Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): Bump the go group across 1 directory with 23 updates #1497

Closed
wants to merge 1 commit into from
Closed

build(deps): Bump the go group across 1 directory with 23 updates #1497

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 29, 2024
edited

Bumps the go group with 11 updates in the / directory:

Package From To
cloud.google.com/go/kms 1.15.7 1.15.8
cloud.google.com/go/storage 1.38.0 1.40.0
github.com/Azure/azure-sdk-for-go/sdk/azcore 1.9.2 1.11.1
github.com/Azure/azure-sdk-for-go/sdk/azidentity 1.5.1 1.5.2
github.com/ProtonMail/go-crypto 1.1.0-alpha.0-proton 1.1.0-alpha.2
github.com/aws/aws-sdk-go-v2 1.25.0 1.26.1
github.com/aws/aws-sdk-go-v2/config 1.27.0 1.27.11
github.com/aws/aws-sdk-go-v2/feature/s3/manager 1.16.0 1.16.15
github.com/aws/aws-sdk-go-v2/service/kms 1.28.1 1.31.0
github.com/hashicorp/vault/api 1.12.0 1.13.0
github.com/urfave/cli 1.22.14 1.22.15

Updates cloud.google.com/go/kms from 1.15.7 to 1.15.8

Release notes

Sourced from cloud.google.com/go/kms's releases.

auth/oauth2adapt: v0.2.2

0.2.2 (2024-04-23)

Bug Fixes

  • auth/oauth2adapt: Bump x/net to v0.24.0 (ba31ed5)

auth/oauth2adapt: v0.2.1

0.2.1 (2024-04-18)

Bug Fixes

auth/oauth2adapt: v0.2.0

0.2.0 (2024-04-16)

Features

  • auth/oauth2adapt: Add helpers for working with credentials types (#9694) (cf33b55)

Bug Fixes

  • auth/oauth2adapt: Update protobuf dep to v1.33.0 (30b038d)
Commits
  • 141f2a5 chore: release main (#9571)
  • 25c3f2d feat(datacatalog): Add RANGE type to Data Catalog (#9573)
  • 30b038d fix(all): release protobuf dep bump (#9586)
  • 424b716 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /auth/o...
  • 035ca18 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /intern...
  • 5e4815d chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /intern...
  • 9490416 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /intern...
  • 87a101f chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /intern...
  • 42c0f35 chore(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /intern...
  • da6e854 chore(deps): bump google.golang.org/protobuf in /internal/gapicgen (#9574)
  • Additional commits viewable in compare view

Updates cloud.google.com/go/storage from 1.38.0 to 1.40.0

Release notes

Sourced from cloud.google.com/go/storage's releases.

storage: v1.40.0

1.40.0 (2024-03-29)

Features

Bug Fixes

  • storage: Retry errors from last recv on uploads (#9616) (b6574aa)
  • storage: Update protobuf dep to v1.33.0 (30b038d)

Performance Improvements

  • storage: Remove protobuf's copy of data on unmarshalling (#9526) (81281c0)
Commits
  • 438afcf chore(main): release spanner 1.40.0 (#6988)
  • bd85442 feat(spanner): configurable logger (#6958)
  • d5e2e0f chore: update individual config to be separate prs (#6981)
  • 1ce0f7d feat(spanner/spansql): add support for interval arg of some date/timestamp fu...
  • 5b14658 feat(spanner): PG JSONB support (#6874)
  • 3c4b2b3 chore: bulk rewrite signatures for GA clients (#6951)
  • d82ef41 chore(bigtable): more text proxy tune-up (#6977)
  • e7ab70b test(storage): add gRPC error code to retry to fix flaky PAP test (#6974)
  • f7c7f41 feat(storage): add Autoclass support (#6828)
  • 5d2dc01 chore(bigtable): add timeouts to proxy methods (#6973)
  • Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azcore from 1.9.2 to 1.11.1

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azcore's releases.

sdk/azcore/v1.11.1

1.11.1 (2024-04-02)

Bugs Fixed

  • Pollers that use the Location header won't consider http.StatusRequestTimeout a terminal failure.
  • runtime.Poller[T].Result won't consider non-terminal error responses as terminal.

sdk/azcore/v1.11.0

1.11.0 (2024-04-01)

Features Added

  • Added StatusCodes to arm/policy.RegistrationOptions to allow supporting non-standard HTTP status codes during registration.
  • Added field InsecureAllowCredentialWithHTTP to azcore.ClientOptions and dependent authentication pipeline policies.
  • Added type MultipartContent to the streaming package to support multipart/form payloads with custom Content-Type and file name.

Bugs Fixed

  • runtime.SetMultipartFormData won't try to stringify []byte values.
  • Pollers that use the Location header won't consider http.StatusTooManyRequests a terminal failure.

Other Changes

  • Update dependencies.

sdk/azcore/v1.10.0

1.10.0 (2024-02-29)

Features Added

  • Added logging event log.EventResponseError that will contain the contents of ResponseError.Error() whenever an azcore.ResponseError is created.
  • Added runtime.NewResponseErrorWithErrorCode for creating an azcore.ResponseError with a caller-supplied error code.
  • Added type MatchConditions for use in conditional requests.

Bugs Fixed

  • Fixed a potential race condition between NullValue and IsNullValue.
  • runtime.EncodeQueryParams will escape semicolons before calling url.ParseQuery.

Other Changes

  • Update dependencies.
Commits
  • 76e5495 Prep [email protected] for release (#22680)
  • 2650473 Increment package version after release of messaging/azeventhubs (#22677)
  • 51ef615 runtime.Poller.Result won't be done on non-terminal error (#22675)
  • aef7678 Increment package version after release of messaging/azservicebus (#22678)
  • a67b4de Increment package version after release of messaging/eventgrid/azeventgrid (#...
  • e978d51 [azopenai] Updating doc comments based on feedback from an issue, as well as ...
  • 4116d5d Don't consider 408 as terminal failure for Location poller (#22674)
  • e036aea Sync eng/common directory with azure-sdk-tools for PR 7989 (#22673)
  • 53f73ad Sync eng/common directory with azure-sdk-tools for PR 7988 (#22672)
  • 9e78ee2 [azeventgrid] Prepping for first GA of the Event Grid Basic package. (#22667)
  • Additional commits viewable in compare view

Updates github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.5.1 to 1.5.2

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azidentity's releases.

sdk/azidentity/v1.5.2

1.5.2 (2024-04-09)

Bugs Fixed

  • ManagedIdentityCredential now specifies resource IDs correctly for Azure Container Instances

Other Changes

  • Restored v1.4.0 error behavior for empty tenant IDs
  • Upgraded dependencies
Commits
  • 299ebfe Prepare internal for release (#22339)
  • d00123d Update packages (#22338)
  • 0a332e3 Fix issue in Verify-Link.ps1 after PS 7.4 update (#22336)
  • c8ae7ed Sync eng/common directory with azure-sdk-tools for PR 7615 (#22335)
  • 9ae828c Replace ErrAuthenticationRequired with AuthenticationRequiredError (#22317)
  • 7c50f09 [Release] sdk/resourcemanager/springappdiscovery/armspringappdiscovery/0.1.0 ...
  • b36de61 Added spec location verification to the release pipeline (#22301)
  • 00f2b8b Go SDK for Azure Web PubSub Data plane (#21929)
  • 0aa2409 Sync eng/common directory with azure-sdk-tools for PR 7585 (#22312)
  • 572ba1f JSON marshaling helpers will preserve Content-Type (#22309)
  • Additional commits viewable in compare view

Updates github.com/ProtonMail/go-crypto from 1.1.0-alpha.0-proton to 1.1.0-alpha.2

Release notes

Sourced from github.com/ProtonMail/go-crypto's releases.

v1.1.0-alpha.1

What's Changed

Removes the openpgp.VerifyDetachedSignatureAndSaltedHash function and the packet.SaltedHashSpecifier as they are no longer required. They were introduced for verifying the headers in cleartext messages. However, in the latest crypto-refresh specification, cleartext message headers were dropped.

