Permalink
Comparing changes
Choose two branches to see what’s changed or to start a new pull request.
If you need to, you can also or
learn more about diff comparisons.
Open a pull request
Create a new pull request by comparing changes across two branches. If you need to, you can also .
Learn more about diff comparisons here.
...
- 20 commits
- 6 files changed
- 3 contributors
Commits on Aug 22, 2025
-
chore(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2…
….4.0 (#253) Bumps [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) from 2.3.0 to 2.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/go-viper/mapstructure/releases">github.com/go-viper/mapstructure/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.0</h2> <h2>What's Changed</h2> <ul> <li>refactor: replace interface{} with any by <a href="https://github.com/sagikazarmark"><code>@sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/115">go-viper/mapstructure#115</a></li> <li>build(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/go-viper/mapstructure/pull/114">go-viper/mapstructure#114</a></li> <li>Generic tests by <a href="https://github.com/sagikazarmark"><code>@sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/118">go-viper/mapstructure#118</a></li> <li>Fix godoc reference link in README.md by <a href="https://github.com/peczenyj"><code>@peczenyj</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/107">go-viper/mapstructure#107</a></li> <li>feat: add StringToTimeLocationHookFunc to convert strings to *time.Location by <a href="https://github.com/ErfanMomeniii"><code>@ErfanMomeniii</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/117">go-viper/mapstructure#117</a></li> <li>feat: add back previous StringToSlice as a weak function by <a href="https://github.com/sagikazarmark"><code>@sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/119">go-viper/mapstructure#119</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/ErfanMomeniii"><code>@ErfanMomeniii</code></a> made their first contribution in <a href="https://redirect.github.com/go-viper/mapstructure/pull/117">go-viper/mapstructure#117</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0">https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5"><code>b9794a5</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/119">#119</a> from go-viper/string-to-weak-slice</li> <li><a href="https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30"><code>17cdcb0</code></a> feat: add back previous StringToSlice as a weak function</li> <li><a href="https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19"><code>3caca36</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/117">#117</a> from ErfanMomeniii/main</li> <li><a href="https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a"><code>9a861bc</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/107">#107</a> from peczenyj/patch-2</li> <li><a href="https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c"><code>86ed5b5</code></a> refactor: update</li> <li><a href="https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6"><code>ace5b4e</code></a> chore: add interface any linter</li> <li><a href="https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e"><code>1a4f1ae</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/118">#118</a> from go-viper/generic-tests</li> <li><a href="https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63"><code>a268909</code></a> fix: lint</li> <li><a href="https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd"><code>17f1fd4</code></a> test: add more comments</li> <li><a href="https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f"><code>b48c856</code></a> test: expand tests</li> <li>Additional commits viewable in <a href="https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/coder/terraform-provider-coderd/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on Aug 26, 2025
-
chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0 (#…
…254) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.10.0 to 1.11.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stretchr/testify/releases">github.com/stretchr/testify's releases</a>.</em></p> <blockquote> <h2>v1.11.0</h2> <h2>What's Changed</h2> <h3>Functional Changes</h3> <p>v1.11.0 Includes a number of performance improvements.</p> <ul> <li>Call stack perf change for CallerInfo by <a href="https://github.com/mikeauclair"><code>@mikeauclair</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1614">stretchr/testify#1614</a></li> <li>Lazily render mock diff output on successful match by <a href="https://github.com/mikeauclair"><code>@mikeauclair</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1615">stretchr/testify#1615</a></li> <li>assert: check early in Eventually, EventuallyWithT, and Never by <a href="https://github.com/cszczepaniak"><code>@cszczepaniak</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1427">stretchr/testify#1427</a></li> <li>assert: add IsNotType by <a href="https://github.com/bartventer"><code>@bartventer</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1730">stretchr/testify#1730</a></li> <li>assert.JSONEq: shortcut if same strings by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1754">stretchr/testify#1754</a></li> <li>assert.YAMLEq: shortcut if same strings by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1755">stretchr/testify#1755</a></li> <li>assert: faster and simpler isEmpty using reflect.Value.IsZero by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1761">stretchr/testify#1761</a></li> <li>suite: faster methods filtering (internal