main
125 Commits
| Author | SHA1 | Message | Date | |
|---|---|---|---|---|
dependabot[bot]
|
de602565c0 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.28.4 to 1.28.5 (#223)
Some checks failed
Release Drafter / update_release_draft (push) Has been cancelled
test code / golang (1.22.x, macos-latest) (push) Has been cancelled
test code / golang (1.22.x, ubuntu-latest) (push) Has been cancelled
test code / golang (1.23.x, macos-latest) (push) Has been cancelled
test code / golang (1.23.x, ubuntu-latest) (push) Has been cancelled
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.28.4 to 1.28.5. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
dea2686365 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.28.3 to 1.28.4 (#221)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.28.3 to 1.28.4. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
32e3d1b480 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.28.2 to 1.28.3 (#219)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.28.2 to 1.28.3. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f6db6f56a1 |
feat(deps): bump google.golang.org/api from 0.204.0 to 0.205.0 (#217)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.204.0 to 0.205.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/googleapis/google-api-go-client/releases">google.golang.org/api's releases</a>.</em></p> <blockquote> <h2>v0.205.0</h2> <h2><a href="https://github.com/googleapis/google-api-go-client/compare/v0.204.0...v0.205.0">0.205.0</a> (2024-11-06)</h2> <h3>Features</h3> <ul> <li><strong>all:</strong> Auto-regenerate discovery clients (<a href="https://redirect.github.com/googleapis/google-api-go-client/issues/2852">#2852</a>) (<a href=" |
||
|
dependabot[bot]
|
6727d529ed |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.28.1 to 1.28.2 (#218)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.28.1 to 1.28.2. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
f7f8802e6c |
feat(deps): bump github.com/containerd/containerd/v2 from 2.0.0-rc.6 to 2.0.0 (#216)
Bumps [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) from 2.0.0-rc.6 to 2.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/containerd/containerd/releases">github.com/containerd/containerd/v2's releases</a>.</em></p> <blockquote> <h2>containerd 2.0.0</h2> <p>Welcome to the v2.0.0 release of containerd!</p> <p>The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases.</p> <p>See <a href="https://github.com/containerd/containerd/blob/main/docs/containerd-2.0.md">containerd 2.0</a> documentation for details on what is new and has changed in this release.</p> <h3>Highlights</h3> <ul> <li>Allow sections of Plugins to be merged, and not overwritten as entire sections. (<a href="https://redirect.github.com/containerd/containerd/pull/9982">#9982</a>)</li> <li>Add Update API for sandbox controller (<a href="https://redirect.github.com/containerd/containerd/pull/9903">#9903</a>)</li> <li>Configure otel from env instead of config.toml (<a href="https://redirect.github.com/containerd/containerd/pull/8970">#8970</a>)</li> <li>Enable NRI by default (<a href="https://redirect.github.com/containerd/containerd/pull/9744">#9744</a>)</li> <li>Add PluginInfo to introspection API (<a href="https://redirect.github.com/containerd/containerd/pull/9442">#9442</a>)</li> <li>Remove overlayfs volatile option on temp mounts (<a href="https://redirect.github.com/containerd/containerd/pull/9555">#9555</a>)</li> <li>Expose usage of deprecated features (<a href="https://redirect.github.com/containerd/containerd/pull/9258">#9258</a>)</li> <li>Use Intel ISA-L's igzip if available (<a href="https://redirect.github.com/containerd/containerd/pull/9200">#9200</a>)</li> <li>Introduce top level config migration (<a href="https://redirect.github.com/containerd/containerd/pull/9223">#9223</a>)</li> <li>Add image delete target (<a href="https://redirect.github.com/containerd/containerd/pull/8989">#8989</a>)</li> <li>Remove <code>LimitNOFILE</code> from <code>containerd.service</code> (<a href="https://redirect.github.com/containerd/containerd/pull/8924">#8924</a>)</li> <li>Add support for image expiration during garbage collection (<a href="https://redirect.github.com/containerd/containerd/pull/9022">#9022</a>)</li> <li>Reduce the contention between ref lock and boltdb lock in content store (<a href="https://redirect.github.com/containerd/containerd/pull/8792">#8792</a>)</li> <li>Remove "containerd.io/restart.logpath" label (<a href="https://redirect.github.com/containerd/containerd/pull/8264">#8264</a>)</li> <li>Remove <code>aufs</code> snapshotter (<a href="https://redirect.github.com/containerd/containerd/pull/8263">#8263</a>)</li> <li>Fix deadlock during NRI plugin registration (<a href="https://redirect.github.com/containerd/nri/pull/79">containerd/nri#79</a>)</li> <li>Support arm64/v9 and minor variants (<a href="https://redirect.github.com/containerd/platforms/pull/8">containerd/platforms#8</a>)</li> <li>Fix deadlock when writing to pipe blocks (<a href="https://redirect.github.com/containerd/ttrpc/pull/168">containerd/ttrpc#168</a>)</li> </ul> <h4>Build and Release Toolchain</h4> <ul> <li>Generate attestation for artifacts during release (<a href="https://redirect.github.com/containerd/containerd/pull/10543">#10543</a>)</li> <li>Remove <code>cri-containerd-*.tar.gz</code> release bundles (<a href="https://redirect.github.com/containerd/containerd/pull/9096">#9096</a>)</li> </ul> <h4>Container Runtime Interface (CRI)</h4> <ul> <li>Use 'UserSpecifiedImage' from CRI to set the image-name annotation (<a href="https://redirect.github.com/containerd/containerd/pull/10747">#10747</a>)</li> <li>Fine-grained SupplementalGroups control (<a href="https://redirect.github.com/containerd/containerd/pull/9737">#9737</a>)</li> <li>Add support to set loopback to up (<a href="https://redirect.github.com/containerd/containerd/pull/10238">#10238</a>)</li> <li>KEP-3857: Recursive Read-only (RRO) mounts (<a href="https://redirect.github.com/containerd/containerd/pull/9787">#9787</a>)</li> <li>Add support for multiple subscribers to CRI container events (<a href="https://redirect.github.com/containerd/containerd/pull/9661">#9661</a>)</li> <li>Enable CDI by default (<a href="https://redirect.github.com/containerd/containerd/pull/9621">#9621</a>)</li> <li>Remove non-sandboxed CRI implementation (<a href="https://redirect.github.com/containerd/containerd/pull/9228">#9228</a>)</li> <li>Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) (<a href="https://redirect.github.com/containerd/containerd/pull/8287">#8287</a>)</li> <li>Use sandboxed CRI by default (<a href="https://redirect.github.com/containerd/containerd/pull/8994">#8994</a>)</li> <li>Implement RuntimeConfig CRI call (<a href="https://redirect.github.com/containerd/containerd/pull/8722">#8722</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/containerd/containerd/blob/main/RELEASES.md">github.com/containerd/containerd/v2's changelog</a>.</em></p> <blockquote> <h1>Versioning and Release</h1> <p>This document details the versioning and release plan for containerd. Stability is a top goal for this project, and we hope that this document and the processes it entails will help to achieve that. It covers the release process, versioning numbering, backporting, API stability and support horizons.</p> <p>If you rely on containerd, it would be good to spend time understanding the areas of the API that are and are not supported and how they impact your project in the future.</p> <p>This document will be considered a living document. Supported timelines, backport targets and API stability guarantees will be updated here as they change.</p> <p>If there is something that you require or this document leaves out, please reach out by <a href="https://github.com/containerd/containerd/issues">filing an issue</a>.</p> <h2>Releases</h2> <p>Releases of containerd will be versioned using dotted triples, similar to <a href="http://semver.org/">Semantic Version</a>. For the purposes of this document, we will refer to the respective components of this triple as <code><major>.<minor>.<patch></code>. The version number may have additional information, such as alpha, beta and release candidate qualifications. Such releases will be considered "pre-releases".</p> <h3>Major and Minor Releases</h3> <p>Major and minor releases of containerd will be made from main. Releases of containerd will be marked with GPG signed tags and announced at <a href="https://github.com/containerd/containerd/releases">https://github.com/containerd/containerd/releases</a>. The tag will be of the format <code>v<major>.<minor>.<patch></code> and should be made with the command <code>git tag -s v<major>.<minor>.<patch></code>.</p> <p>After a minor release, a branch will be created, with the format <code>release/<major>.<minor></code> from the minor tag. All further patch releases will be done from that branch. For example, once we release <code>v1.0.0</code>, a branch <code>release/1.0</code> will be created from that tag. All future patch releases will be done against that branch.</p> <h3>Pre-releases</h3> <p>Pre-releases, such as alphas, betas and release candidates will be conducted from their source branch. For major and minor releases, these releases will be done from main. For patch releases, these pre-releases should be done within the corresponding release branch.</p> <p>While pre-releases are done to assist in the stabilization process, no guarantees are provided.</p> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
1fd228fb5c |
feat(deps): bump github.com/open-policy-agent/opa from 0.69.0 to 0.70.0 (#215)
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.69.0 to 0.70.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/open-policy-agent/opa/releases">github.com/open-policy-agent/opa's releases</a>.</em></p> <blockquote> <h2>v0.70.0</h2> <p>This release contains a mix of features, performance improvements, and bugfixes.</p> <h3>Optimized read mode for OPA's in-memory store (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7125">#7125</a>)</h3> <p>A new optimized read mode has been added to the default in-memory store, where data written to the store is eagerly converted to AST values (the data format used during evaluation). This removes the time spent converting raw data values to AST during policy evaluation, thereby improving performance.</p> <p>The memory footprint of the store will increase, as processed AST values generally take up more space in memory than the corresponding raw data values, but overall memory usage of OPA might remain more stable over time, as pre-converted data is shared across evaluations and isn't recomputed for each evaluation, which can cause spikes in memory usage.</p> <p>This mode can be enabled for <code>opa run</code>, <code>opa eval</code>, and <code>opa bench</code> by setting the <code>--optimize-store-for-read-speed</code> flag.</p> <p>More information about this feature can be found <a href="https://www.openpolicyagent.org/docs/v0.70.0/policy-performance/#storage-optimization">here</a>.</p> <p>Co-authored by <a href="https://github.com/johanfylling"><code>@johanfylling</code></a> and <a href="https://github.com/ashutosh-narkar"><code>@ashutosh-narkar</code></a>.</p> <h3>Topdown and Rego</h3> <ul> <li>topdown: Use new Inter-Query Value Cache for <code>json.match_schema</code> built-in function (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7011">#7011</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a> reported by <a href="https://github.com/lcarva"><code>@lcarva</code></a></li> <li>ast: Fix location text attribute for multi-value rules with generated body (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7128">#7128</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a></li> <li>ast: Fix regression in <code>opa check</code> where a file that referenced non-provided schemas failed validation (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7124">#7124</a>) authored by <a href="https://github.com/tjons"><code>@tjons</code></a></li> <li>test/cases/testdata: Fix bug in test by replacing unification by explicit equality check (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7093">#7093</a>) authored by <a href="https://github.com/matajoh"><code>@matajoh</code></a></li> <li>ast: Replace use of yaml.v2 library with yaml.v3. The earlier version would parse <code>yes</code>/<code>no</code> values as boolean. The usage of yaml.v2 in the parser was unintentional and now has been updated to yaml.v3 (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7090">#7090</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a></li> </ul> <h3>Runtime, Tooling, SDK</h3> <ul> <li>cmd: Make <code>opa check</code> respect <code>--ignore</code> when <code>--bundle</code> flag is set (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7136">#7136</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a></li> <li>server/writer: Properly handle result encoding errors which earlier on failure would emit logs such as <code>superfluous call to WriteHeader()</code> while still returning <code>200</code> HTTP status code. Now, errors encoding the payload properly lead to <code>500</code> HTTP status code, without extra logs. Also use Header().Set() not Header().Add() to avoid duplicate content-type headers (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7114">#7114</a>) authored by <a href="https://github.com/srenatus"><code>@srenatus</code></a></li> <li>cmd: Support <code>file://</code> format for TLS key material file flags in <code>opa run</code> (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7094">#7094</a>) authored by <a href="https://github.com/alexrohozneanu"><code>@alexrohozneanu</code></a></li> <li>plugins/rest/azure: Support managed identity for App Service / Container Apps (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7085">#7085</a>) reported and authored by <a href="https://github.com/apc-kamezaki"><code>@apc-kamezaki</code></a></li> <li>debug: Fix step-over behaviour when exiting partial rules (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7096">#7096</a>) authored by <a href="https://github.com/johanfylling"><code>@johanfylling</code></a></li> <li>util+plugins: Fix potential memory leaks with explicit timer cancellation (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7089">#7089</a>) authored by <a href="https://github.com/philipaconrad"><code>@philipaconrad</code></a></li> </ul> <h3>Docs, Website, Ecosystem</h3> <ul> <li>docs: Fix OCI example with updated flag used by the ORAS CLI (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7130">#7130</a>) authored by <a href="https://github.com/b3n3d17"><code>@b3n3d17</code></a></li> <li>docs: Delete Atom editor from supported editor integrations (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7111">#7111</a>) authored by <a href="https://github.com/KaranbirSingh7"><code>@KaranbirSingh7</code></a></li> <li>docs/website: Add Styra OPA ASP.NET Core SDK integration (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7073">#7073</a>) authored by <a href="https://github.com/philipaconrad"><code>@philipaconrad</code></a></li> <li>docs/website: Update compatibility information on the rego-cpp integration (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7078">#7078</a>) authored by <a href="https://github.com/matajoh"><code>@matajoh</code></a></li> </ul> <h3>Miscellaneous</h3> <ul> <li>Dependency updates; notably: <ul> <li>build(deps): bump github.com/containerd/containerd from 1.7.22 to 1.7.23</li> <li>build(deps): bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5</li> <li>build(deps): bump golang.org/x/net from 0.29.0 to 0.30.0</li> <li>build(deps): bump golang.org/x/time from 0.6.0 to 0.7.0</li> <li>build(deps): bump google.golang.org/grpc from 1.67.0 to 1.67.1</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md">github.com/open-policy-agent/opa's changelog</a>.</em></p> <blockquote> <h2>0.70.0</h2> <p>This release contains a mix of features, performance improvements, and bugfixes.</p> <h3>Optimized read mode for OPA's in-memory store (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7125">#7125</a>)</h3> <p>A new optimized read mode has been added to the default in-memory store, where data written to the store is eagerly converted to AST values (the data format used during evaluation). This removes the time spent converting raw data values to AST during policy evaluation, thereby improving performance.</p> <p>The memory footprint of the store will increase, as processed AST values generally take up more space in memory than the corresponding raw data values, but overall memory usage of OPA might remain more stable over time, as pre-converted data is shared across evaluations and isn't recomputed for each evaluation, which can cause spikes in memory usage.</p> <p>This mode can be enabled for <code>opa run</code>, <code>opa eval</code>, and <code>opa bench</code> by setting the <code>--optimize-store-for-read-speed</code> flag.</p> <p>More information about this feature can be found <a href="https://www.openpolicyagent.org/docs/v0.70.0/policy-performance/#storage-optimization">here</a>.</p> <p>Co-authored by <a href="https://github.com/johanfylling"><code>@johanfylling</code></a> and <a href="https://github.com/ashutosh-narkar"><code>@ashutosh-narkar</code></a>.</p> <h3>Topdown and Rego</h3> <ul> <li>topdown: Use new Inter-Query Value Cache for <code>json.match_schema</code> built-in function (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7011">#7011</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a> reported by <a href="https://github.com/lcarva"><code>@lcarva</code></a></li> <li>ast: Fix location text attribute for multi-value rules with generated body (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7128">#7128</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a></li> <li>ast: Fix regression in <code>opa check</code> where a file that referenced non-provided schemas failed validation (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7124">#7124</a>) authored by <a href="https://github.com/tjons"><code>@tjons</code></a></li> <li>test/cases/testdata: Fix bug in test by replacing unification by explicit equality check (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7093">#7093</a>) authored by <a href="https://github.com/matajoh"><code>@matajoh</code></a></li> <li>ast: Replace use of yaml.v2 library with yaml.v3. The earlier version would parse <code>yes</code>/<code>no</code> values as boolean. The usage of yaml.v2 in the parser was unintentional and now has been updated to yaml.v3 (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7090">#7090</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a></li> </ul> <h3>Runtime, Tooling, SDK</h3> <ul> <li>cmd: Make <code>opa check</code> respect <code>--ignore</code> when <code>--bundle</code> flag is set (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7136">#7136</a>) authored by <a href="https://github.com/anderseknert"><code>@anderseknert</code></a></li> <li>server/writer: Properly handle result encoding errors which earlier on failure would emit logs such as <code>superfluous call to WriteHeader()</code> while still returning <code>200</code> HTTP status code. Now, errors encoding the payload properly lead to <code>500</code> HTTP status code, without extra logs. Also use Header().Set() not Header().Add() to avoid duplicate content-type headers (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7114">#7114</a>) authored by <a href="https://github.com/srenatus"><code>@srenatus</code></a></li> <li>cmd: Support <code>file://</code> format for TLS key material file flags in <code>opa run</code> (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7094">#7094</a>) authored by <a href="https://github.com/alexrohozneanu"><code>@alexrohozneanu</code></a></li> <li>plugins/rest/azure: Support managed identity for App Service / Container Apps (<a href="https://redirect.github.com/open-policy-agent/opa/issues/7085">#7085</a>) reported and authored by <a href="https://github.com/apc-kamezaki"><code>@apc-kamezaki</code></a></li> <li>debug: Fix step-over behaviour when exiting partial rules (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7096">#7096</a>) authored by <a href="https://github.com/johanfylling"><code>@johanfylling</code></a></li> <li>util+plugins: Fix potential memory leaks with explicit timer cancellation (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7089">#7089</a>) authored by <a href="https://github.com/philipaconrad"><code>@philipaconrad</code></a></li> </ul> <h3>Docs, Website, Ecosystem</h3> <ul> <li>docs: Fix OCI example with updated flag used by the ORAS CLI (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7130">#7130</a>) authored by <a href="https://github.com/b3n3d17"><code>@b3n3d17</code></a></li> <li>docs: Delete Atom editor from supported editor integrations (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7111">#7111</a>) authored by <a href="https://github.com/KaranbirSingh7"><code>@KaranbirSingh7</code></a></li> <li>docs/website: Add Styra OPA ASP.NET Core SDK integration (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7073">#7073</a>) authored by <a href="https://github.com/philipaconrad"><code>@philipaconrad</code></a></li> <li>docs/website: Update compatibility information on the rego-cpp integration (<a href="https://redirect.github.com/open-policy-agent/opa/pull/7078">#7078</a>) authored by <a href="https://github.com/matajoh"><code>@matajoh</code></a></li> </ul> <h3>Miscellaneous</h3> <ul> <li>Dependency updates; notably: <ul> <li>build(deps): bump github.com/containerd/containerd from 1.7.22 to 1.7.23</li> <li>build(deps): bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5</li> <li>build(deps): bump golang.org/x/net from 0.29.0 to 0.30.0</li> <li>build(deps): bump golang.org/x/time from 0.6.0 to 0.7.0</li> <li>build(deps): bump google.golang.org/grpc from 1.67.0 to 1.67.1</li> </ul> </li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
d481832f61 |
feat(deps): bump google.golang.org/api from 0.203.0 to 0.204.0 (#214)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.203.0 to 0.204.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/googleapis/google-api-go-client/releases">google.golang.org/api's releases</a>.</em></p> <blockquote> <h2>v0.204.0</h2> <h2><a href="https://github.com/googleapis/google-api-go-client/compare/v0.203.0...v0.204.0">0.204.0</a> (2024-10-31)</h2> <h3>Features</h3> <ul> <li><strong>all:</strong> Auto-regenerate discovery clients (<a href="https://redirect.github.com/googleapis/google-api-go-client/issues/2837">#2837</a>) (<a href=" |
||
|
dependabot[bot]
|
dbac7405c7 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.28.0 to 1.28.1 (#213)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.28.0 to 1.28.1. <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
868e44228e |
feat(deps): bump github.com/containerd/containerd/v2 from 2.0.0-rc.5 to 2.0.0-rc.6 (#212)
Bumps [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) from 2.0.0-rc.5 to 2.0.0-rc.6. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/containerd/containerd/releases">github.com/containerd/containerd/v2's releases</a>.</em></p> <blockquote> <h2>containerd 2.0.0-rc.6</h2> <p>Welcome to the v2.0.0-rc.6 release of containerd! <em>This is a pre-release of containerd</em></p> <p>The first major release of containerd 2.x focuses on the continued stability of containerd's core feature set with an easy upgrade from containerd 1.x. This release includes the stabilization of new features added in the last 1.x release as well as the removal of features which were deprecated in 1.x. The goal is to support the vast community of containerd users well into the future along with their ever increasing deployment footprints and variety of use cases.</p> <h3>Highlights</h3> <ul> <li>Allow sections of Plugins to be merged, and not overwritten as entire sections. (<a href="https://redirect.github.com/containerd/containerd/pull/9982">#9982</a>)</li> <li>Add Update API for sandbox controller (<a href="https://redirect.github.com/containerd/containerd/pull/9903">#9903</a>)</li> <li>Configure otel from env instead of config.toml (<a href="https://redirect.github.com/containerd/containerd/pull/8970">#8970</a>)</li> <li>Enable NRI by default (<a href="https://redirect.github.com/containerd/containerd/pull/9744">#9744</a>)</li> <li>Add PluginInfo to introspection API (<a href="https://redirect.github.com/containerd/containerd/pull/9442">#9442</a>)</li> <li>Remove overlayfs volatile option on temp mounts (<a href="https://redirect.github.com/containerd/containerd/pull/9555">#9555</a>)</li> <li>Expose usage of deprecated features (<a href="https://redirect.github.com/containerd/containerd/pull/9258">#9258</a>)</li> <li>Use Intel ISA-L's igzip if available (<a href="https://redirect.github.com/containerd/containerd/pull/9200">#9200</a>)</li> <li>Introduce top level config migration (<a href="https://redirect.github.com/containerd/containerd/pull/9223">#9223</a>)</li> <li>Add image delete target (<a href="https://redirect.github.com/containerd/containerd/pull/8989">#8989</a>)</li> <li>Remove <code>LimitNOFILE</code> from <code>containerd.service</code> (<a href="https://redirect.github.com/containerd/containerd/pull/8924">#8924</a>)</li> <li>Add support for image expiration during garbage collection (<a href="https://redirect.github.com/containerd/containerd/pull/9022">#9022</a>)</li> <li>Reduce the contention between ref lock and boltdb lock in content store (<a href="https://redirect.github.com/containerd/containerd/pull/8792">#8792</a>)</li> <li>Remove "containerd.io/restart.logpath" label (<a href="https://redirect.github.com/containerd/containerd/pull/8264">#8264</a>)</li> <li>Remove <code>aufs</code> snapshotter (<a href="https://redirect.github.com/containerd/containerd/pull/8263">#8263</a>)</li> <li>Fix deadlock during NRI plugin registration (<a href="https://redirect.github.com/containerd/nri/pull/79">containerd/nri#79</a>)</li> <li>Fix deadlock when writing to pipe blocks (<a href="https://redirect.github.com/containerd/ttrpc/pull/168">containerd/ttrpc#168</a>)</li> </ul> <h4>Build and Release Toolchain</h4> <ul> <li>Generate attestation for artifacts during release (<a href="https://redirect.github.com/containerd/containerd/pull/10543">#10543</a>)</li> <li>Remove <code>cri-containerd-*.tar.gz</code> release bundles (<a href="https://redirect.github.com/containerd/containerd/pull/9096">#9096</a>)</li> </ul> <h4>Container Runtime Interface (CRI)</h4> <ul> <li>Use 'UserSpecifiedImage' from CRI to set the image-name annotation (<a href="https://redirect.github.com/containerd/containerd/pull/10747">#10747</a>)</li> <li>Fine-grained SupplementalGroups control (<a href="https://redirect.github.com/containerd/containerd/pull/9737">#9737</a>)</li> <li>Add support to set loopback to up (<a href="https://redirect.github.com/containerd/containerd/pull/10238">#10238</a>)</li> <li>Add support for multiple subscribers to CRI container events (<a href="https://redirect.github.com/containerd/containerd/pull/9661">#9661</a>)</li> <li>Enable CDI by default (<a href="https://redirect.github.com/containerd/containerd/pull/9621">#9621</a>)</li> <li>Remove non-sandboxed CRI implementation (<a href="https://redirect.github.com/containerd/containerd/pull/9228">#9228</a>)</li> <li>Add support for userns in stateless and stateful pods with idmap mounts (KEP-127, k8s >= 1.27) (<a href="https://redirect.github.com/containerd/containerd/pull/8287">#8287</a>)</li> <li>Use sandboxed CRI by default (<a href="https://redirect.github.com/containerd/containerd/pull/8994">#8994</a>)</li> <li>Implement RuntimeConfig CRI call (<a href="https://redirect.github.com/containerd/containerd/pull/8722">#8722</a>)</li> <li>Add support for user namespaces (KEP-127) (<a href="https://redirect.github.com/containerd/containerd/pull/8803">#8803</a>)</li> <li>Remove CRI v1alpha2 (<a href="https://redirect.github.com/containerd/containerd/pull/8276">#8276</a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href=" |
||
|
dependabot[bot]
|
31d303ff9c |
feat(deps): bump google.golang.org/api from 0.202.0 to 0.203.0 (#211)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.202.0 to 0.203.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/googleapis/google-api-go-client/releases">google.golang.org/api's releases</a>.</em></p> <blockquote> <h2>v0.203.0</h2> <h2><a href="https://github.com/googleapis/google-api-go-client/compare/v0.202.0...v0.203.0">0.203.0</a> (2024-10-23)</h2> <h3>Features</h3> <ul> <li><strong>all:</strong> Auto-regenerate discovery clients (<a href="https://redirect.github.com/googleapis/google-api-go-client/issues/2834">#2834</a>) (<a href=" |
||
|
dependabot[bot]
|
b0d6219e34 |
feat(deps): bump google.golang.org/api from 0.201.0 to 0.202.0 (#210)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.201.0 to 0.202.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.201.0...v0.202.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
Jonny Stoten
|
b4a9283ec3 | Update go git (#209) | ||
|
Jonny Stoten
|
a078fba81d |
feat: add internal reproducible git checksum builtin (#203)
Adds a new rego builtin `attest.internals.reproducible_git_checksum`. This is needed for verifying DOI provenance, see https://github.com/docker/doi-image-policy/blob/main/slsa.md#doi-build-reproducible-git-checksum. We use https://github.com/go-git/go-git for as much of this as possible, but it doesn't support the actual archive operation, so we shell out to `git` for that. There is some similar unexported code in bashbrew, and we should probably be using the same code in the build process as we are here. I'll create a follow-up ticket to sort that out. |
||
|
Joel Kamp
|
47669993c6 | Merge branch 'main' into dependabot/go_modules/github.com/sigstore/sigstore/pkg/signature/kms/aws-1.8.10 | ||
|
dependabot[bot]
|
0e1005d0f7 |
feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/aws](https://github.com/sigstore/sigstore) from 1.8.9 to 1.8.10. - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](https://github.com/sigstore/sigstore/compare/v1.8.9...v1.8.10) --- updated-dependencies: - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/aws dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
94f69c75d2 |
feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/gcp
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore) from 1.8.9 to 1.8.10. - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](https://github.com/sigstore/sigstore/compare/v1.8.9...v1.8.10) --- updated-dependencies: - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
James Carnegie
|
273b61ebd6 | Merge branch 'main' into dependabot/go_modules/github.com/sigstore/sigstore-1.8.10 | ||
|
dependabot[bot]
|
eda0b23910 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config (#202)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.43 to 1.28.0. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.43...v1.28.0) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
James Carnegie
|
16f65fefeb | Merge branch 'main' into dependabot/go_modules/github.com/sigstore/sigstore-1.8.10 | ||
|
dependabot[bot]
|
e39a4ea9f3 |
feat(deps): bump google.golang.org/api from 0.200.0 to 0.201.0 (#197)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.200.0 to 0.201.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.200.0...v0.201.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
2e4f8f79bd |
feat(deps): bump github.com/sigstore/sigstore from 1.8.9 to 1.8.10
Bumps [github.com/sigstore/sigstore](https://github.com/sigstore/sigstore) from 1.8.9 to 1.8.10. - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](https://github.com/sigstore/sigstore/compare/v1.8.9...v1.8.10) --- updated-dependencies: - dependency-name: github.com/sigstore/sigstore dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
168a574c15 |
feat(deps): bump github.com/sigstore/cosign/v2 from 2.4.0 to 2.4.1
Bumps [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) from 2.4.0 to 2.4.1. - [Release notes](https://github.com/sigstore/cosign/releases) - [Changelog](https://github.com/sigstore/cosign/blob/main/CHANGELOG.md) - [Commits](https://github.com/sigstore/cosign/compare/v2.4.0...v2.4.1) --- updated-dependencies: - dependency-name: github.com/sigstore/cosign/v2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
8460357880 |
feat(deps): bump google.golang.org/api from 0.199.0 to 0.200.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.199.0 to 0.200.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.199.0...v0.200.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
Joel Kamp
|
994240018e |
Merge pull request #187 from docker/dependabot/go_modules/github.com/containerd/containerd/v2-2.0.0-rc.5
feat(deps): bump github.com/containerd/containerd/v2 from 2.0.0-rc.4 to 2.0.0-rc.5 |
||
|
Joel Kamp
|
8ae43ba5e9 | Merge branch 'main' into dependabot/go_modules/github.com/containerd/containerd/v2-2.0.0-rc.5 | ||
|
dependabot[bot]
|
ec659e62cd |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.39 to 1.27.43. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.39...config/v1.27.43) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
bf33de5b48 |
feat(deps): bump github.com/theupdateframework/go-tuf/v2 (#186)
Bumps [github.com/theupdateframework/go-tuf/v2](https://github.com/theupdateframework/go-tuf) from 2.0.1 to 2.0.2. - [Release notes](https://github.com/theupdateframework/go-tuf/releases) - [Changelog](https://github.com/theupdateframework/go-tuf/blob/master/.goreleaser.yaml) - [Commits](https://github.com/theupdateframework/go-tuf/compare/v2.0.1...v2.0.2) --- updated-dependencies: - dependency-name: github.com/theupdateframework/go-tuf/v2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
b8ca85152d |
feat(deps): bump github.com/containerd/containerd/v2
Bumps [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) from 2.0.0-rc.4 to 2.0.0-rc.5. - [Release notes](https://github.com/containerd/containerd/releases) - [Changelog](https://github.com/containerd/containerd/blob/main/RELEASES.md) - [Commits](https://github.com/containerd/containerd/compare/v2.0.0-rc.4...v2.0.0-rc.5) --- updated-dependencies: - dependency-name: github.com/containerd/containerd/v2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
Joel Kamp
|
fcf98ebc3f | Merge branch 'main' into dependabot/go_modules/github.com/aws/aws-sdk-go-v2/config-1.27.39 | ||
|
Joel Kamp
|
f2f13933df | Merge branch 'main' into dependabot/go_modules/github.com/open-policy-agent/opa-0.69.0 | ||
|
dependabot[bot]
|
ac04e8a9ea |
feat(deps): bump github.com/open-policy-agent/opa from 0.68.0 to 0.69.0
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.68.0 to 0.69.0. - [Release notes](https://github.com/open-policy-agent/opa/releases) - [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-policy-agent/opa/compare/v0.68.0...v0.69.0) --- updated-dependencies: - dependency-name: github.com/open-policy-agent/opa dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
e3927acf17 |
feat(deps): bump github.com/theupdateframework/go-tuf/v2
Bumps [github.com/theupdateframework/go-tuf/v2](https://github.com/theupdateframework/go-tuf) from 2.0.0 to 2.0.1. - [Release notes](https://github.com/theupdateframework/go-tuf/releases) - [Changelog](https://github.com/theupdateframework/go-tuf/blob/master/.goreleaser.yaml) - [Commits](https://github.com/theupdateframework/go-tuf/compare/v2.0.0...v2.0.1) --- updated-dependencies: - dependency-name: github.com/theupdateframework/go-tuf/v2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
251506fd9b |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.38 to 1.27.39. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.38...config/v1.27.39) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
5e16b97e02 |
feat(deps): bump google.golang.org/api from 0.198.0 to 0.199.0 (#181)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.198.0 to 0.199.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.198.0...v0.199.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
0ff28b2deb |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config (#180)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.35 to 1.27.38. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.35...config/v1.27.38) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
Jonny Stoten
|
4ca962b70c |
Add function for parsing DOI definition files (#172)
Add a Rego builtin called `attest.internals.parse_library_definition` for parsing the DOI definition files in https://github.com/docker-library/official-images/tree/master/library. This will allow us to verify DOI provenance fields against these files which are the source of truth for DOI images. This function just defers to https://github.com/docker-library/bashbrew/blob/master/manifest/rfc2822.go. |
||
|
dependabot[bot]
|
02b8063d71 |
feat(deps): bump google.golang.org/api from 0.197.0 to 0.198.0 (#175)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.197.0 to 0.198.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.197.0...v0.198.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
mrjoelkamp
|
fd4e741a1f | feat: support containerd subject annotations | ||
|
dependabot[bot]
|
be7a17f214 |
feat(deps): bump github.com/sigstore/sigstore from 1.8.8 to 1.8.9 (#169)
Bumps [github.com/sigstore/sigstore](https://github.com/sigstore/sigstore) from 1.8.8 to 1.8.9. - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](https://github.com/sigstore/sigstore/compare/v1.8.8...v1.8.9) --- updated-dependencies: - dependency-name: github.com/sigstore/sigstore dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
5335a56da1 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config (#168)
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.33 to 1.27.35. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.33...config/v1.27.35) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
dependabot[bot]
|
070fa33d0d |
feat(deps): bump google.golang.org/api from 0.196.0 to 0.197.0 (#162)
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.196.0 to 0.197.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.196.0...v0.197.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> |
||
|
James Carnegie
|
b4e6767cc6 |
feature!: support for setting HTTP User-Agent header (#157)
* feature!: support for setting HTTP User-Agent header * fix lint * fix e2e * refactor: move http.go to internal/util/useragent package and rename functions to Get and Set * Move packages and use attest version |
||
|
dependabot[bot]
|
99846a3483 |
feat(deps): bump google.golang.org/api from 0.195.0 to 0.196.0
Bumps [google.golang.org/api](https://github.com/googleapis/google-api-go-client) from 0.195.0 to 0.196.0. - [Release notes](https://github.com/googleapis/google-api-go-client/releases) - [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md) - [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.195.0...v0.196.0) --- updated-dependencies: - dependency-name: google.golang.org/api dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
Joel Kamp
|
f760b12bb2 |
Merge pull request #151 from docker/dependabot/go_modules/github.com/sigstore/sigstore/pkg/signature/kms/gcp-1.8.9
feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/gcp from 1.8.8 to 1.8.9 |
||
|
dependabot[bot]
|
0705a71115 |
feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/gcp
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/gcp](https://github.com/sigstore/sigstore) from 1.8.8 to 1.8.9. - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](https://github.com/sigstore/sigstore/compare/v1.8.8...v1.8.9) --- updated-dependencies: - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/gcp dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
b00e02af01 |
feat(deps): bump github.com/aws/aws-sdk-go-v2/config
Bumps [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) from 1.27.31 to 1.27.33. - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](https://github.com/aws/aws-sdk-go-v2/compare/config/v1.27.31...config/v1.27.33) --- updated-dependencies: - dependency-name: github.com/aws/aws-sdk-go-v2/config dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
Joel Kamp
|
c8383f3f5a |
Merge pull request #149 from docker/dependabot/go_modules/github.com/sigstore/sigstore/pkg/signature/kms/aws-1.8.9
feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws from 1.8.8 to 1.8.9 |
||
|
dependabot[bot]
|
67ad27ac22 |
feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws
Bumps [github.com/sigstore/sigstore/pkg/signature/kms/aws](https://github.com/sigstore/sigstore) from 1.8.8 to 1.8.9. - [Release notes](https://github.com/sigstore/sigstore/releases) - [Commits](https://github.com/sigstore/sigstore/compare/v1.8.8...v1.8.9) --- updated-dependencies: - dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/aws dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> |
||
|
dependabot[bot]
|
16834292de |
feat(deps): bump github.com/open-policy-agent/opa from 0.67.1 to 0.68.0
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.67.1 to 0.68.0. - [Release notes](https://github.com/open-policy-agent/opa/releases) - [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md) - [Commits](https://github.com/open-policy-agent/opa/compare/v0.67.1...v0.68.0) --- updated-dependencies: - dependency-name: github.com/open-policy-agent/opa dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> |