{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":48299818,"defaultBranch":"master","name":"kopia","ownerLogin":"kopia","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2015-12-19T22:47:14.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/16365723?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1716941177.0","currentOid":""},"activityList":{"items":[{"before":"7fd6e5912fb1694bce02b6aee57243737ce0dfcf","after":"fcb8197f3f0773d70ad202c195c6ce88fcb01c2d","ref":"refs/heads/master","pushedAt":"2024-05-30T03:31:57.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"jkowalski","name":"Jarek Kowalski","path":"/jkowalski","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/249880?s=80&v=4"},"commit":{"message":"chore(ci): upgraded linter to 1.59.0 (#3883)","shortMessageHtmlLink":"chore(ci): upgraded linter to 1.59.0 (#3883)"}},{"before":"ddbd8ede95fa9ca77025dfe546cd050f244ee722","after":"7fd6e5912fb1694bce02b6aee57243737ce0dfcf","ref":"refs/heads/master","pushedAt":"2024-05-30T01:02:14.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"chore(cli): cleanup user profile errors (#3889)","shortMessageHtmlLink":"chore(cli): cleanup user profile errors (#3889)"}},{"before":"596bb33bb15c3ec53420213aec1d5016b4c08495","after":null,"ref":"refs/heads/dependabot/go_modules/common-golang-dependencies-5f19e19aea","pushedAt":"2024-05-29T00:06:17.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"1aab37ddccd1d43a82c538459718daebbebfe88c","after":"ddbd8ede95fa9ca77025dfe546cd050f244ee722","ref":"refs/heads/master","pushedAt":"2024-05-29T00:06:16.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump the common-golang-dependencies group with 4 updates (#3885)\n\nBumps the common-golang-dependencies group with 4 updates:\r\n[go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go),\r\n[go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go),\r\n[go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go)\r\nand\r\n[go.opentelemetry.io/otel/trace](https://github.com/open-telemetry/opentelemetry-go).\r\n\r\nUpdates `go.opentelemetry.io/otel` from 1.26.0 to 1.27.0\r\n
\r\nChangelog\r\n

Sourced from go.opentelemetry.io/otel's\r\nchangelog.

\r\n
\r\n

[1.27.0/0.49.0/0.3.0] 2024-05-21

\r\n

Added

\r\n\r\n

Changed

\r\n\r\n

Fixed

\r\n\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\nUpdates\r\n`go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc` from\r\n1.26.0 to 1.27.0\r\n
\r\nChangelog\r\n

Sourced from go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc's\r\nchangelog.

\r\n
\r\n

[1.27.0/0.49.0/0.3.0] 2024-05-21

\r\n

Added

\r\n\r\n

Changed

\r\n\r\n

Fixed

\r\n\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\nUpdates `go.opentelemetry.io/otel/sdk` from 1.26.0 to 1.27.0\r\n
\r\nChangelog\r\n

Sourced from go.opentelemetry.io/otel/sdk's\r\nchangelog.

\r\n
\r\n

[1.27.0/0.49.0/0.3.0] 2024-05-21

\r\n

Added

\r\n\r\n

Changed

\r\n\r\n

Fixed

\r\n\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\nUpdates `go.opentelemetry.io/otel/trace` from 1.26.0 to 1.27.0\r\n
\r\nChangelog\r\n

Sourced from go.opentelemetry.io/otel/trace's\r\nchangelog.

\r\n
\r\n

[1.27.0/0.49.0/0.3.0] 2024-05-21

\r\n

Added

\r\n\r\n

Changed

\r\n\r\n

Fixed

\r\n\r\n
\r\n
\r\n
\r\nCommits\r\n\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore major version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's major version (unless you unignore this specific\r\ndependency's major version or upgrade to it yourself)\r\n- `@dependabot ignore minor version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's minor version (unless you unignore this specific\r\ndependency's minor version or upgrade to it yourself)\r\n- `@dependabot ignore ` will close this group update PR\r\nand stop Dependabot creating any more for the specific dependency\r\n(unless you unignore this specific dependency or upgrade to it yourself)\r\n- `@dependabot unignore ` will remove all of the ignore\r\nconditions of the specified dependency\r\n- `@dependabot unignore ` will\r\nremove the ignore condition of the specified dependency and ignore\r\nconditions\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump the common-golang-dependencies group with 4 updates ("}},{"before":null,"after":"596bb33bb15c3ec53420213aec1d5016b4c08495","ref":"refs/heads/dependabot/go_modules/common-golang-dependencies-5f19e19aea","pushedAt":"2024-05-27T23:19:31.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump the common-golang-dependencies group with 4 updates\n\nBumps the common-golang-dependencies group with 4 updates: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go), [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go), [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) and [go.opentelemetry.io/otel/trace](https://github.com/open-telemetry/opentelemetry-go).\n\n\nUpdates `go.opentelemetry.io/otel` from 1.26.0 to 1.27.0\n- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)\n- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.27.0)\n\nUpdates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc` from 1.26.0 to 1.27.0\n- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)\n- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.27.0)\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.26.0 to 1.27.0\n- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)\n- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.27.0)\n\nUpdates `go.opentelemetry.io/otel/trace` from 1.26.0 to 1.27.0\n- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)\n- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.26.0...v1.27.0)\n\n---\nupdated-dependencies:\n- dependency-name: go.opentelemetry.io/otel\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n- dependency-name: go.opentelemetry.io/otel/sdk\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n- dependency-name: go.opentelemetry.io/otel/trace\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump the common-golang-dependencies group with 4 updates"}},{"before":"567a4a4eb85d086415094c6be0a014ae60a86629","after":"1aab37ddccd1d43a82c538459718daebbebfe88c","ref":"refs/heads/master","pushedAt":"2024-05-25T06:22:05.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"docs(server): add repo password in server start example (#3875)\n\nWhen starting the server, the typical use case will not involve\r\nresponding to interactive prompts. This change better reflects the\r\nexpectations of a user given that fact.\r\n\r\n---------\r\n\r\nCo-authored-by: Julio <1953782+julio-lopez@users.noreply.github.com>","shortMessageHtmlLink":"docs(server): add repo password in server start example (#3875)"}},{"before":"cab436868e0cae46181ff4bae29da4a3098c54c5","after":null,"ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4.4.1","pushedAt":"2024-05-21T04:42:20.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"8b63357171a30e9e707b8c22f37dbb2a74da954b","after":"567a4a4eb85d086415094c6be0a014ae60a86629","ref":"refs/heads/master","pushedAt":"2024-05-21T04:42:19.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump codecov/codecov-action from 4.3.1 to 4.4.1 (#3874)\n\nBumps\r\n[codecov/codecov-action](https://github.com/codecov/codecov-action) from\r\n4.3.1 to 4.4.1.\r\n
\r\nRelease notes\r\n

Sourced from codecov/codecov-action's\r\nreleases.

\r\n
\r\n

v4.4.1

\r\n

What's Changed

\r\n
    \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 7.8.0 to 7.9.0 by @​dependabot in codecov/codecov-action#1427
    • \r\n
  • fix: prevent xlarge from running on forks by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1432
    • \r\n
  • build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @​dependabot in codecov/codecov-action#1439
    • \r\n
  • build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @​dependabot in codecov/codecov-action#1438
    • \r\n
  • fix: isPullRequestFromFork returns false for any PR by @​shahar-h in codecov/codecov-action#1437
    • \r\n
  • chore(release): 4.4.1 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1441
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​shahar-h\r\nmade their first contribution in codecov/codecov-action#1437
    • \r\n
\r\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.4.0...v4.4.1

\r\n

What's Changed

\r\n
    \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 7.8.0 to 7.9.0 by @​dependabot in codecov/codecov-action#1427
    • \r\n
  • fix: prevent xlarge from running on forks by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1432
    • \r\n
  • build(deps): bump github/codeql-action from 3.25.4 to 3.25.5 by @​dependabot in codecov/codecov-action#1439
    • \r\n
  • build(deps): bump actions/checkout from 4.1.5 to 4.1.6 by @​dependabot in codecov/codecov-action#1438
    • \r\n
  • fix: isPullRequestFromFork returns false for any PR by @​shahar-h in codecov/codecov-action#1437
    • \r\n
  • chore(release): 4.4.1 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1441
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​shahar-h\r\nmade their first contribution in codecov/codecov-action#1437
    • \r\n
\r\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.4.0...v4.4.1

\r\n

v4.4.0

\r\n

What's Changed

\r\n
    \r\n
  • chore: Clarify isPullRequestFromFork by @​jsoref in codecov/codecov-action#1411
    • \r\n
  • build(deps): bump actions/checkout from 4.1.4 to 4.1.5 by @​dependabot in codecov/codecov-action#1423
    • \r\n
  • build(deps): bump github/codeql-action from 3.25.3 to 3.25.4 by @​dependabot in codecov/codecov-action#1421
    • \r\n
  • build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 by @​dependabot in codecov/codecov-action#1420
    • \r\n
  • feat: remove GPG and run on spawn by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1426
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n7.8.0 to 7.9.0 by @​dependabot in codecov/codecov-action#1428
    • \r\n
  • chore(release): 4.4.0 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1430
    • \r\n
\r\n

Full Changelog: https://github.com/codecov/codecov-action/compare/v4.3.1...v4.4.0

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 125fc84\r\nchore(release): 4.4.1 (#1441)
    • \r\n
  • c9dbf6a\r\nfix: isPullRequestFromFork returns false for any PR (#1437)
    • \r\n
  • 59fc46f\r\nbuild(deps): bump actions/checkout from 4.1.5 to 4.1.6 (#1438)
    • \r\n
  • 3889fdd\r\nbuild(deps): bump github/codeql-action from 3.25.4 to 3.25.5 (#1439)
    • \r\n
  • d42a336\r\nfix: prevent xlarge from running on forks (#1432)
    • \r\n
  • fd624e5\r\nbuild(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 7.8.0 to 7.9.0 (#...
    • \r\n
  • 6d79887\r\nchore(release): 4.4.0 (#1430)
    • \r\n
  • 37364fa\r\nbuild(deps-dev): bump @​typescript-eslint/parser from 7.8.0\r\nto 7.9.0 (#1428)
    • \r\n
  • 2791a5c\r\nfix: remove GPG and run on spawn (#1426)
    • \r\n
  • b71af43\r\nbuild(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#1420)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=4.3.1&new-version=4.4.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump codecov/codecov-action from 4.3.1 to 4.4.1 (#3874)"}},{"before":"6c91fe7213b170ef5cb88616cba292baf7ed7429","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-210f8dcca9","pushedAt":"2024-05-21T04:41:29.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"a3895722801a7ca12abb38e20c3e33089467a324","after":"8b63357171a30e9e707b8c22f37dbb2a74da954b","ref":"refs/heads/master","pushedAt":"2024-05-21T04:41:29.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump the github-actions group with 2 updates (#3873)\n\nBumps the github-actions group with 2 updates:\r\n[actions/checkout](https://github.com/actions/checkout) and\r\n[github/codeql-action](https://github.com/github/codeql-action).\r\n\r\nUpdates `actions/checkout` from 4.1.5 to 4.1.6\r\n
\r\nRelease notes\r\n

Sourced from actions/checkout's\r\nreleases.

\r\n
\r\n

v4.1.6

\r\n

What's Changed

\r\n
    \r\n
  • Check platform to set archive extension appropriately by @​cory-miller in\r\nactions/checkout#1732
    • \r\n
  • Update for 4.1.6 release by @​cory-miller in\r\nactions/checkout#1733
    • \r\n
\r\n

Full Changelog: https://github.com/actions/checkout/compare/v4.1.5...v4.1.6

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from actions/checkout's\r\nchangelog.

\r\n
\r\n

Changelog

\r\n

v4.1.6

\r\n
    \r\n
  • Check platform to set archive extension appropriately by @​cory-miller in\r\nactions/checkout#1732
    • \r\n
\r\n

v4.1.5

\r\n
    \r\n
  • Update NPM dependencies by @​cory-miller in\r\nactions/checkout#1703
    • \r\n
  • Bump github/codeql-action from 2 to 3 by @​dependabot in actions/checkout#1694
    • \r\n
  • Bump actions/setup-node from 1 to 4 by @​dependabot in actions/checkout#1696
    • \r\n
  • Bump actions/upload-artifact from 2 to 4 by @​dependabot in actions/checkout#1695
    • \r\n
  • README: Suggest user.email to be\r\n41898282+github-actions[bot]@users.noreply.github.com by @​cory-miller in\r\nactions/checkout#1707
    • \r\n
\r\n

v4.1.4

\r\n
    \r\n
  • Disable extensions.worktreeConfig when disabling\r\nsparse-checkout by @​jww3 in actions/checkout#1692
    • \r\n
  • Add dependabot config by @​cory-miller in\r\nactions/checkout#1688
    • \r\n
  • Bump the minor-actions-dependencies group with 2 updates by @​dependabot in actions/checkout#1693
    • \r\n
  • Bump word-wrap from 1.2.3 to 1.2.5 by @​dependabot in actions/checkout#1643
    • \r\n
\r\n

v4.1.3

\r\n
    \r\n
  • Check git version before attempting to disable\r\nsparse-checkout by @​jww3 in actions/checkout#1656
    • \r\n
  • Add SSH user parameter by @​cory-miller in\r\nactions/checkout#1685
    • \r\n
  • Update actions/checkout version in\r\nupdate-main-version.yml by @​jww3 in actions/checkout#1650
    • \r\n
\r\n

v4.1.2

\r\n
    \r\n
  • Fix: Disable sparse checkout whenever sparse-checkout\r\noption is not present @​dscho in actions/checkout#1598
    • \r\n
\r\n

v4.1.1

\r\n
    \r\n
  • Correct link to GitHub Docs by @​peterbe in actions/checkout#1511
    • \r\n
  • Link to release page from what's new section by @​cory-miller in\r\nactions/checkout#1514
    • \r\n
\r\n

v4.1.0

\r\n\r\n

v4.0.0

\r\n
    \r\n
  • Support\r\nfetching without the --progress option
    • \r\n
  • Update to\r\nnode20
    • \r\n
\r\n

v3.6.0

\r\n\r\n

v3.5.3

\r\n\r\n

v3.5.2

\r\n\r\n

v3.5.1

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • a5ac7e5\r\nUpdate for 4.1.6 release (#1733)
    • \r\n
  • 24ed1a3\r\nCheck platform for extension (#1732)
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\nUpdates `github/codeql-action` from 3.25.5 to 3.25.6\r\n
\r\nChangelog\r\n

Sourced from github/codeql-action's\r\nchangelog.

\r\n
\r\n

CodeQL Action Changelog

\r\n

See the releases\r\npage for the relevant changes to the CodeQL CLI and language\r\npacks.

\r\n

Note that the only difference between v2 and\r\nv3 of the CodeQL Action is the node version they support,\r\nwith v3 running on node 20 while we continue to release\r\nv2 to support running on node 16. For example\r\n3.22.11 was the first v3 release and is\r\nfunctionally identical to 2.22.11. This approach ensures an\r\neasy way to track exactly which features are included in different\r\nversions, indicated by the minor and patch version numbers.

\r\n

[UNRELEASED]

\r\n

No user facing changes.

\r\n

3.25.6 - 20 May 2024

\r\n
    \r\n
  • Update default CodeQL bundle version to 2.17.3. #2295
    • \r\n
\r\n

3.25.5 - 13 May 2024

\r\n
    \r\n
  • Add a compatibility matrix of supported CodeQL Action, CodeQL CLI,\r\nand GitHub Enterprise Server versions to the https://github.com/github/codeql-action/blob/main/README.md.\r\n#2273
    • \r\n
  • Avoid printing out a warning for a missing on.push\r\ntrigger when the CodeQL Action is triggered via a\r\nworkflow_call event. #2274
    • \r\n
  • The tools: latest input to the init Action\r\nhas been renamed to tools: linked. This option specifies\r\nthat the Action should use the tools shipped at the same time as the\r\nAction. The old name will continue to work for backwards compatibility,\r\nbut we recommend that new workflows use the new name. #2281
    • \r\n
\r\n

3.25.4 - 08 May 2024

\r\n
    \r\n
  • Update default CodeQL bundle version to 2.17.2. #2270
    • \r\n
\r\n

3.25.3 - 25 Apr 2024

\r\n
    \r\n
  • Update default CodeQL bundle version to 2.17.1. #2247
    • \r\n
  • Workflows running on macos-latest using CodeQL CLI\r\nversions before v2.15.1 will need to either upgrade their CLI version to\r\nv2.15.1 or newer, or change the platform to an Intel MacOS runner, such\r\nas macos-12. ARM machines with SIP disabled, including the\r\nnewest macos-latest image, are unsupported for CLI versions\r\nbefore 2.15.1. #2261
    • \r\n
\r\n

3.25.2 - 22 Apr 2024

\r\n

No user facing changes.

\r\n

3.25.1 - 17 Apr 2024

\r\n
    \r\n
  • We are rolling out a feature in April/May 2024 that improves the\r\nreliability and performance of analyzing code when analyzing a compiled\r\nlanguage with the autobuild build\r\nmode. #2235
    • \r\n
  • Fix a bug where the init Action would fail if\r\n--overwrite was specified in\r\nCODEQL_ACTION_EXTRA_OPTIONS. #2245
    • \r\n
\r\n

3.25.0 - 15 Apr 2024

\r\n
    \r\n
  • \r\n

    The deprecated feature for extracting dependencies for a Python\r\nanalysis has been removed. #2224

    \r\n

    As a result, the following inputs and environment variables are now\r\nignored:

    \r\n
      \r\n
    • The setup-python-dependencies input to the\r\ninit Action
      • \r\n
    • The\r\nCODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION\r\nenvironment variable
      • \r\n
    \r\n

    We recommend removing any references to these from your workflows.\r\nFor more information, see the release notes for CodeQL Action v3.23.0\r\nand v2.23.0.

    \r\n
    • \r\n
  • \r\n

    Automatically overwrite an existing database if found on the\r\nfilesystem. #2229

    \r\n
    • \r\n
  • \r\n

    Bump the minimum CodeQL bundle version to 2.12.6. #2232

    \r\n
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 9fdb3e4\r\nMerge pull request #2300\r\nfrom github/update-v3.25.6-63d519c0a
    • \r\n
  • 00792ab\r\nUpdate changelog for v3.25.6
    • \r\n
  • 63d519c\r\nMerge pull request #2295\r\nfrom github/update-bundle/codeql-bundle-v2.17.3
    • \r\n
  • 0d9161c\r\nMerge pull request #2293\r\nfrom github/henrymercer/update-build-mode-autobuild-...
    • \r\n
  • e9e2729\r\nAdd changelog note
    • \r\n
  • de1ac31\r\nUpdate default bundle to codeql-bundle-v2.17.3
    • \r\n
  • a57c67b\r\nMerge pull request #2286\r\nfrom github/koesie10/ghec-dr-db-upload
    • \r\n
  • b7ef64e\r\nMerge pull request #2294\r\nfrom github/dependabot/npm_and_yarn/npm-d3285d5234
    • \r\n
  • e54dea2\r\nUpdate checked-in dependencies
    • \r\n
  • 3b42294\r\nBump the npm group across 1 directory with 4 updates
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore major version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's major version (unless you unignore this specific\r\ndependency's major version or upgrade to it yourself)\r\n- `@dependabot ignore minor version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's minor version (unless you unignore this specific\r\ndependency's minor version or upgrade to it yourself)\r\n- `@dependabot ignore ` will close this group update PR\r\nand stop Dependabot creating any more for the specific dependency\r\n(unless you unignore this specific dependency or upgrade to it yourself)\r\n- `@dependabot unignore ` will remove all of the ignore\r\nconditions of the specified dependency\r\n- `@dependabot unignore ` will\r\nremove the ignore condition of the specified dependency and ignore\r\nconditions\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump the github-actions group with 2 updates (#3873)"}},{"before":"4ffc9a47f4a5c121e42e2aee54612577565a6380","after":null,"ref":"refs/heads/dependabot/go_modules/common-golang-dependencies-7469a43f45","pushedAt":"2024-05-21T04:33:08.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"951f126b3c5e7ed4b266db2b597ebb018eb11088","after":"a3895722801a7ca12abb38e20c3e33089467a324","ref":"refs/heads/master","pushedAt":"2024-05-21T04:33:07.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump the common-golang-dependencies group with 2 updates (#3872)\n\nBumps the common-golang-dependencies group with 2 updates:\r\n[google.golang.org/api](https://github.com/googleapis/google-api-go-client)\r\nand [google.golang.org/grpc](https://github.com/grpc/grpc-go).\r\n\r\nUpdates `google.golang.org/api` from 0.178.0 to 0.181.0\r\n
\r\nRelease notes\r\n

Sourced from google.golang.org/api's\r\nreleases.

\r\n
\r\n

v0.181.0

\r\n

0.181.0\r\n(2024-05-16)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2581)\r\n(6923ec8)
    • \r\n
  • all: Auto-regenerate discovery clients (#2583)\r\n(7b18e5d)
    • \r\n
  • all: Auto-regenerate discovery clients (#2585)\r\n(e35f76f)
    • \r\n
  • all: Auto-regenerate discovery clients (#2586)\r\n(afc4685)
    • \r\n
  • all: Auto-regenerate discovery clients (#2587)\r\n(86c9521)
    • \r\n
  • all: Auto-regenerate discovery clients (#2589)\r\n(c3f4828)
    • \r\n
\r\n

v0.180.0

\r\n

0.180.0\r\n(2024-05-10)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2578)\r\n(6604a5d)
    • \r\n
\r\n

v0.179.0

\r\n

0.179.0\r\n(2024-05-09)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2573)\r\n(887c564)
    • \r\n
  • all: Auto-regenerate discovery clients (#2575)\r\n(a784ae0)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • Bump auth to v0.4.1 (#2577)\r\n(090ff6c)
    • \r\n
\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from google.golang.org/api's\r\nchangelog.