Full Changelog: v1.1.0-alpha.0...v1.1.0-alpha.1

v1.1.0-alpha.1-proton

This pre-release is v1.1.0-alpha.1 with support for symmetric keys and automatic forwarding, both of which are not standardized yet.

Commits

Updates github.com/aws/aws-sdk-go-v2 from 1.25.0 to 1.26.1

Commits

Updates github.com/aws/aws-sdk-go-v2/config from 1.27.0 to 1.27.11

Commits

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.17.0 to 1.17.11

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/credentials's changelog.

Release (2022-11-10)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/autoscaling: v1.24.1
    • Documentation: This release adds a new price capacity optimized allocation strategy for Spot Instances to help customers optimize provisioning of Spot Instances via EC2 Auto Scaling, EC2 Fleet, and Spot Fleet. It allocates Spot Instances based on both spare capacity availability and Spot Instance price.
  • github.com/aws/aws-sdk-go-v2/service/ec2: v1.70.0
    • Feature: This release adds a new price capacity optimized allocation strategy for Spot Instances to help customers optimize provisioning of Spot Instances via EC2 Auto Scaling, EC2 Fleet, and Spot Fleet. It allocates Spot Instances based on both spare capacity availability and Spot Instance price.
  • github.com/aws/aws-sdk-go-v2/service/ecs: v1.19.0
    • Feature: This release adds support for task scale-in protection with updateTaskProtection and getTaskProtection APIs. UpdateTaskProtection API can be used to protect a service managed task from being terminated by scale-in events and getTaskProtection API to get the scale-in protection status of a task.
  • github.com/aws/aws-sdk-go-v2/service/elasticsearchservice: v1.17.0
    • Feature: Amazon OpenSearch Service now offers managed VPC endpoints to connect to your Amazon OpenSearch Service VPC-enabled domain in a Virtual Private Cloud (VPC). This feature allows you to privately access OpenSearch Service domain without using public IPs or requiring traffic to traverse the Internet.
  • github.com/aws/aws-sdk-go-v2/service/resourceexplorer2: v1.0.1
    • Documentation: Text only updates to some Resource Explorer descriptions.
  • github.com/aws/aws-sdk-go-v2/service/scheduler: v1.0.0
    • Release: New AWS service client module
    • Feature: AWS introduces the new Amazon EventBridge Scheduler. EventBridge Scheduler is a serverless scheduler that allows you to create, run, and manage tasks from one central, managed service.

Release (2022-11-09)

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/connect: v1.35.0
    • Feature: This release adds new fields SignInUrl, UserArn, and UserId to GetFederationToken response payload.
  • github.com/aws/aws-sdk-go-v2/service/connectcases: v1.1.0
  • github.com/aws/aws-sdk-go-v2/service/ec2: v1.69.0
    • Feature: Amazon EC2 Trn1 instances, powered by AWS Trainium chips, are purpose built for high-performance deep learning training. u-24tb1.112xlarge and u-18tb1.112xlarge High Memory instances are purpose-built to run large in-memory databases.
  • github.com/aws/aws-sdk-go-v2/service/groundstation: v1.14.0
    • Feature: This release adds the preview of customer-provided ephemeris support for AWS Ground Station, allowing space vehicle owners to provide their own position and trajectory information for a satellite.
  • github.com/aws/aws-sdk-go-v2/service/mediapackagevod: v1.19.0
    • Feature: This release adds "IncludeIframeOnlyStream" for Dash endpoints.
  • github.com/aws/aws-sdk-go-v2/service/transcribestreaming: v1.7.0
    • Feature: This will release hi-IN and th-TH

Release (2022-11-08)

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/acm: v1.16.0
    • Feature: Support added for requesting elliptic curve certificate key algorithm types P-256 (EC_prime256v1) and P-384 (EC_secp384r1).
  • github.com/aws/aws-sdk-go-v2/service/billingconductor: v1.1.0
    • Feature: This release adds the Recurring Custom Line Item feature along with a new API ListCustomLineItemVersions.
  • github.com/aws/aws-sdk-go-v2/service/ec2: v1.68.0
    • Feature: This release enables sharing of EC2 Placement Groups across accounts and within AWS Organizations using Resource Access Manager
  • github.com/aws/aws-sdk-go-v2/service/fms: v1.20.0
    • Feature: AWS Firewall Manager now supports importing existing AWS Network Firewall firewalls into Firewall Manager policies.
  • github.com/aws/aws-sdk-go-v2/service/lightsail: v1.24.0
    • Feature: This release adds support for Amazon Lightsail to automate the delegation of domains registered through Amazon Route 53 to Lightsail DNS management and to automate record creation for DNS validation of Lightsail SSL/TLS certificates.
  • github.com/aws/aws-sdk-go-v2/service/opensearch: v1.11.0

... (truncated)

Commits

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.16.0 to 1.16.15

Commits

Updates github.com/aws/aws-sdk-go-v2/service/kms from 1.28.1 to 1.31.0

Changelog

Sourced from github.com/aws/aws-sdk-go-v2/service/kms's changelog.

Release (2023-03-21)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/chimesdkmessaging: v1.13.0
    • Feature: Amazon Chime SDK messaging customers can now manage streaming configuration for messaging data for archival and analysis.
  • github.com/aws/aws-sdk-go-v2/service/cleanrooms: v1.1.0
    • Feature: GA Release of AWS Clean Rooms, Added Tagging Functionality
  • github.com/aws/aws-sdk-go-v2/service/ec2: v1.91.0
    • Feature: This release adds support for AWS Network Firewall, AWS PrivateLink, and Gateway Load Balancers to Amazon VPC Reachability Analyzer, and it makes the path destination optional as long as a destination address in the filter at source is provided.
  • github.com/aws/aws-sdk-go-v2/service/internal/s3shared: v1.14.0
    • Feature: port v1 sdk 100-continue http header customization for s3 PutObject/UploadPart request and enable user config
  • github.com/aws/aws-sdk-go-v2/service/iotsitewise: v1.28.0
    • Feature: Provide support for tagging of data streams and enabling tag based authorization for property alias
  • github.com/aws/aws-sdk-go-v2/service/mgn: v1.18.0
    • Feature: This release introduces the Import and export feature and expansion of the post-launch actions
  • github.com/aws/aws-sdk-go-v2/service/s3: v1.31.0
    • Feature: port v1 sdk 100-continue http header customization for s3 PutObject/UploadPart request and enable user config

Release (2023-03-20)

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/applicationautoscaling: v1.19.0
    • Feature: With this release customers can now tag their Application Auto Scaling registered targets with key-value pairs and manage IAM permissions for all the tagged resources centrally.
  • github.com/aws/aws-sdk-go-v2/service/neptune: v1.20.0
    • Feature: This release makes following few changes. db-cluster-identifier is now a required parameter of create-db-instance. describe-db-cluster will now return PendingModifiedValues and GlobalClusterIdentifier fields in the response.
  • github.com/aws/aws-sdk-go-v2/service/s3outposts: v1.16.0
    • Feature: S3 On Outposts added support for endpoint status, and a failed endpoint reason, if any
  • github.com/aws/aws-sdk-go-v2/service/workdocs: v1.14.0
    • Feature: This release adds a new API, SearchResources, which enable users to search through metadata and content of folders, documents, document versions and comments in a WorkDocs site.

Release (2023-03-17)

Module Highlights

  • github.com/aws/aws-sdk-go-v2/service/billingconductor: v1.6.0
    • Feature: This release adds a new filter to ListAccountAssociations API and a new filter to ListBillingGroups API.
  • github.com/aws/aws-sdk-go-v2/service/configservice: v1.30.0
    • Feature: This release adds resourceType enums for types released from October 2022 through February 2023.
  • github.com/aws/aws-sdk-go-v2/service/databasemigrationservice: v1.25.0
    • Feature: S3 setting to create AWS Glue Data Catalog. Oracle setting to control conversion of timestamp column. Support for Kafka SASL Plain authentication. Setting to map boolean from PostgreSQL to Redshift. SQL Server settings to force lob lookup on inline LOBs and to control access of database logs.

Release (2023-03-16)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/aws-sdk-go-v2/config: v1.18.18

... (truncated)

Commits
  • 390cf19 Release 2023-03-21
  • c37c72a Regenerated Clients
  • d1e5193 Update endpoints model
  • 2506101 Update API model
  • c93b5cc Merge pull request #2051 from aws/add100ContinueCustomization
  • c01aac6 Keep one changelog for PR
  • 3780faa Keep one changelog for PR
  • b94b5b7 Merge remote-tracking branch 'origin/add100ContinueCustomization' into add100...
  • 6174ff2 Change some variable name and use operation shape id to represent operation s...
  • 83491fc add changelog to last commit
  • Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.49.0 to 1.53.1

Commits

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.27.0 to 1.28.6

Commits

Updates github.com/golang/protobuf from 1.5.3 to 1.5.4

Release notes

Sourced from github.com/golang/protobuf's releases.

v1.5.4

Notable changes

  • update descriptor.proto to latest version
Commits

Updates github.com/hashicorp/vault/api from 1.12.0 to 1.13.0

Release notes

Sourced from github.com/hashicorp/vault/api's releases.

v1.13.0

1.13.0

March 01, 2023

SECURITY:

  • secrets/ssh: removal of the deprecated dynamic keys mode. When any remaining dynamic key leases expire, an error stating secret is unsupported by this backend will be thrown by the lease manager. [GH-18874]

CHANGES:

  • auth/alicloud: require the role field on login [GH-19005]
  • auth/approle: Add maximum length of 4096 for approle role_names, as this value results in HMAC calculation [GH-17768]
  • auth: Returns invalid credentials for ldap, userpass and approle when wrong credentials are provided for existent users. This will only be used internally for implementing user lockout. [GH-17104]
  • core: Bump Go version to 1.20.1.
  • core: Vault version has been moved out of sdk and into main vault module. Plugins using sdk/useragent.String must instead use sdk/useragent.PluginString. [GH-14229]
  • logging: Removed legacy environment variable for log format ('LOGXI_FORMAT'), should use 'VAULT_LOG_FORMAT' instead [GH-17822]
  • plugins: Mounts can no longer be pinned to a specific builtin version. Mounts previously pinned to a specific builtin version will now automatically upgrade to the latest builtin version, and may now be overridden if an unversioned plugin of the same name and type is registered. Mounts using plugin versions without builtin in their metadata remain unaffected. [GH-18051]
  • plugins: GET /database/config/:name endpoint now returns an additional plugin_version field in the response data. [GH-16982]
  • plugins: GET /sys/auth/:path/tune and GET /sys/mounts/:path/tune endpoints may now return an additional plugin_version field in the response data if set. [GH-17167]
  • plugins: GET for /sys/auth, /sys/auth/:path, /sys/mounts, and /sys/mounts/:path paths now return additional plugin_version, running_plugin_version and running_sha256 fields in the response data for each mount. [GH-17167]
  • sdk: Remove version package, make useragent.String versionless. [GH-19068]
  • secrets/aws: do not create leases for non-renewable/non-revocable STS credentials to reduce storage calls [GH-15869]
  • secrets/gcpkms: Updated plugin from v0.13.0 to v0.14.0 [GH-19063]
  • sys/internal/inspect: Turns of this endpoint by default. A SIGHUP can now be used to reload the configs and turns this endpoint on.
  • ui: Upgrade Ember to version 4.4.0 [GH-17086]

FEATURES:

  • Azure Auth Managed Identities: Allow any Azure resource that supports managed identities to authenticate with Vault [GH-19077]
  • Azure Auth Rotate Root: Add support for rotate root in Azure Auth engine [GH-19077]
  • Event System (Alpha): Vault has a new opt-in experimental event system. Not yet suitable for production use. Events are currently only generated on writes to the KV secrets engine, but external plugins can also be updated to start generating events. [GH-19194]
  • GCP Secrets Impersonated Account Support: Add support for GCP service account impersonation, allowing callers to generate a GCP access token without requiring Vault to store or retrieve a GCP service account key for each role. [GH-19018]
  • Kubernetes Secrets Engine UI: Kubernetes is now available in the UI as a supported secrets engine. [GH-17893]
  • New PKI UI: Add beta support for new and improved PKI UI [GH-18842]
  • PKI Cross-Cluster Revocations: Revocation information can now be synchronized across primary and performance replica clusters offering a unified CRL/OCSP view of revocations across cluster boundaries. [GH-19196]
  • Server UDS Listener: Adding listener to Vault server to serve http request via unix domain socket [GH-18227]
  • Transit managed keys: The transit secrets engine now supports configuring and using managed keys
  • User Lockout: Adds support to configure the user-lockout behaviour for failed logins to prevent brute force attacks for userpass, approle and ldap auth methods. [GH-19230]
  • VMSS Flex Authentication: Adds support for Virtual Machine Scale Set Flex Authentication [GH-19077]
  • Namespaces (enterprise): Added the ability to allow access to secrets and more to be shared across namespaces that do not share a namespace hierarchy. Using the new sys/config/group-policy-application API, policies can be configured to apply outside of namespace hierarchy, allowing this kind of cross-namespace sharing.
  • OpenAPI-based Go & .NET Client Libraries (Beta): We have now made available two new OpenAPI-based Go & .NET Client libraries (beta). You can use them to perform various secret management operations easily from your applications.

IMPROVEMENTS:

  • Redis ElastiCache DB Engine: Renamed configuration parameters for disambiguation; old parameters still supported for compatibility. [GH-18752]

... (truncated)

Changelog

Sourced from github.com/hashicorp/vault/api's changelog.

1.13.0

March 01, 2023

SECURITY:

  • secrets/ssh: removal of the deprecated dynamic keys mode. When any remaining dynamic key leases expire, an error stating secret is unsupported by this backend will be thrown by the lease manager. [GH-18874]
  • auth/approle: When using the Vault and Vault Enterprise (Vault) approle auth method, any authenticated user with access to the /auth/approle/role/:role_name/secret-id-accessor/destroy endpoint can destroy the secret ID of any other role by providing the secret ID accessor. This vulnerability, CVE-2023-24999 has been fixed in Vault 1.13.0, 1.12.4, 1.11.8, 1.10.11 and above. [HSEC-2023-07]

CHANGES:

  • auth/alicloud: require the role field on login [GH-19005]
  • auth/approle: Add maximum length of 4096 for approle role_names, as this value results in HMAC calculation [GH-17768]
  • auth: Returns invalid credentials for ldap, userpass and approle when wrong credentials are provided for existent users. This will only be used internally for implementing user lockout. [GH-17104]
  • core: Bump Go version to 1.20.1.
  • core: Vault version has been moved out of sdk and into main vault module. Plugins using sdk/useragent.String must instead use sdk/useragent.PluginString. [GH-14229]
  • logging: Removed legacy environment variable for log format ('LOGXI_FORMAT'), should use 'VAULT_LOG_FORMAT' instead [GH-17822]
  • plugins: Mounts can no longer be pinned to a specific builtin version. Mounts previously pinned to a specific builtin version will now automatically upgrade to the latest builtin version, and may now be overridden if an unversioned plugin of the same name and type is registered. Mounts using plugin versions without builtin in their metadata remain unaffected. [GH-18051]
  • plugins: GET /database/config/:name endpoint now returns an additional plugin_version field in the response data. [GH-16982]
  • plugins: GET /sys/auth/:path/tune and GET /sys/mounts/:path/tune endpoints may now return an additional plugin_version field in the response data if set. [GH-17167]
  • plugins: GET for /sys/auth, /sys/auth/:path, /sys/mounts, and /sys/mounts/:path paths now return additional plugin_version, running_plugin_version and running_sha256 fields in the response data for each mount. [GH-17167]
  • sdk: Remove version package, make useragent.String versionless. [GH-19068]
  • secrets/aws: do not create leases for non-renewable/non-revocable STS credentials to reduce storage calls [GH-15869]
  • secrets/gcpkms: Updated plugin from v0.13.0 to v0.14.0 [GH-19063]
  • sys/internal/inspect: Turns of this endpoint by default. A SIGHUP can now be used to reload the configs and turns this endpoint on.
  • ui: Upgrade Ember to version 4.4.0 [GH-17086]

FEATURES:

  • User lockout: Ignore repeated bad credentials from the same user for a configured period of time. Enabled by default.
  • Azure Auth Managed Identities: Allow any Azure resource that supports managed identities to authenticate with Vault [GH-19077]
  • Azure Auth Rotate Root: Add support for rotate root in Azure Auth engine [GH-19077]
  • Event System (Alpha): Vault has a new opt-in experimental event system. Not yet suitable for production use. Events are currently only generated on writes to the KV secrets engine, but external plugins can also be updated to start generating events. [GH-19194]
  • GCP Secrets Impersonated Account Support: Add support for GCP service account impersonation, allowing callers to generate a GCP access token without requiring Vault to store or retrieve a GCP service account key for each role. [GH-19018]
  • Kubernetes Secrets Engine UI: Kubernetes is now available in the UI as a supported secrets engine. [GH-17893]
  • New PKI UI: Add beta support for new and improved PKI UI [GH-18842]
  • PKI Cross-Cluster Revocations: Revocation information can now be synchronized across primary and performance replica clusters offering a unified CRL/OCSP view of revocations across cluster boundaries. [GH-19196]
  • Server UDS Listener: Adding listener to Vault server to serve http request via unix domain socket [GH-18227]
  • Transit managed keys: The transit secrets engine now supports configuring and using managed keys
  • User Lockout: Adds support to configure the user-lockout behaviour for failed logins to prevent brute force attacks for userpass, approle and ldap auth methods. [GH-19230]
  • VMSS Flex Authentication: Adds support for Virtual Machine Scale Set Flex Authentication [GH-19077]
  • Namespaces (enterprise): Added the ability to allow access to secrets and more to be shared across namespaces that do not share a namespace hierarchy. Using the new sys/config/group-policy-application API, policies can be configured to apply outside of namespace hierarchy, allowing this kind of cross-namespace sharing.
  • OpenAPI-based Go & .NET Client Libraries (Beta): We have now made available two new [OpenAPI-based Go] & [OpenAPI-based .NET] Client libraries (beta). You can use them to perform various secret management operations easily from your applications.

IMPROVEMENTS:

... (truncated)

C...

Description has been truncated

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 29, 2024
@dependabot
build(deps): Bump the go group across 1 directory with 23 updates
65de5c3 
Bumps the go group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [cloud.google.com/go/kms](https://github.com/googleapis/google-cloud-go) | `1.15.7` | `1.15.8` |
| [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go) | `1.38.0` | `1.40.0` |
| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.9.2` | `1.11.1` |
| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.5.1` | `1.5.2` |
| [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.1.0-alpha.0-proton` | `1.1.0-alpha.2` |
| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.25.0` | `1.26.1` |
| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.27.0` | `1.27.11` |
| [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.16.0` | `1.16.15` |
| [github.com/aws/aws-sdk-go-v2/service/kms](https://github.com/aws/aws-sdk-go-v2) | `1.28.1` | `1.31.0` |
| [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault) | `1.12.0` | `1.13.0` |
| [github.com/urfave/cli](https://github.com/urfave/cli) | `1.22.14` | `1.22.15` |



Updates `cloud.google.com/go/kms` from 1.15.7 to 1.15.8
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@kms/v1.15.7...kms/v1.15.8)

Updates `cloud.google.com/go/storage` from 1.38.0 to 1.40.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@spanner/v1.38.0...spanner/v1.40.0)

Updates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.9.2 to 1.11.1
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases)
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md)
- [Commits](Azure/azure-sdk-for-go@sdk/azcore/v1.9.2...sdk/azcore/v1.11.1)

Updates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.5.1 to 1.5.2
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases)
- [Changelog](https://github.com/Azure/azure-sdk-for-go/blob/main/documentation/release.md)
- [Commits](Azure/azure-sdk-for-go@sdk/internal/v1.5.1...sdk/internal/v1.5.2)

Updates `github.com/ProtonMail/go-crypto` from 1.1.0-alpha.0-proton to 1.1.0-alpha.2
- [Release notes](https://github.com/ProtonMail/go-crypto/releases)
- [Commits](ProtonMail/go-crypto@v1.1.0-alpha.0...v1.1.0-alpha.2)

Updates `github.com/aws/aws-sdk-go-v2` from 1.25.0 to 1.26.1
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@v1.25.0...v1.26.1)

Updates `github.com/aws/aws-sdk-go-v2/config` from 1.27.0 to 1.27.11
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@config/v1.27.0...config/v1.27.11)

Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.17.0 to 1.17.11
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/config/v1.17.11/CHANGELOG.md)
- [Commits](aws/aws-sdk-go-v2@v1.17.0...config/v1.17.11)

Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.16.0 to 1.16.15
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@v1.16.0...v1.16.15)

Updates `github.com/aws/aws-sdk-go-v2/service/kms` from 1.28.1 to 1.31.0
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/service/s3/v1.31.0/CHANGELOG.md)
- [Commits](aws/aws-sdk-go-v2@service/ecs/v1.28.1...service/s3/v1.31.0)

Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.49.0 to 1.53.1
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.49.0...service/s3/v1.53.1)

Updates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.27.0 to 1.28.6
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@config/v1.27.0...service/emr/v1.28.6)

Updates `github.com/golang/protobuf` from 1.5.3 to 1.5.4
- [Release notes](https://github.com/golang/protobuf/releases)
- [Commits](golang/protobuf@v1.5.3...v1.5.4)

Updates `github.com/hashicorp/vault/api` from 1.12.0 to 1.13.0
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md)
- [Commits](hashicorp/vault@v1.12.0...v1.13.0)

Updates `github.com/stretchr/testify` from 1.8.4 to 1.9.0
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](stretchr/testify@v1.8.4...v1.9.0)

Updates `github.com/urfave/cli` from 1.22.14 to 1.22.15
- [Release notes](https://github.com/urfave/cli/releases)
- [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md)
- [Commits](urfave/cli@v1.22.14...v1.22.15)

Updates `golang.org/x/net` from 0.21.0 to 0.22.0
- [Commits](golang/net@v0.21.0...v0.22.0)

Updates `golang.org/x/sys` from 0.17.0 to 0.18.0
- [Commits](golang/sys@v0.17.0...v0.18.0)

Updates `golang.org/x/term` from 0.17.0 to 0.18.0
- [Commits](golang/term@v0.17.0...v0.18.0)

Updates `google.golang.org/api` from 0.165.0 to 0.170.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.165.0...v0.170.0)

Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20240213162025-012b6fc9bca9 to 0.0.0-20240311132316-a219d84964c2
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/grpc` from 1.61.1 to 1.62.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.61.1...v1.62.1)

Updates `google.golang.org/protobuf` from 1.32.0 to 1.33.0

---
updated-dependencies:
- dependency-name: cloud.google.com/go/kms
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: cloud.google.com/go/storage
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/ProtonMail/go-crypto
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/config
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/credentials
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/kms
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/sts
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/golang/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/hashicorp/vault/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/stretchr/testify
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/urfave/cli
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/sys
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/term
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/api
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/genproto/googleapis/rpc
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: google.golang.org/grpc
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-3a165a74d1 branch from 0e4def2 to 65de5c3 Compare April 29, 2024 15:30
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Apr 29, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Apr 29, 2024
@dependabot dependabot bot deleted the dependabot/go_modules/go-3a165a74d1 branch April 29, 2024 15:37
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants