Skip to content

Bump the go-deps group across 1 directory with 3 updates #924

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the go-deps group across 1 directory with 3 updates #924

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 12, 2025
edited
Loading

Bumps the go-deps group with 3 updates in the / directory: github.com/ProtonMail/go-crypto, github.com/fluxcd/pkg/apis/meta and github.com/google/go-containerregistry.

Updates github.com/ProtonMail/go-crypto from 1.2.0 to 1.3.0

Release notes

Sourced from github.com/ProtonMail/go-crypto's releases.

Release v1.3.0

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.2.0...v1.3.0

Release v1.3.0-proton

This release is v1.3.0 with support for the following non-standardized features:

Commits
  • 3b22d85 Merge pull request #286 from ProtonMail/feat/v1-api-enforce-signature-hashes
  • a9af95c feat(v1): Only allow acceptable hashes when writing signatures
  • 3c60603 Merge pull request #285 from ProtonMail/feat/decompression-size-limit
  • d664700 feat: Allow to set a decompressed size limit
  • e1ea40e Merge pull request #281 from ProtonMail/fix/clearsign-check-hash
  • 9cd4c3a feat(clearsign): Write complete legacy hash header
  • 244eb1c fix(clearsign): Enforce acceptable hash functions in clearsign
  • a994e32 Merge pull request #284 from ProtonMail/feat/less-restrictive-key-signature
  • 8fe0e95 feat(v2): Tolerate invalid key signatures if one passes
  • See full diff in compare view

Updates github.com/fluxcd/pkg/apis/meta from 1.12.0 to 1.13.0

Commits
  • 246bc82 Merge pull request #942 from fluxcd/force-annotation
  • 86ef319 Introduce reconcile.fluxcd.io/forceAt annotation
  • 9be33b3 Merge pull request #941 from fluxcd/crypto-v0.39.0
  • 8957219 Update golang.org/x/crypto to v0.39.0
  • 406c48d Merge pull request #940 from fluxcd/release-git-pkgs
  • 2298005 Release git/v0.32.0 and git/gogit/v0.34.0
  • 47a1b23 Merge pull request #938 from fluxcd/public-ecr
  • a0d4442 Fix support for public.ecr.aws
  • 53c7b2d Merge pull request #939 from kane8n/update-go-git
  • 77f008c update go-git
  • Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.3 to 0.20.5

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.20.5

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.20.3...v0.20.5

v0.20.4 - Not usable as a go module

🚨 This release was published to the Go module proxy and then re-tagged with a different commit. This means it's not usable as a Go module (google/go-containerregistry#2107) -- please us v0.20.5 instead.

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.20.3...v0.20.4

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added the dependencies Pull requests that update a dependency label Jun 12, 2025
@dependabot
Bump the go-deps group across 1 directory with 3 updates
1350059 
Bumps the go-deps group with 3 updates in the / directory: [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto), [github.com/fluxcd/pkg/apis/meta](https://github.com/fluxcd/pkg) and [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry).


Updates `github.com/ProtonMail/go-crypto` from 1.2.0 to 1.3.0
- [Release notes](https://github.com/ProtonMail/go-crypto/releases)
- [Commits](ProtonMail/go-crypto@v1.2.0...v1.3.0)

Updates `github.com/fluxcd/pkg/apis/meta` from 1.12.0 to 1.13.0
- [Commits](fluxcd/pkg@apis/meta/v1.12.0...apis/meta/v1.13.0)

Updates `github.com/google/go-containerregistry` from 0.20.3 to 0.20.5
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](google/go-containerregistry@v0.20.3...v0.20.5)

---
updated-dependencies:
- dependency-name: github.com/ProtonMail/go-crypto
  dependency-version: 1.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: github.com/fluxcd/pkg/apis/meta
  dependency-version: 1.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: github.com/google/go-containerregistry
  dependency-version: 0.20.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-deps-79fb6cfa28 branch from 5c4a850 to 1350059 Compare June 13, 2025 16:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants