a dependency file docker Pull requests that update Docker code labels Jan 13, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

deps(docker): bump the docker group across 1 directory with 14 updates #6502

deps(docker): bump the docker group across 1 directory with 14 updates #6502

dependabot bot commented on behalf of github Jan 13, 2025

deps(docker): bump the docker group across 1 directory with 14 updates #6502

Are you sure you want to change the base?

deps(docker): bump the docker group across 1 directory with 14 updates #6502

Conversation

dependabot bot commented on behalf of github Jan 13, 2025

v0.55.0

What's Changed

Breaking Changes

Enhancements

Chores

New Contributors