\r\n
\r\n

0.181.0\r\n(2024-05-16)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2581)\r\n(6923ec8)
    • \r\n
  • all: Auto-regenerate discovery clients (#2583)\r\n(7b18e5d)
    • \r\n
  • all: Auto-regenerate discovery clients (#2585)\r\n(e35f76f)
    • \r\n
  • all: Auto-regenerate discovery clients (#2586)\r\n(afc4685)
    • \r\n
  • all: Auto-regenerate discovery clients (#2587)\r\n(86c9521)
    • \r\n
  • all: Auto-regenerate discovery clients (#2589)\r\n(c3f4828)
    • \r\n
\r\n

0.180.0\r\n(2024-05-10)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2578)\r\n(6604a5d)
    • \r\n
\r\n

0.179.0\r\n(2024-05-09)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2573)\r\n(887c564)
    • \r\n
  • all: Auto-regenerate discovery clients (#2575)\r\n(a784ae0)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • Bump auth to v0.4.1 (#2577)\r\n(090ff6c)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 4b79cc4\r\nchore(main): release 0.181.0 (#2582)
    • \r\n
  • c3f4828\r\nfeat(all): auto-regenerate discovery clients (#2589)
    • \r\n
  • 7d13175\r\nchore: update min version to 1.20 (#2588)
    • \r\n
  • 86c9521\r\nfeat(all): auto-regenerate discovery clients (#2587)
    • \r\n
  • afc4685\r\nfeat(all): auto-regenerate discovery clients (#2586)
    • \r\n
  • 4177d21\r\nchore(all): update all (#2584)
    • \r\n
  • e35f76f\r\nfeat(all): auto-regenerate discovery clients (#2585)
    • \r\n
  • 7b18e5d\r\nfeat(all): auto-regenerate discovery clients (#2583)
    • \r\n
  • 6923ec8\r\nfeat(all): auto-regenerate discovery clients (#2581)
    • \r\n
  • 6feeaaf\r\nchore(main): release 0.180.0 (#2579)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\nUpdates `google.golang.org/grpc` from 1.63.2 to 1.64.0\r\n
\r\nRelease notes\r\n

Sourced from google.golang.org/grpc's\r\nreleases.

\r\n
\r\n

Release 1.64.0

\r\n

API Changes

\r\n
    \r\n
  • stats: Deprecate InPayload.Data and\r\nOutPayload.Data; they were experimental and will be deleted\r\nin the next release (#7121)
    • \r\n
\r\n

Behavior Changes

\r\n
    \r\n
  • codec: Remove handling of environment variable\r\nGRPC_GO_ADVERTISE_COMPRESSORS to suppress setting supported\r\ncompressors in grpc-accept-encoding header. Compressors\r\nwill always be advertised, as they have been by default for some time\r\n(#7203)
    • \r\n
\r\n

New Features

\r\n
    \r\n
  • resolver/dns: Add SetMinResolutionInterval to set the\r\nminimum interval at which DNS re-resolutions may occur (#6962)\r\n
      \r\n
    • Special Thanks: @​HomayoonAlimohammadi
      • \r\n
    \r\n
    • \r\n
  • peer/peer: Implement the fmt.Stringer interface for\r\npretty printing Peer, and
    • \r\n
  • metadata/metadata: Implement the fmt.Stringer interface\r\nfor pretty printing MD (#7137)\r\n
      \r\n
    • Special Thanks: @​AnomalRoil
      • \r\n
    \r\n
    • \r\n
\r\n

Performance Improvements

\r\n
    \r\n
  • client: Improve RPC performance by reducing work while holding a\r\nlock (#7132)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • transport/server: Display the proper timeout value when keepalive\r\npings are not ack'd in time (#7038)\r\n
      \r\n
    • Special Thanks: @​BatmanAoD
      • \r\n
    \r\n
    • \r\n
  • channelz: Fix bug that was causing the subchannel's target to be\r\nunset (#7189)
    • \r\n
  • stats: Fix bug where peer was not set in context when calling stats\r\nhandler for OutPayload, InPayload, and\r\nEnd (#7096)
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • deps: Remove dependency on deprecated\r\ngithub.com/golang/protobuf module (#7122)
    • \r\n
\r\n

Documentation

\r\n
    \r\n
  • grpc: Deprecate WithBlock,\r\nWithReturnConnectionError,\r\nFailOnNonTempDialError which are ignored by\r\nNewClient (#7097)\r\n
      \r\n
    • Special Thanks: @​pellared
      • \r\n
    \r\n
    • \r\n
  • grpc: Deprecate Dial and DialContext.\r\nThese will continue to be supported throughout 1.x, but are deprecated\r\nto direct users to NewClient (See #7090\r\nfor more information)
    • \r\n
  • examples: Add custom lb example (#6691)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • fa274d7\r\nChange version to 1.64.0 (#7218)
    • \r\n
  • 6b413c8\r\nxds: Surround two Infof calls that use\r\npretty.ToJSON with V(2) checks (...
    • \r\n
  • 2dbbcef\r\nresolver/dns: Add docstring to SetMinResolutionInterval (#7217)
    • \r\n
  • 070d9c7\r\ncodes: replace %q to %d in error string when invalid code is an integer\r\n(#7188)
    • \r\n
  • 5d24ee2\r\nxds: store server config for LRS server in xdsresource.ClusterUpdate (#7191)
    • \r\n
  • c76f686\r\nadvancedTLS: Rename get root certs related pieces (#7207)
    • \r\n
  • f591e3b\r\ncodec: remove option to suppress setting supported compressors in\r\nheaders (#7...
    • \r\n
  • b4f7947\r\ngithub: remove dependabot (#7208)
    • \r\n
  • 0561c78\r\nclient: add user-friendly error message of LB policy update timed out\r\n(#7206)
    • \r\n
  • 9d9c1fb\r\npeer: remove change detector test (#7204)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore major version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's major version (unless you unignore this specific\r\ndependency's major version or upgrade to it yourself)\r\n- `@dependabot ignore minor version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's minor version (unless you unignore this specific\r\ndependency's minor version or upgrade to it yourself)\r\n- `@dependabot ignore ` will close this group update PR\r\nand stop Dependabot creating any more for the specific dependency\r\n(unless you unignore this specific dependency or upgrade to it yourself)\r\n- `@dependabot unignore ` will remove all of the ignore\r\nconditions of the specified dependency\r\n- `@dependabot unignore ` will\r\nremove the ignore condition of the specified dependency and ignore\r\nconditions\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump the common-golang-dependencies group with 2 updates ("}},{"before":null,"after":"cab436868e0cae46181ff4bae29da4a3098c54c5","ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4.4.1","pushedAt":"2024-05-20T23:13:06.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"---\nupdated-dependencies:\n- dependency-name: codecov/codecov-action\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"---"}},{"before":null,"after":"6c91fe7213b170ef5cb88616cba292baf7ed7429","ref":"refs/heads/dependabot/github_actions/github-actions-210f8dcca9","pushedAt":"2024-05-20T23:12:52.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"---\nupdated-dependencies:\n- dependency-name: actions/checkout\n dependency-type: direct:production\n update-type: version-update:semver-patch\n dependency-group: github-actions\n- dependency-name: github/codeql-action\n dependency-type: direct:production\n update-type: version-update:semver-patch\n dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"---"}},{"before":null,"after":"4ffc9a47f4a5c121e42e2aee54612577565a6380","ref":"refs/heads/dependabot/go_modules/common-golang-dependencies-7469a43f45","pushedAt":"2024-05-20T23:06:52.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"---\nupdated-dependencies:\n- dependency-name: google.golang.org/api\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n- dependency-name: google.golang.org/grpc\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"---"}},{"before":"f1072da1d6b792d34112b74b17ad486ba33466f7","after":"951f126b3c5e7ed4b266db2b597ebb018eb11088","ref":"refs/heads/master","pushedAt":"2024-05-14T04:36:51.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"docs(providers): info about the B2 S3-compatible endpoint (#3860)\n\nThis expands the note about using B2 storage as S3-compatible storage by\r\nproviding some additional context on where to get the endpoint value.\r\n\r\nIt also changes the redundant fully qualified \"Backblaze B2\" to \"B2\"\r\nin the note.","shortMessageHtmlLink":"docs(providers): info about the B2 S3-compatible endpoint (#3860)"}},{"before":"7c09b70b24e030e49dc69812a9783afc90d6f5fa","after":"f1072da1d6b792d34112b74b17ad486ba33466f7","ref":"refs/heads/master","pushedAt":"2024-05-14T04:34:21.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"docs(server): explain why --insecure cannot be used behind a reverse proxy (#3861)\n\nThe previous wording conveyed that eliding `--insecure` flag was required\r\nby the nginx (config) and not kopia itself. \r\nThe new wording expands and explains why the flag is needed. This helps\r\nwhen setting up kopia behind other reverse proxies, such as traefik.\r\n\r\nSee https://kopia.discourse.group/t/cant-connect-to-insecure-repository-server/871/4\r\nfor additional context.","shortMessageHtmlLink":"docs(server): explain why --insecure cannot be used behind a reverse …"}},{"before":"7fdc704cd3b277b0326fb5ba3f23aa5fa1f6dfcf","after":null,"ref":"refs/heads/dependabot/github_actions/ossf/scorecard-action-2.3.3","pushedAt":"2024-05-14T04:12:40.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"c0cf18fa368134b236ff06fd842d517ab4134cbd","after":"7c09b70b24e030e49dc69812a9783afc90d6f5fa","ref":"refs/heads/master","pushedAt":"2024-05-14T04:12:39.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#3868)\n\nBumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action)\r\nfrom 2.3.1 to 2.3.3.\r\n
\r\nRelease notes\r\n

Sourced from ossf/scorecard-action's\r\nreleases.

\r\n
\r\n

v2.3.3

\r\n
\r\n

[!NOTE]
\r\nThere is no v2.3.2 release as a step was skipped in the release process.\r\nThis was fixed and re-released under the v2.3.3 tag

\r\n
\r\n

What's Changed

\r\n
    \r\n
  • :seedling: Bump github.com/ossf/scorecard/v4 (v4.13.1) to\r\ngithub.com/ossf/scorecard/v5 (v5.0.0-rc1) by @​spencerschrock\r\nin ossf/scorecard-action#1366
    • \r\n
  • :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to\r\nv5.0.0-rc2 by @​spencerschrock\r\nin ossf/scorecard-action#1374
    • \r\n
  • :seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to\r\nv5.0.0-rc2.0.20240509182734-7ce860946928 by @​spencerschrock\r\nin ossf/scorecard-action#1377
    • \r\n
\r\n

For a full changelist of what these include, see the v5.0.0-rc1\r\nand v5.0.0-rc2\r\nrelease notes.

\r\n

Documentation

\r\n
    \r\n
  • :book: Move token discussion out of main README. by @​spencerschrock\r\nin ossf/scorecard-action#1279
    • \r\n
  • :book: link to ossf/scorecard workflow instead of\r\nmaintaining an example by @​spencerschrock\r\nin ossf/scorecard-action#1352
    • \r\n
  • :book: update api links to new scorecard.dev site by @​spencerschrock\r\nin ossf/scorecard-action#1376
    • \r\n
\r\n

Full Changelog: https://github.com/ossf/scorecard-action/compare/v2.3.1...v2.3.3

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • dc50aa9\r\n:seedling: Bump docker tag for v2.3.3 release (#1368)
    • \r\n
  • 8ff5700\r\n:seedling: Bump github.com/ossf/scorecard/v5 from v5.0.0-rc2 to\r\nv5.0.0-rc2.0....
    • \r\n
  • 8ba5e73\r\nupdate api links to new scorecard.dev site (#1376)
    • \r\n
  • 92ddde3\r\nBump github.com/ossf/scorecard/v5 from v5.0.0-rc1 to v5.0.0-rc2 (#1374)
    • \r\n
  • 6c55905\r\n:seedling: Bump golang.org/x/net from 0.24.0 to 0.25.0 (#1373)
    • \r\n
  • 09bb953\r\n:seedling: Bump distroless/base in the docker-images group (#1372)
    • \r\n
  • 1511e13\r\n:seedling: Bump the github-actions group across 1 directory with 6\r\nupdates (#...
    • \r\n
  • df66cd8\r\n:seedling: Bump the docker-images group with 2 updates (#1370)
    • \r\n
  • fad9a3c\r\n:seedling: Bump distroless/base in the docker-images group (#1364)
    • \r\n
  • 1e01a30\r\n:seedling: Bump the github-actions group with 3 updates (#1365)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ossf/scorecard-action&package-manager=github_actions&previous-version=2.3.1&new-version=2.3.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3 (#3868)"}},{"before":"f41899346241f8046c85093dac74c783b8c9113c","after":null,"ref":"refs/heads/dependabot/github_actions/github-actions-6b79df23e2","pushedAt":"2024-05-14T04:12:01.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"45dad0291ec93b841c8afdc07b106db63e6ed921","after":"c0cf18fa368134b236ff06fd842d517ab4134cbd","ref":"refs/heads/master","pushedAt":"2024-05-14T04:12:00.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump github/codeql-action from 3.25.3 to 3.25.5 in the github-actions group (#3867)\n\nBumps the github-actions group with 1 update:\r\n[github/codeql-action](https://github.com/github/codeql-action).\r\n\r\nUpdates `github/codeql-action` from 3.25.3 to 3.25.5\r\n
\r\nChangelog\r\n

Sourced from github/codeql-action's\r\nchangelog.

\r\n
\r\n

CodeQL Action Changelog

\r\n

See the releases\r\npage for the relevant changes to the CodeQL CLI and language\r\npacks.

\r\n

Note that the only difference between v2 and\r\nv3 of the CodeQL Action is the node version they support,\r\nwith v3 running on node 20 while we continue to release\r\nv2 to support running on node 16. For example\r\n3.22.11 was the first v3 release and is\r\nfunctionally identical to 2.22.11. This approach ensures an\r\neasy way to track exactly which features are included in different\r\nversions, indicated by the minor and patch version numbers.

\r\n

[UNRELEASED]

\r\n

No user facing changes.

\r\n

3.25.5 - 13 May 2024

\r\n
    \r\n
  • Add a compatibility matrix of supported CodeQL Action, CodeQL CLI,\r\nand GitHub Enterprise Server versions to the https://github.com/github/codeql-action/blob/main/README.md.\r\n#2273
    • \r\n
  • Avoid printing out a warning for a missing on.push\r\ntrigger when the CodeQL Action is triggered via a\r\nworkflow_call event. #2274
    • \r\n
  • The tools: latest input to the init Action\r\nhas been renamed to tools: linked. This option specifies\r\nthat the Action should use the tools shipped at the same time as the\r\nAction. The old name will continue to work for backwards compatibility,\r\nbut we recommend that new workflows use the new name. #2281
    • \r\n
\r\n

3.25.4 - 08 May 2024

\r\n
    \r\n
  • Update default CodeQL bundle version to 2.17.2. #2270
    • \r\n
\r\n

3.25.3 - 25 Apr 2024

\r\n
    \r\n
  • Update default CodeQL bundle version to 2.17.1. #2247
    • \r\n
  • Workflows running on macos-latest using CodeQL CLI\r\nversions before v2.15.1 will need to either upgrade their CLI version to\r\nv2.15.1 or newer, or change the platform to an Intel MacOS runner, such\r\nas macos-12. ARM machines with SIP disabled, including the\r\nnewest macos-latest image, are unsupported for CLI versions\r\nbefore 2.15.1. #2261
    • \r\n
\r\n

3.25.2 - 22 Apr 2024

\r\n

No user facing changes.

\r\n

3.25.1 - 17 Apr 2024

\r\n
    \r\n
  • We are rolling out a feature in April/May 2024 that improves the\r\nreliability and performance of analyzing code when analyzing a compiled\r\nlanguage with the autobuild build\r\nmode. #2235
    • \r\n
  • Fix a bug where the init Action would fail if\r\n--overwrite was specified in\r\nCODEQL_ACTION_EXTRA_OPTIONS. #2245
    • \r\n
\r\n

3.25.0 - 15 Apr 2024

\r\n
    \r\n
  • \r\n

    The deprecated feature for extracting dependencies for a Python\r\nanalysis has been removed. #2224

    \r\n

    As a result, the following inputs and environment variables are now\r\nignored:

    \r\n
      \r\n
    • The setup-python-dependencies input to the\r\ninit Action
      • \r\n
    • The\r\nCODEQL_ACTION_DISABLE_PYTHON_DEPENDENCY_INSTALLATION\r\nenvironment variable
      • \r\n
    \r\n

    We recommend removing any references to these from your workflows.\r\nFor more information, see the release notes for CodeQL Action v3.23.0\r\nand v2.23.0.

    \r\n
    • \r\n
  • \r\n

    Automatically overwrite an existing database if found on the\r\nfilesystem. #2229

    \r\n
    • \r\n
  • \r\n

    Bump the minimum CodeQL bundle version to 2.12.6. #2232

    \r\n
    • \r\n
  • \r\n

    A more relevant log message and a diagnostic are now emitted when the\r\nfile program is not installed on a Linux runner, but is\r\nrequired for Go tracing to succeed. #2234

    \r\n
    • \r\n
\r\n

3.24.10 - 05 Apr 2024

\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • b7cec75\r\nMerge pull request #2287\r\nfrom github/update-v3.25.5-4a5197247
    • \r\n
  • 6778fe4\r\nUpdate changelog for v3.25.5
    • \r\n
  • 4a51972\r\nMerge pull request #2280\r\nfrom github/henrymercer/on-demand-ffs
    • \r\n
  • a8c32fd\r\nMerge pull request #2283\r\nfrom github/henrymercer/disable-fail-fast
    • \r\n
  • f73b0b7\r\nDisable fail fast for non-generated workflows
    • \r\n
  • c59e052\r\nDisable fail fast in generated workflows
    • \r\n
  • 33e416c\r\nComment that legacyApi is false by default
    • \r\n
  • 67f8a36\r\nMerge branch 'main' into henrymercer/on-demand-ffs
    • \r\n
  • 4995c49\r\nMerge pull request #2282\r\nfrom github/henrymercer/no-build-mode-tracing-improv...
    • \r\n
  • def4d2c\r\nMerge pull request #2273\r\nfrom github/aeisenberg/specify-versions
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github/codeql-action&package-manager=github_actions&previous-version=3.25.3&new-version=3.25.5)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore major version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's major version (unless you unignore this specific\r\ndependency's major version or upgrade to it yourself)\r\n- `@dependabot ignore minor version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's minor version (unless you unignore this specific\r\ndependency's minor version or upgrade to it yourself)\r\n- `@dependabot ignore ` will close this group update PR\r\nand stop Dependabot creating any more for the specific dependency\r\n(unless you unignore this specific dependency or upgrade to it yourself)\r\n- `@dependabot unignore ` will remove all of the ignore\r\nconditions of the specified dependency\r\n- `@dependabot unignore ` will\r\nremove the ignore condition of the specified dependency and ignore\r\nconditions\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump github/codeql-action from 3.25.3 to 3.25.5 in the g…"}},{"before":"f577614baa15beb17bfc55cecc307551c12d1fdf","after":"45dad0291ec93b841c8afdc07b106db63e6ed921","ref":"refs/heads/master","pushedAt":"2024-05-14T04:11:21.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0 (#3866)\n\nBumps [github.com/fatih/color](https://github.com/fatih/color) from\r\n1.16.0 to 1.17.0.\r\n
\r\nRelease notes\r\n

Sourced from github.com/fatih/color's\r\nreleases.

\r\n
\r\n

v1.17.0

\r\n

What's Changed

\r\n
    \r\n
  • Fix multi-parameter println spacing by @​klauspost in fatih/color#228
    • \r\n
  • ci: update Go and Staticcheck versions by @​fatih in fatih/color#222
    • \r\n
  • Bump golang.org/x/sys from 0.14.0 to 0.17.0 by @​dependabot in fatih/color#221
    • \r\n
  • Bump actions/setup-go from 4 to 5 by @​dependabot in fatih/color#217
    • \r\n
  • Bump golang.org/x/sys from 0.17.0 to 0.18.0 by @​dependabot in fatih/color#224
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​klauspost\r\nmade their first contribution in fatih/color#228
    • \r\n
\r\n

Full Changelog: https://github.com/fatih/color/compare/v1.16.0...v1.17.0

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • b6598b1\r\nMerge pull request #228 from\r\nklauspost/fix-println-issue-218
    • \r\n
  • 00b1811\r\nFix multi-parameter println spacing
    • \r\n
  • 04994a8\r\nMerge pull request #224 from\r\nfatih/dependabot/go_modules/golang.org/x/sys-0.18.0
    • \r\n
  • 7526cad\r\nMerge branch 'main' into\r\ndependabot/go_modules/golang.org/x/sys-0.18.0
    • \r\n
  • 8d058ca\r\nMerge pull request #222 from\r\nfatih/ci-updates
    • \r\n
  • 2ac809f\r\nBump golang.org/x/sys from 0.17.0 to 0.18.0
    • \r\n
  • 51a7bbf\r\nci: update Go and Staticcheck versions
    • \r\n
  • 799c49c\r\nMerge pull request #217 from\r\nfatih/dependabot/github_actions/actions/setup-go-5
    • \r\n
  • f8e0ec9\r\nMerge branch 'main' into\r\ndependabot/github_actions/actions/setup-go-5
    • \r\n
  • 298abd8\r\nMerge pull request #221 from\r\nfatih/dependabot/go_modules/golang.org/x/sys-0.17.0
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/fatih/color&package-manager=go_modules&previous-version=1.16.0&new-version=1.17.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0 (#3866)"}},{"before":"c4061c68d1dc3c901db5167a7c100a8e5fced3e8","after":null,"ref":"refs/heads/dependabot/go_modules/github.com/fatih/color-1.17.0","pushedAt":"2024-05-14T04:11:21.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"78b3bb09ba1d55f6a400a9e1409ecda149a60e0e","after":null,"ref":"refs/heads/dependabot/go_modules/common-golang-dependencies-435f5c0a0e","pushedAt":"2024-05-14T04:08:40.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"}},{"before":"05fedcff602bf4f04d8b45e7f20196501b5e323e","after":"f577614baa15beb17bfc55cecc307551c12d1fdf","ref":"refs/heads/master","pushedAt":"2024-05-14T04:08:39.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"build(deps): bump the common-golang-dependencies group with 4 updates (#3865)\n\nBumps the common-golang-dependencies group with 4 updates:\r\n[cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go),\r\n[github.com/prometheus/client_golang](https://github.com/prometheus/client_golang),\r\n[google.golang.org/api](https://github.com/googleapis/google-api-go-client)\r\nand google.golang.org/protobuf.\r\n\r\nUpdates `cloud.google.com/go/storage` from 1.40.0 to 1.41.0\r\n
\r\nRelease notes\r\n

Sourced from cloud.google.com/go/storage's\r\nreleases.

\r\n
\r\n

storage: v1.41.0

\r\n

1.41.0\r\n(2024-05-13)

\r\n

Features

\r\n
    \r\n
  • storage/control: Make Managed Folders operations\r\npublic (264a6dc)
    • \r\n
  • storage: Support for soft delete policies and\r\nrestore (#9520)\r\n(985deb2)
    • \r\n
\r\n

Bug Fixes

\r\n
    \r\n
  • storage/control: An existing resource pattern value\r\nprojects/{project}/buckets/{bucket}/managedFolders/{managedFolder=**}\r\nto resource definition storage.googleapis.com/ManagedFolder\r\nis removed (3e25053)
    • \r\n
  • storage: Add\r\ninternaloption.WithDefaultEndpointTemplate (3b41408)
    • \r\n
  • storage: Bump x/net to v0.24.0 (ba31ed5)
    • \r\n
  • storage: Disable gax retries for gRPC (#9747)\r\n(bbfc0ac)
    • \r\n
  • storage: More strongly match regex (#9706)\r\n(3cfc8eb),\r\nrefs #9705
    • \r\n
  • storage: Retry net.OpError on connection reset (#10154)\r\n(54fab10),\r\nrefs #9478
    • \r\n
  • storage: Wrap error when MaxAttempts is hit (#9767)\r\n(9cb262b),\r\nrefs #9720
    • \r\n
\r\n

Documentation

\r\n
    \r\n
  • storage/control: Update storage control\r\ndocumentation and add PHP for publishing (1d757c6)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 9fb390d\r\nchore(main): release spanner 1.41.0 (#7068)
    • \r\n
  • 7231644\r\nchore(all): auto-regenerate gapics (#7110)
    • \r\n
  • 4f0456e\r\nchore(all): auto-regenerate gapics (#7085)
    • \r\n
  • 83f12d5\r\nchore(main): release bigquery 1.44.0 (#6990)
    • \r\n
  • 8cd9468\r\nchore(main): release pubsub 1.27.0 (#7069)
    • \r\n
  • 756f7bf\r\nchore(main): release firestore 1.9.0 (#6987)
    • \r\n
  • a77ada8\r\nchore(main): release datastore 1.10.0 (#7067)
    • \r\n
  • d16d9af\r\nchore(main): release logging 1.6.0 (#7070)
    • \r\n
  • 601c77a\r\nfeat(bigquery): add default partition expiration to Dataset (#7096)
    • \r\n
  • eddaf71\r\ntest(pubsublite): fix flaky\r\nTestIntegration_PublishSubscribeSinglePartition (...
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\nUpdates `github.com/prometheus/client_golang` from 1.19.0 to 1.19.1\r\n
\r\nRelease notes\r\n

Sourced from github.com/prometheus/client_golang's\r\nreleases.

\r\n
\r\n

v1.19.1

\r\n

What's Changed

\r\n
    \r\n
  • Security patches for golang.org/x/sys and\r\ngoogle.golang.org/protobuf
    • \r\n
\r\n

New Contributors

\r\n
    \r\n
  • @​lukasauk\r\nmade their first contribution in prometheus/client_golang#1494
    • \r\n
\r\n

Full Changelog: https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1

\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from github.com/prometheus/client_golang's\r\nchangelog.

\r\n
\r\n

Unreleased

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 6e3f4b1\r\nCut 1.19.1 (#1494)
    • \r\n
  • cad1bfa\r\nMerge pull request #1454\r\nfrom prometheus/small-nits
    • \r\n
  • 0aa8c9f\r\nRephrase incompatibility with common v0.48.0
    • \r\n
  • See full diff in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\nUpdates `google.golang.org/api` from 0.177.0 to 0.178.0\r\n
\r\nRelease notes\r\n

Sourced from google.golang.org/api's\r\nreleases.

\r\n
\r\n

v0.178.0

\r\n

0.178.0\r\n(2024-05-07)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2561)\r\n(2d22d11)
    • \r\n
  • all: Auto-regenerate discovery clients (#2564)\r\n(b313e4b)
    • \r\n
  • all: Auto-regenerate discovery clients (#2565)\r\n(0843d21)
    • \r\n
  • all: Auto-regenerate discovery clients (#2567)\r\n(76b27f1)
    • \r\n
  • all: Auto-regenerate discovery clients (#2568)\r\n(d922e3b)
    • \r\n
  • all: Auto-regenerate discovery clients (#2570)\r\n(f2da582)
    • \r\n
  • all: Auto-regenerate discovery clients (#2571)\r\n(0c976dc)
    • \r\n
  • gen: Add internaloption.EnableNewAuthLibrary (#2519)\r\n(8c74bb8)
    • \r\n
  • google-api-go-client: Add x-goog-api-version header\r\n(#2563)\r\n(fe54ffd)
    • \r\n
\r\n

Documentation

\r\n
    \r\n
  • Update commit style in CONTRIBUTING (#2566)\r\n(5e44215)
    • \r\n
\r\n
\r\n
\r\n
\r\nChangelog\r\n

Sourced from google.golang.org/api's\r\nchangelog.

\r\n
\r\n

0.178.0\r\n(2024-05-07)

\r\n

Features

\r\n
    \r\n
  • all: Auto-regenerate discovery clients (#2561)\r\n(2d22d11)
    • \r\n
  • all: Auto-regenerate discovery clients (#2564)\r\n(b313e4b)
    • \r\n
  • all: Auto-regenerate discovery clients (#2565)\r\n(0843d21)
    • \r\n
  • all: Auto-regenerate discovery clients (#2567)\r\n(76b27f1)
    • \r\n
  • all: Auto-regenerate discovery clients (#2568)\r\n(d922e3b)
    • \r\n
  • all: Auto-regenerate discovery clients (#2570)\r\n(f2da582)
    • \r\n
  • all: Auto-regenerate discovery clients (#2571)\r\n(0c976dc)
    • \r\n
  • gen: Add internaloption.EnableNewAuthLibrary (#2519)\r\n(8c74bb8)
    • \r\n
  • google-api-go-client: Add x-goog-api-version header\r\n(#2563)\r\n(fe54ffd)
    • \r\n
\r\n

Documentation

\r\n
    \r\n
  • Update commit style in CONTRIBUTING (#2566)\r\n(5e44215)
    • \r\n
\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • 64ed0f8\r\nchore(main): release 0.178.0 (#2562)
    • \r\n
  • 0c976dc\r\nfeat(all): auto-regenerate discovery clients (#2571)
    • \r\n
  • 8c74bb8\r\nfeat(gen): Add internaloption.EnableNewAuthLibrary (#2519)
    • \r\n
  • b5ae946\r\nchore(all): update all (#2569)
    • \r\n
  • f2da582\r\nfeat(all): auto-regenerate discovery clients (#2570)
    • \r\n
  • d922e3b\r\nfeat(all): auto-regenerate discovery clients (#2568)
    • \r\n
  • 76b27f1\r\nfeat(all): auto-regenerate discovery clients (#2567)
    • \r\n
  • 5e44215\r\ndocs: update commit style in CONTRIBUTING (#2566)
    • \r\n
  • 0843d21\r\nfeat(all): auto-regenerate discovery clients (#2565)
    • \r\n
  • fe54ffd\r\nfeat(google-api-go-client): add x-goog-api-version header (#2563)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\nUpdates `google.golang.org/protobuf` from 1.34.0 to 1.34.1\r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore major version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's major version (unless you unignore this specific\r\ndependency's major version or upgrade to it yourself)\r\n- `@dependabot ignore minor version` will close this\r\ngroup update PR and stop Dependabot creating any more for the specific\r\ndependency's minor version (unless you unignore this specific\r\ndependency's minor version or upgrade to it yourself)\r\n- `@dependabot ignore ` will close this group update PR\r\nand stop Dependabot creating any more for the specific dependency\r\n(unless you unignore this specific dependency or upgrade to it yourself)\r\n- `@dependabot unignore ` will remove all of the ignore\r\nconditions of the specified dependency\r\n- `@dependabot unignore ` will\r\nremove the ignore condition of the specified dependency and ignore\r\nconditions\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump the common-golang-dependencies group with 4 updates ("}},{"before":null,"after":"7fdc704cd3b277b0326fb5ba3f23aa5fa1f6dfcf","ref":"refs/heads/dependabot/github_actions/ossf/scorecard-action-2.3.3","pushedAt":"2024-05-13T23:51:25.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3\n\nBumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.1 to 2.3.3.\n- [Release notes](https://github.com/ossf/scorecard-action/releases)\n- [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md)\n- [Commits](https://github.com/ossf/scorecard-action/compare/0864cf19026789058feabb7e87baa5f140aac736...dc50aa9510b46c811795eb24b2f1ba02a914e534)\n\n---\nupdated-dependencies:\n- dependency-name: ossf/scorecard-action\n dependency-type: direct:production\n update-type: version-update:semver-patch\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump ossf/scorecard-action from 2.3.1 to 2.3.3"}},{"before":null,"after":"f41899346241f8046c85093dac74c783b8c9113c","ref":"refs/heads/dependabot/github_actions/github-actions-6b79df23e2","pushedAt":"2024-05-13T23:51:09.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump github/codeql-action in the github-actions group\n\nBumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).\n\n\nUpdates `github/codeql-action` from 3.25.3 to 3.25.5\n- [Release notes](https://github.com/github/codeql-action/releases)\n- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/github/codeql-action/compare/d39d31e687223d841ef683f52467bd88e9b21c14...b7cec7526559c32f1616476ff32d17ba4c59b2d6)\n\n---\nupdated-dependencies:\n- dependency-name: github/codeql-action\n dependency-type: direct:production\n update-type: version-update:semver-patch\n dependency-group: github-actions\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump github/codeql-action in the github-actions group"}},{"before":null,"after":"c4061c68d1dc3c901db5167a7c100a8e5fced3e8","ref":"refs/heads/dependabot/go_modules/github.com/fatih/color-1.17.0","pushedAt":"2024-05-13T23:15:59.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0\n\nBumps [github.com/fatih/color](https://github.com/fatih/color) from 1.16.0 to 1.17.0.\n- [Release notes](https://github.com/fatih/color/releases)\n- [Commits](https://github.com/fatih/color/compare/v1.16.0...v1.17.0)\n\n---\nupdated-dependencies:\n- dependency-name: github.com/fatih/color\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump github.com/fatih/color from 1.16.0 to 1.17.0"}},{"before":null,"after":"78b3bb09ba1d55f6a400a9e1409ecda149a60e0e","ref":"refs/heads/dependabot/go_modules/common-golang-dependencies-435f5c0a0e","pushedAt":"2024-05-13T23:15:48.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump the common-golang-dependencies group with 4 updates\n\nBumps the common-golang-dependencies group with 4 updates: [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go), [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang), [google.golang.org/api](https://github.com/googleapis/google-api-go-client) and google.golang.org/protobuf.\n\n\nUpdates `cloud.google.com/go/storage` from 1.40.0 to 1.41.0\n- [Release notes](https://github.com/googleapis/google-cloud-go/releases)\n- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)\n- [Commits](https://github.com/googleapis/google-cloud-go/compare/spanner/v1.40.0...spanner/v1.41.0)\n\nUpdates `github.com/prometheus/client_golang` from 1.19.0 to 1.19.1\n- [Release notes](https://github.com/prometheus/client_golang/releases)\n- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1)\n\nUpdates `google.golang.org/api` from 0.177.0 to 0.178.0\n- [Release notes](https://github.com/googleapis/google-api-go-client/releases)\n- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)\n- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.177.0...v0.178.0)\n\nUpdates `google.golang.org/protobuf` from 1.34.0 to 1.34.1\n\n---\nupdated-dependencies:\n- dependency-name: cloud.google.com/go/storage\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n- dependency-name: github.com/prometheus/client_golang\n dependency-type: direct:production\n update-type: version-update:semver-patch\n dependency-group: common-golang-dependencies\n- dependency-name: google.golang.org/api\n dependency-type: direct:production\n update-type: version-update:semver-minor\n dependency-group: common-golang-dependencies\n- dependency-name: google.golang.org/protobuf\n dependency-type: direct:production\n update-type: version-update:semver-patch\n dependency-group: common-golang-dependencies\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump the common-golang-dependencies group with 4 updates"}},{"before":"2b92388286888479350479a7e6c82d9155368910","after":"05fedcff602bf4f04d8b45e7f20196501b5e323e","ref":"refs/heads/master","pushedAt":"2024-05-13T22:10:37.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"julio-lopez","name":"Julio López","path":"/julio-lopez","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/1953782?s=80&v=4"},"commit":{"message":"fix(general): change pbkdf2 min salt length to 16 bytes (#3864)\n\nChanging the minimum salt length of Pbkdf2 key derivation\r\nalgorithm to the NIST recommended minimum of 16 bytes.\r\n\r\nThis matches the minimum salt for scrypt-based key derivation.","shortMessageHtmlLink":"fix(general): change pbkdf2 min salt length to 16 bytes (#3864)"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEV5QS9QA","startCursor":null,"endCursor":null}},"title":"Activity · kopia/kopia"}