refactor) by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1758">stretchr/testify#1758</a></li> </ul> <h3>Fixes</h3> <ul> <li>assert.ErrorAs: log target type by <a href="https://github.com/craig65535"><code>@craig65535</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1345">stretchr/testify#1345</a></li> <li>Fix failure message formatting for Positive and Negative asserts in <a href="https://redirect.github.com/stretchr/testify/pull/1062">stretchr/testify#1062</a></li> <li>Improve ErrorIs message when error is nil but an error was expected by <a href="https://github.com/tsioftas"><code>@tsioftas</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1681">stretchr/testify#1681</a></li> <li>fix Subset/NotSubset when calling with mixed input types by <a href="https://github.com/siliconbrain"><code>@siliconbrain</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1729">stretchr/testify#1729</a></li> <li>Improve ErrorAs failure message when error is nil by <a href="https://github.com/ccoVeille"><code>@ccoVeille</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1734">stretchr/testify#1734</a></li> <li>mock.AssertNumberOfCalls: improve error msg by <a href="https://github.com/3scalation"><code>@3scalation</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1743">stretchr/testify#1743</a></li> </ul> <h3>Documentation, Build & CI</h3> <ul> <li>docs: Fix typo in README by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1688">stretchr/testify#1688</a></li> <li>Replace deprecated io/ioutil with io and os by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1684">stretchr/testify#1684</a></li> <li>Document consequences of calling t.FailNow() by <a href="https://github.com/greg0ire"><code>@greg0ire</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1710">stretchr/testify#1710</a></li> <li>chore: update docs for Unset <a href="https://redirect.github.com/stretchr/testify/issues/1621">#1621</a> by <a href="https://github.com/techfg"><code>@techfg</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1709">stretchr/testify#1709</a></li> <li>README: apply gofmt to examples by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1687">stretchr/testify#1687</a></li> <li>refactor: use %q and %T to simplify fmt.Sprintf by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1674">stretchr/testify#1674</a></li> <li>Propose Christophe Colombier (ccoVeille) as approver by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1716">stretchr/testify#1716</a></li> <li>Update documentation for the Error function in assert or require package by <a href="https://github.com/architagr"><code>@architagr</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1675">stretchr/testify#1675</a></li> <li>assert: remove deprecated build constraints by <a href="https://github.com/alexandear"><code>@alexandear</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1671">stretchr/testify#1671</a></li> <li>assert: apply gofumpt to internal test suite by <a href="https://github.com/ccoVeille"><code>@ccoVeille</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1739">stretchr/testify#1739</a></li> <li>CI: fix shebang in .ci.*.sh scripts by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1746">stretchr/testify#1746</a></li> <li>assert,require: enable parallel testing on (almost) all top tests by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1747">stretchr/testify#1747</a></li> <li>suite.Passed: add one more status test report by <a href="https://github.com/Ararsa-Derese"><code>@Ararsa-Derese</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1706">stretchr/testify#1706</a></li> <li>Add Helper() method in internal mocks and assert.CollectT by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1423">stretchr/testify#1423</a></li> <li>assert.Same/NotSame: improve usage of Sprintf by <a href="https://github.com/ccoVeille"><code>@ccoVeille</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1742">stretchr/testify#1742</a></li> <li>mock: enable parallel testing on internal testsuite by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1756">stretchr/testify#1756</a></li> <li>suite: cleanup use of 'testing' internals at runtime by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1751">stretchr/testify#1751</a></li> <li>assert: check test failure message for Empty and NotEmpty by <a href="https://github.com/ccoVeille"><code>@ccoVeille</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1745">stretchr/testify#1745</a></li> <li>deps: fix dependency cycle with objx (again) by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1567">stretchr/testify#1567</a></li> <li>assert.Empty: comprehensive doc of "Empty"-ness rules by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1753">stretchr/testify#1753</a></li> <li>doc: improve godoc of top level 'testify' package by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1760">stretchr/testify#1760</a></li> <li>assert.ErrorAs: simplify retrieving the type name by <a href="https://github.com/ccoVeille"><code>@ccoVeille</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1740">stretchr/testify#1740</a></li> <li>assert.EqualValues: improve test coverage to 100% by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1763">stretchr/testify#1763</a></li> <li>suite.Run: simplify running of Setup/TeardownSuite by <a href="https://github.com/renzoarreaza"><code>@renzoarreaza</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1769">stretchr/testify#1769</a></li> <li>assert.CallerInfo: micro optimization by using LastIndexByte by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1767">stretchr/testify#1767</a></li> <li>assert.CallerInfo: micro cleanup by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1768">stretchr/testify#1768</a></li> <li>assert: refactor Test<em>FileExists and Test</em>DirExists tests to enable parallel testing by <a href="https://github.com/dolmen"><code>@dolmen</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1766">stretchr/testify#1766</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/stretchr/testify/commit/b7801fbf5cd58d201296d5d0e132d1849966dbd4"><code>b7801fb</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1778">#1778</a> from stretchr/dependabot/github_actions/actions/chec...</li> <li><a href="https://github.com/stretchr/testify/commit/69831f3b08c40d56a09d0be93e9d5ae034f1590b"><code>69831f3</code></a> build(deps): bump actions/checkout from 4 to 5</li> <li><a href="https://github.com/stretchr/testify/commit/a53be35c3b0cfcd5189cffcfd75df60ea581104c"><code>a53be35</code></a> Improve captureTestingT helper</li> <li><a href="https://github.com/stretchr/testify/commit/aafb604176db7e1f2c9810bc90d644291d057687"><code>aafb604</code></a> mock: improve formatting of error message</li> <li><a href="https://github.com/stretchr/testify/commit/7218e0390acd2aea3edb18574110ec2753c0aeef"><code>7218e03</code></a> improve error msg</li> <li><a href="https://github.com/stretchr/testify/commit/929a2126c2702df436312656a0304580b526c6e9"><code>929a212</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1758">#1758</a> from stretchr/dolmen/suite-faster-method-filtering</li> <li><a href="https://github.com/stretchr/testify/commit/bc7459ec38128532ff32f23cfab4ea0b725210f2"><code>bc7459e</code></a> suite: faster filtering of methods (-testify.m)</li> <li><a href="https://github.com/stretchr/testify/commit/7d37b5c962954410bcd7a71ff3a77c79514056d1"><code>7d37b5c</code></a> suite: refactor methodFilter</li> <li><a href="https://github.com/stretchr/testify/commit/c58bc90e5c2a1d1bd5d99e8b4708023ec5a97d46"><code>c58bc90</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1764">#1764</a> from stretchr/dolmen/suite-refactor-stats-for-readab...</li> <li><a href="https://github.com/stretchr/testify/commit/87101a6e4a5859cee372b6ded7821787b3190cb7"><code>87101a6</code></a> suite.Run: refactor handling of stats</li> <li>Additional commits viewable in <a href="https://github.com/stretchr/testify/compare/v1.10.0...v1.11.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump github.com/hashicorp/terraform-plugin-testing from …
…1.13.2 to 1.13.3 (#255) Bumps [github.com/hashicorp/terraform-plugin-testing](https://github.com/hashicorp/terraform-plugin-testing) from 1.13.2 to 1.13.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-testing/releases">github.com/hashicorp/terraform-plugin-testing's releases</a>.</em></p> <blockquote> <h2>v1.13.3</h2> <p>NOTES:</p> <ul> <li>Adds an opt-in compatibility flag for config mode tests to unlock upgrade from v1.5.1 to latest for specific providers. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-testing/issues/496">#496</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-testing/blob/v1.13.3/CHANGELOG.md">github.com/hashicorp/terraform-plugin-testing's changelog</a>.</em></p> <blockquote> <h2>1.13.3 (August 15, 2025)</h2> <p>NOTES:</p> <ul> <li>Adds an opt-in compatibility flag for config mode tests to unlock upgrade from v1.5.1 to latest for specific providers. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-testing/issues/496">#496</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hashicorp/terraform-plugin-testing/commit/1c1031c98a28729e2661d56f2dce8c61f4d2b5a4"><code>1c1031c</code></a> Update changelog</li> <li><a href="https://github.com/hashicorp/terraform-plugin-testing/commit/c569860d8482a7041e821d702745b56945d362bc"><code>c569860</code></a> helper/resource: compatibility refresh after config mode test step (<a href="https://redirect.github.com/hashicorp/terraform-plugin-testing/issues/496">#496</a>) (<a href="https://redirect.github.com/hashicorp/terraform-plugin-testing/issues/538">#538</a>)</li> <li>See full diff in <a href="https://github.com/hashicorp/terraform-plugin-testing/compare/v1.13.2...v1.13.3">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (#256
) Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 6.3.0 to 6.4.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/goreleaser/goreleaser-action/releases">goreleaser/goreleaser-action's releases</a>.</em></p> <blockquote> <h2>v6.4.0</h2> <h2>What's Changed</h2> <ul> <li>ci: set contents read as default workflow permissions by <a href="https://github.com/crazy-max"><code>@crazy-max</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/494">goreleaser/goreleaser-action#494</a></li> <li>fix: support .config directory for goreleaser config files by <a href="https://github.com/haya14busa"><code>@haya14busa</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/500">goreleaser/goreleaser-action#500</a></li> <li>chore(deps): bump semver from 7.7.1 to 7.7.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/495">goreleaser/goreleaser-action#495</a></li> <li>chore(deps): bump brace-expansion from 1.1.11 to 1.1.12 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/498">goreleaser/goreleaser-action#498</a></li> <li>fix: do not get releases.json if version is specific by <a href="https://github.com/caarlos0"><code>@caarlos0</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/502">goreleaser/goreleaser-action#502</a></li> <li>chore(deps): bump undici from 5.28.5 to 5.29.