3cf227e8af
fix: address outdated dependencies for go-git CVE upgrade ( #3440 )
2025-04-11 13:24:05 -04:00
ad1896a680
chore(deps): bump golang.org/x/net from 0.25.0 to 0.26.0 ( #3190 )
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.25.0 to 0.26.0.
- [Commits](https://github.com/golang/net/compare/v0.25.0...v0.26.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-06-10 11:14:21 -07:00
5c56bdf634
chore(deps): bump golang.org/x/net from 0.22.0 to 0.24.0 ( #3113 )
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.22.0 to 0.24.0.
- [Commits](https://github.com/golang/net/compare/v0.22.0...v0.24.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-04-19 10:33:55 -07:00
fcc3a3ef94
chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 ( #2915 )
...
Bumps [golang.org/x/crypto](https://github.com/golang/crypto ) from 0.16.0 to 0.17.0.
- [Commits](https://github.com/golang/crypto/compare/v0.16.0...v0.17.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/crypto
dependency-type: indirect
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-19 08:33:23 -08:00
b77b858a62
chore(deps): bump github.com/spf13/afero from 1.10.0 to 1.11.0 ( #2891 )
...
Bumps [github.com/spf13/afero](https://github.com/spf13/afero ) from 1.10.0 to 1.11.0.
- [Release notes](https://github.com/spf13/afero/releases )
- [Commits](https://github.com/spf13/afero/compare/v1.10.0...v1.11.0 )
---
updated-dependencies:
- dependency-name: github.com/spf13/afero
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-12-04 10:05:01 -05:00
e983eb66d7
chore(deps): bump golang.org/x/net from 0.17.0 to 0.18.0 ( #2859 )
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.17.0 to 0.18.0.
- [Commits](https://github.com/golang/net/compare/v0.17.0...v0.18.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-11-19 19:28:50 -08:00
bda9700863
chore(deps): bump golang.org/x/oauth2 from 0.12.0 to 0.13.0 ( #2781 )
...
Bumps [golang.org/x/oauth2](https://github.com/golang/oauth2 ) from 0.12.0 to 0.13.0.
- [Commits](https://github.com/golang/oauth2/compare/v0.12.0...v0.13.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/oauth2
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-10-09 07:14:31 -07:00
7e905499af
chore(deps): bump golang.org/x/net from 0.12.0 to 0.14.0 ( #2663 )
...
Bumps [golang.org/x/net](https://github.com/golang/net ) from 0.12.0 to 0.14.0.
- [Commits](https://github.com/golang/net/compare/v0.12.0...v0.14.0 )
---
updated-dependencies:
- dependency-name: golang.org/x/net
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-08-08 11:14:27 -07:00
4edf751d43
chore(deps): bump github.com/go-git/go-git/v5 from 5.4.2 to 5.7.0 ( #2528 )
...
Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git ) from 5.4.2 to 5.7.0.
- [Release notes](https://github.com/go-git/go-git/releases )
- [Commits](https://github.com/go-git/go-git/compare/v5.4.2...v5.7.0 )
---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-05-29 16:28:53 -07:00
0cbb7664de
fix(executor): make pax tar builds reproducible again ( #2384 )
...
In v1.8.0 (commit 7410007
2023-03-21 18:08:29 -04:00
6bbd8a331c
Bump deps ( #1885 )
...
```
* use go 1.17 semantics in go.mod
* pin tonistiigi/fsutil dep to match docker/docker's dep
go get -u ./...
go mod vendor
```
2022-01-21 13:59:16 -05:00
7b51aec5d9
upgrade go container registry to latest master
2020-03-18 15:00:49 -07:00
03b8922ede
Upgrade dependency to go-containerregistry third-party library
...
By doing so it will fix issues met when mixing source/remote registry
Close #808
2020-01-26 18:55:52 +01:00
6b020a1f97
fix highwayhash
2019-12-21 12:18:09 -08:00
8acca11a16
Added go-git
2018-09-03 14:03:12 +05:30
JeromeJu
dependabot[bot]
Joël Pepper
Jason Hall
Tejal Desai
Ben Einaudi
Kartik Verma