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/496">goreleaser/goreleaser-action#496</a></li> <li>feat: retry downloading releases json by <a href="https://github.com/caarlos0"><code>@caarlos0</code></a> in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/503">goreleaser/goreleaser-action#503</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/haya14busa"><code>@haya14busa</code></a> made their first contribution in <a href="https://redirect.github.com/goreleaser/goreleaser-action/pull/500">goreleaser/goreleaser-action#500</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/goreleaser/goreleaser-action/compare/v6.3.0...v6.4.0">https://github.com/goreleaser/goreleaser-action/compare/v6.3.0...v6.4.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/e435ccd777264be153ace6237001ef4d979d3a7a"><code>e435ccd</code></a> feat: retry downloading releases json (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/503">#503</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/2ff5850a92645f728d659129e0870bfde2851d78"><code>2ff5850</code></a> chore(deps): bump undici from 5.28.5 to 5.29.0 (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/496">#496</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/9a6cd01b33b45eae9ea5ecfb91177a4ac46d6f60"><code>9a6cd01</code></a> fix: do not get releases.json if version is specific (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/502">#502</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/a386515f0ce325a0676d46a679de6748b6a9c53d"><code>a386515</code></a> chore(deps): bump brace-expansion from 1.1.11 to 1.1.12 (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/498">#498</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/ca48102d582c77a1c1f072aa7b9ea4fc66e673de"><code>ca48102</code></a> chore(deps): bump semver from 7.7.1 to 7.7.2 (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/495">#495</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/0931acf1f7634c2ee911eea11a334fb00a5180ab"><code>0931acf</code></a> fix: support .config directory for goreleaser config files (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/500">#500</a>)</li> <li><a href="https://github.com/goreleaser/goreleaser-action/commit/90c43f2c197eeb47adb636c4329af34ae5a2a5f0"><code>90c43f2</code></a> ci: set contents read as default workflow permissions (<a href="https://redirect.github.com/goreleaser/goreleaser-action/issues/494">#494</a>)</li> <li>See full diff in <a href="https://github.com/goreleaser/goreleaser-action/compare/9c156ee8a17a598857849441385a2041ef570552...e435ccd777264be153ace6237001ef4d979d3a7a">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump actions/checkout from 4.3.0 to 5.0.0 (#257)
Bumps [actions/checkout](https://github.com/actions/checkout) from 4.3.0 to 5.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v5.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update actions checkout to use node 24 by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li> <li>Prepare v5.0.0 release by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2238">actions/checkout#2238</a></li> </ul> <h2>
⚠️ Minimum Compatible Runner Version</h2> <p><strong>v2.327.1</strong><br /> <a href="https://github.com/actions/runner/releases/tag/v2.327.1">Release Notes</a></p> <p>Make sure your runner is updated to this version or newer to use this release.</p> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v4...v5.0.0">https://github.com/actions/checkout/compare/v4...v5.0.0</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>V5.0.0</h2> <ul> <li>Update actions checkout to use node 24 by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li> </ul> <h2>V4.3.0</h2> <ul> <li>docs: update README.md by <a href="https://github.com/motss"><code>@motss</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li> <li>Add internal repos for checking out multiple repositories by <a href="https://github.com/mouismail"><code>@mouismail</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li> <li>Documentation update - add recommended permissions to Readme by <a href="https://github.com/benwells"><code>@benwells</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li> <li>Adjust positioning of user email note and permissions heading by <a href="https://github.com/joshmgross"><code>@joshmgross</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li> <li>Update README.md by <a href="https://github.com/nebuk89"><code>@nebuk89</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li> <li>Update CODEOWNERS for actions by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li> <li>Update package dependencies by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li> </ul> <h2>v4.2.2</h2> <ul> <li><code>url-helper.ts</code> now leverages well-known environment variables by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1941">actions/checkout#1941</a></li> <li>Expand unit test coverage for <code>isGhes</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1946">actions/checkout#1946</a></li> </ul> <h2>v4.2.1</h2> <ul> <li>Check out other refs/* by commit if provided, fall back to ref by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li> </ul> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <h2>v4.1.5</h2> <ul> <li>Update NPM dependencies by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li> <li>Bump github/codeql-action from 2 to 3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li> <li>Bump actions/setup-node from 1 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li> <li>Bump actions/upload-artifact from 2 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li> <li>README: Suggest <code>user.email</code> to be <code>41898282+github-actions[bot]@users.noreply.github.com</code> by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1707">actions/checkout#1707</a></li> </ul> <h2>v4.1.4</h2> <ul> <li>Disable <code>extensions.worktreeConfig</code> when disabling <code>sparse-checkout</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1692">actions/checkout#1692</a></li> <li>Add dependabot config by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1688">actions/checkout#1688</a></li> <li>Bump the minor-actions-dependencies group with 2 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1693">actions/checkout#1693</a></li> <li>Bump word-wrap from 1.2.3 to 1.2.5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1643">actions/checkout#1643</a></li> </ul> <h2>v4.1.3</h2> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/checkout/commit/08c6903cd8c0fde910a37f88322edcfb5dd907a8"><code>08c6903</code></a> Prepare v5.0.0 release (<a href="https://redirect.github.com/actions/checkout/issues/2238">#2238</a>)</li> <li><a href="https://github.com/actions/checkout/commit/9f265659d3bb64ab1440b03b12f4d47a24320917"><code>9f26565</code></a> Update actions checkout to use node 24 (<a href="https://redirect.github.com/actions/checkout/issues/2226">#2226</a>)</li> <li>See full diff in <a href="https://github.com/actions/checkout/compare/08eba0b27e820071cde6df949e0beb9ba4906955...08c6903cd8c0fde910a37f88322edcfb5dd907a8">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on Sep 8, 2025
-
chore(deps): bump github.com/coder/coder/v2 from 2.25.1 to 2.25.2 (#259)
Bumps [github.com/coder/coder/v2](https://github.com/coder/coder) from 2.25.1 to 2.25.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/coder/coder/releases">github.com/coder/coder/v2's releases</a>.</em></p> <blockquote> <h2>v2.25.2</h2> <blockquote> <h2>Stable (since September 04, 2025)</h2> </blockquote> <h2>Changelog</h2> <h3>Security Fixes</h3> <ul> <li>Expire token for prebuilds user when regenerating session token (<a href="https://redirect.github.com/coder/coder/issues/19667">#19667</a>) (<a href="https://redirect.github.com/coder/coder/issues/19668">#19668</a>, ec660907f) (<a href="https://github.com/johnstcn"><code>@johnstcn</code></a>) <blockquote> <p>⚠ Fixes an issue allowing previously authenticated users to claim prebuilt workspaces created from templates using the <a href="https://github.com/coder/registry/blob/8677e7d52b374b025c4820d09049dc6b008beee8/registry/coder/modules/coder-login/run.sh"><code>coder-login</code> module</a>. Read more in our <a href="https://github.com/coder/coder/security/advisories/GHSA-j6xf-jwrj-v5qp">GHSA for this vulnerability</a>.</p> </blockquote> </li> <li>Server: Add audit log on creating a new session key (<a href="https://redirect.github.com/coder/coder/issues/19672">#19672</a>) (<a href="https://redirect.github.com/coder/coder/issues/19684">#19684</a>, a79adb155) (<a href="https://github.com/johnstcn"><code>@johnstcn</code></a>) <blockquote> <p>Adds an audit log entry when an API key is created via <code>coder login</code>.</p> </blockquote> </li> </ul> <h2>Bug Fixes</h2> <ul> <li>Fix GCP service accounts (<a href="https://redirect.github.com/coder/coder/issues/19312">#19312</a>) (<a href="https://redirect.github.com/coder/coder/issues/19315">#19315</a>, d324cf7fa) (<a href="https://github.com/ethanndickson"><code>@ethanndickson</code></a>)</li> </ul> <p>Compare: <a href="https://github.com/coder/coder/compare/v2.25.1...v2.25.2"><code>v2.25.1...v2.25.2</code></a></p> <h2>Container image</h2> <ul> <li><code>docker pull ghcr.io/coder/coder:v2.25.2</code></li> </ul> <h2>Install/upgrade</h2> <p>Refer to our docs to <a href="https://coder.com/docs/install">install</a> or <a href="https://coder.com/docs/install/upgrade">upgrade</a> Coder, or use a release asset below.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/coder/coder/commit/f51e22da5caeae6be27dfe08e8ef98f9e1e838fa"><code>f51e22d</code></a> fix: pin pg_dump version when generating schema (<a href="https://redirect.github.com/coder/coder/issues/19696">#19696</a>) (<a href="https://redirect.github.com/coder/coder/issues/19697">#19697</a>)</li> <li><a href="https://github.com/coder/coder/commit/a79adb155816c2a71e23c0cb1827b47177682bf2"><code>a79adb1</code></a> fix(coderd): add audit log on creating a new session key (<a href="https://redirect.github.com/coder/coder/issues/19672">#19672</a>) (<a href="https://redirect.github.com/coder/coder/issues/19684">#19684</a>)</li> <li><a href="https://github.com/coder/coder/commit/ec660907faa0b0eae20fa2ba58ce1733f5f4b35a"><code>ec66090</code></a> fix: expire token for prebuilds user when regenerating session token (<a href="https://redirect.github.com/coder/coder/issues/19667">#19667</a>)...</li> <li><a href="https://github.com/coder/coder/commit/ee8050986d49d007ab69bafb089b29477629d06c"><code>ee80509</code></a> chore: update the slim binaries upload from the build directory to the GCS bu...</li> <li><a href="https://github.com/coder/coder/commit/ed39f4c92ca84a1d8b5f03f85c81d17959120ed8"><code>ed39f4c</code></a> chore: fix typo in clientNetcheckSummary for support bundle command (<a href="https://redirect.github.com/coder/coder/issues/19482">#19482</a>)</li> <li><a href="https://github.com/coder/coder/commit/d324cf7fa8eb443ab0c25a868b059d59a612da81"><code>d324cf7</code></a> ci: fix gcp service accounts (<a href="https://redirect.github.com/coder/coder/issues/19312">#19312</a>) (<a href="https://redirect.github.com/coder/coder/issues/19315">#19315</a>)</li> <li>See full diff in <a href="https://github.com/coder/coder/compare/v2.25.1...v2.25.2">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] | </details> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/coder/terraform-provider-coderd/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on Oct 31, 2025
-
chore(deps): bump github.com/hashicorp/terraform-plugin-docs from 0.2…
…2.0 to 0.24.0 (#270) Bumps [github.com/hashicorp/terraform-plugin-docs](https://github.com/hashicorp/terraform-plugin-docs) from 0.22.0 to 0.24.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-docs/releases">github.com/hashicorp/terraform-plugin-docs's releases</a>.</em></p> <blockquote> <h2>v0.24.0</h2> <p>FEATURES:</p> <ul> <li>generate: Support multiple configuration example files in default templates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/508">#508</a>)</li> <li>generate/migrate/validate: Add support for list resources (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/528">#528</a>)</li> </ul> <h2>v0.23.0</h2> <p>FEATURES:</p> <ul> <li>generate: Add support for actions (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/505">#505</a>)</li> <li>migrate: Add support for actions (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/505">#505</a>)</li> <li>validate: Add support for actions (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/505">#505</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-docs/blob/main/CHANGELOG.md">github.com/hashicorp/terraform-plugin-docs's changelog</a>.</em></p> <blockquote> <h2>0.24.0 (October 13, 2025)</h2> <p>FEATURES:</p> <ul> <li>generate: Support multiple configuration example files in default templates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/508">#508</a>)</li> <li>generate/migrate/validate: Add support for list resources (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/528">#528</a>)</li> </ul> <h2>0.23.0 (September 17, 2025)</h2> <p>FEATURES:</p> <ul> <li>generate: Add support for actions (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/505">#505</a>)</li> <li>migrate: Add support for actions (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/505">#505</a>)</li> <li>validate: Add support for actions (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/505">#505</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/954fc54d3f890868d3f9221523ba34134118abcd"><code>954fc54</code></a> Update changelog</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/347dc6c8fc2810ba2db0513fc042668f48fcd5c9"><code>347dc6c</code></a> build(deps): bump golang.org/x/text from 0.29.0 to 0.30.0 (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/529">#529</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/0fe8159d401b212e612107c3e6d7f18a263f49a9"><code>0fe8159</code></a> generate: Update action docs to support multiple examples (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/527">#527</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/6ddafb796a4c286dcb0bc23c04e29910fdf28043"><code>6ddafb7</code></a> Add support for generating docs for list-resources (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/528">#528</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/697541615c701bb6bef75ee214ed9d79664af126"><code>6975416</code></a> feat(generate): Support multiple configuration example files in default templ...</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/df10e9573e65b15dcfd865739e0ed6fb2e050da7"><code>df10e95</code></a> chore: extract types for templates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/517">#517</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/157a6a96e644eeed2fd272227ba60786327c9beb"><code>157a6a9</code></a> chore: Fix CI to run on public forks (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/526">#526</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/a4a7122b4d31d34da39d4e130c201311d25cffe0"><code>a4a7122</code></a> build(deps): bump github.com/hashicorp/terraform-json (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/524">#524</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/6a88399d84056bf02d410a5e931bc1eae012f035"><code>6a88399</code></a> build(deps): bump github.com/hashicorp/terraform-exec (<a href="https://redirect.github.com/hashicorp/terraform-plugin-docs/issues/525">#525</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-docs/commit/e4e5f4c8657f0b2f9e444fc104e4894954e347b1"><code>e4e5f4c</code></a> Update changelog</li> <li>Additional commits viewable in <a href="https://github.com/hashicorp/terraform-plugin-docs/compare/v0.22.0...v0.24.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 (#…
…258) Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.11.0 to 1.11.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/stretchr/testify/releases">github.com/stretchr/testify's releases</a>.</em></p> <blockquote> <h2>v1.11.1</h2> <p>This release fixes <a href="https://redirect.github.com/stretchr/testify/issues/1785">#1785</a> introduced in v1.11.0 where expected argument values implementing the stringer interface (<code>String() string</code>) with a method which mutates their value, when passed to mock.Mock.On (<code>m.On("Method", <expected>).Return()</code>) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.</p> <h2>What's Changed</h2> <ul> <li>Backport <a href="https://redirect.github.com/stretchr/testify/issues/1786">#1786</a> to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by <a href="https://github.com/brackendawson"><code>@brackendawson</code></a> in <a href="https://redirect.github.com/stretchr/testify/pull/1788">stretchr/testify#1788</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1">https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/stretchr/testify/commit/2a57335dc9cd6833daa820bc94d9b40c26a7917d"><code>2a57335</code></a> Merge pull request <a href="https://redirect.github.com/stretchr/testify/issues/1788">#1788</a> from brackendawson/1785-backport-1.11</li> <li><a href="https://github.com/stretchr/testify/commit/af8c91234f184009f57ef29027b39ca89cb00100"><code>af8c912</code></a> Backport <a href="https://redirect.github.com/stretchr/testify/issues/1786">#1786</a> to release/1.11</li> <li>See full diff in <a href="https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (#260)
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.5.0 to 6.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-go/releases">actions/setup-go's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>What's Changed</h2> <h3>Breaking Changes</h3> <ul> <li>Improve toolchain handling to ensure more reliable and consistent toolchain selection and management by <a href="https://github.com/matthewhughes934"><code>@matthewhughes934</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/460">actions/setup-go#460</a></li> <li>Upgrade Nodejs runtime from node20 to node 24 by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/624">actions/setup-go#624</a></li> </ul> <p>Make sure your runner is on version v2.327.1 or later to ensure compatibility with this release. <a href="https://github.com/actions/runner/releases/tag/v2.327.1">See Release Notes</a></p> <h3>Dependency Upgrades</h3> <ul> <li>Upgrade <code>@types/jest</code> from 29.5.12 to 29.5.14 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/589">actions/setup-go#589</a></li> <li>Upgrade <code>@actions/tool-cache</code> from 2.0.1 to 2.0.2 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/591">actions/setup-go#591</a></li> <li>Upgrade <code>@typescript-eslint/parser</code> from 8.31.1 to 8.35.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/590">actions/setup-go#590</a></li> <li>Upgrade undici from 5.28.5 to 5.29.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/594">actions/setup-go#594</a></li> <li>Upgrade typescript from 5.4.2 to 5.8.3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/538">actions/setup-go#538</a></li> <li>Upgrade eslint-plugin-jest from 28.11.0 to 29.0.1 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/603">actions/setup-go#603</a></li> <li>Upgrade <code>form-data</code> to bring in fix for critical vulnerability by <a href="https://github.com/matthewhughes934"><code>@matthewhughes934</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/618">actions/setup-go#618</a></li> <li>Upgrade actions/checkout from 4 to 5 by <a href="https://github.com/dependabot"><code>@dependabot</code></a>[bot] in <a href="https://redirect.github.com/actions/setup-go/pull/631">actions/setup-go#631</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/matthewhughes934"><code>@matthewhughes934</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/618">actions/setup-go#618</a></li> <li><a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/624">actions/setup-go#624</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/setup-go/compare/v5...v6.0.0">https://github.com/actions/setup-go/compare/v5...v6.0.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/setup-go/commit/44694675825211faa026b3c33043df3e48a5fa00"><code>4469467</code></a> Bump actions/checkout from 4 to 5 (<a href="https://redirect.github.com/actions/setup-go/issues/631">#631</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/e093d1e9bb74ffc381514c57dcb7832730010598"><code>e093d1e</code></a> Node 24 upgrade (<a href="https://redirect.github.com/actions/setup-go/issues/624">#624</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/1d76b952eb9246b03e20e15a9ef98c6d4af389ef"><code>1d76b95</code></a> Improve toolchain handling (<a href="https://redirect.github.com/actions/setup-go/issues/460">#460</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/e75c3e80bcde46e322cd5845ae46582947c9becd"><code>e75c3e8</code></a> Bump <code>form-data</code> to bring in fix for critical vulnerability (<a href="https://redirect.github.com/actions/setup-go/issues/618">#618</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/8e57b58e57be52ac95949151e2777ffda8501267"><code>8e57b58</code></a> Bump eslint-plugin-jest from 28.11.0 to 29.0.1 (<a href="https://redirect.github.com/actions/setup-go/issues/603">#603</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/7c0b336c9aab5e8ed4f0ad8b81225b125f9883e4"><code>7c0b336</code></a> Bump typescript from 5.4.2 to 5.8.3 (<a href="https://redirect.github.com/actions/setup-go/issues/538">#538</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/6f26dcc668f723b50085562b23062c5a4be16a3d"><code>6f26dcc</code></a> Bump undici from 5.28.5 to 5.29.0 (<a href="https://redirect.github.com/actions/setup-go/issues/594">#594</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/8d4083a006463573cfc77227acf5b80c61a5713a"><code>8d4083a</code></a> Bump <code>@typescript-eslint/parser</code> from 5.62.0 to 8.32.0 (<a href="https://redirect.github.com/actions/setup-go/issues/590">#590</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/fa96338abe5531f6e34c5cc0bbe28c1a533d5505"><code>fa96338</code></a> Bump <code>@actions/tool-cache</code> from 2.0.1 to 2.0.2 (<a href="https://redirect.github.com/actions/setup-go/issues/591">#591</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/4de67c04ab4550d5b619aef0b37cd4ec732d7b37"><code>4de67c0</code></a> Bump <code>@types/jest</code> from 29.5.12 to 29.5.14 (<a href="https://redirect.github.com/actions/setup-go/issues/589">#589</a>)</li> <li>See full diff in <a href="https://github.com/actions/setup-go/compare/d35c59abb061a4a6fb18e82ac0862c26744d6ab5...44694675825211faa026b3c33043df3e48a5fa00">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ethan Dickson <ethan@coder.com>
-
chore(deps): bump github.com/coder/coder/v2 from 2.25.2 to 2.27.1 (#269)
Bumps [github.com/coder/coder/v2](https://github.com/coder/coder) from 2.25.2 to 2.27.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/coder/coder/releases">github.com/coder/coder/v2's releases</a>.</em></p> <blockquote> <h2>v2.27.1</h2> <h2>Changelog</h2> <blockquote> <p>[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our <a href="https://github.com/coder/coder/releases/latest">latest stable release</a> while we refine this version. Learn more about our <a href="https://coder.com/docs/install/releases">Release Schedule</a>.</p> </blockquote> <h3>Bug fixes</h3> <ul> <li>Server: Truncate task prompt to 160 characters in notifications (<a href="https://redirect.github.com/coder/coder/issues/20147">#20147</a>) (<a href="https://redirect.github.com/coder/coder/issues/20153">#20153</a>, b2d6a1886) (<a href="https://github.com/johnstcn"><code>@johnstcn</code></a>) <blockquote> <p>Certain <code>coder stat</code> commands were failing on more complex Cgroup environments. This patch addresses that failure, and other complex setups.</p> </blockquote> </li> </ul> <h3>Chores</h3> <ul> <li>Upgrade coder/clistat to v1.1.1 (<a href="https://redirect.github.com/coder/coder/issues/20322">#20322</a>) (<a href="https://redirect.github.com/coder/coder/issues/20325">#20325</a>, 230b55bfa)</li> </ul> <p>Compare: <a href="https://github.com/coder/coder/compare/v2.27.0...v2.27.1"><code>v2.27.0...v2.27.1</code></a></p> <h2>Container image</h2> <ul> <li><code>docker pull ghcr.io/coder/coder:v2.27.1</code></li> </ul> <h2>Install/upgrade</h2> <p>Refer to our docs to <a href="https://coder.com/docs/install">install</a> or <a href="https://coder.com/docs/install/upgrade">upgrade</a> Coder, or use a release asset below.</p> <h2>v2.27.0</h2> <h2>Changelog</h2> <blockquote> <p>[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our <a href="https://github.com/coder/coder/releases/latest">latest stable release</a> while we refine this version. Learn more about our <a href="https://coder.com/docs/install/releases">Release Schedule</a>.</p> </blockquote> <h3>BREAKING CHANGES</h3> <ul> <li>Use client IP when creating connection logs for workspace proxied app accesses (<a href="https://redirect.github.com/coder/coder/issues/19788">#19788</a>, 6a9b896f5) (<a href="https://github.com/ethanndickson"><code>@ethanndickson</code></a>) <blockquote> <p>The presence of the <code>ip</code> field on <code>codersdk.ConnectionLog</code> cannot be guaranteed, and so the field has been made optional. It may be omitted on API responses.</p> </blockquote> </li> <li>Server: Only show task status for current build (<a href="https://redirect.github.com/coder/coder/issues/19966">#19966</a>, eb55f0ab1) (<a href="https://github.com/johnstcn"><code>@johnstcn</code></a>) <blockquote> <p>Renames the <code>TaskStateCompleted</code> constant to <code>TaskStateComplete</code> to align with the tense used in <code>WorkspaceAppStatusStateComplete</code>, requiring any code referencing the constant to be updated.</p> </blockquote> </li> <li>Rename prompt field to input for task creation (<a href="https://redirect.github.com/coder/coder/issues/19982">#19982</a>, eb7473283) (<a href="https://github.com/DanielleMaywood"><code>@DanielleMaywood</code></a>) <blockquote> <p>Renames the <code>CreateTaskRequest.Prompt</code> to <code>CreateTaskRequest.Input</code> to align with language used in our CLI and elsewhere in the codebase.</p> </blockquote> </li> </ul> <h3>Features</h3> <h4>AI Bridge</h4> <p>AI Bridge, the self-hosted LLM proxy for auditing LLM tools and adoption is now in Early access, get started with our <a href="https://coder.com/docs/ai-coder/ai-bridge">setup guide</a>.</p> <ul> <li>Add <code>aibridgedserver</code> pkg (<a href="https://redirect.github.com/coder/coder/issues/19902">#19902</a>, 615585d5d) (<a href="https://github.com/dannykopping"><code>@dannykopping</code></a>)</li> <li>Add aibridged package (<a href="https://redirect.github.com/coder/coder/issues/19797">#19797</a>, fc9bff710) (<a href="https://github.com/dannykopping"><code>@dannykopping</code></a>)</li> <li>Initialize <code>aibridged</code> & mount API handler (<a href="https://redirect.github.com/coder/coder/issues/19798">#19798</a>, 0a7981705) (<a href="https://github.com/dannykopping"><code>@dannykopping</code></a>)</li> <li>Add endpoint to list aibridge interceptions (<a href="https://redirect.github.com/coder/coder/issues/19929">#19929</a>, 0a6ba5d51) (<a href="https://github.com/pawbana"><code>@pawbana</code></a>)</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/coder/coder/commit/230b55bfa043c6cb1c2be7e00fa347f27a65ebe7"><code>230b55b</code></a> chore: upgrade coder/clistat to v1.1.1 (<a href="https://redirect.github.com/coder/coder/issues/20322">#20322</a>) (<a href="https://redirect.github.com/coder/coder/issues/20325">#20325</a>)</li> <li><a href="https://github.com/coder/coder/commit/b2d6a188614ae579b8ac870d7b3528ab16ae66f5"><code>b2d6a18</code></a> fix(coderd): truncate task prompt to 160 characters in notifications (<a href="https://redirect.github.com/coder/coder/issues/20147">#20147</a>)...</li> <li><a href="https://github.com/coder/coder/commit/c0cd32c2c4d583423be4cec2a6f9f30209cbce3b"><code>c0cd32c</code></a> chore: fix missing variable in deploy workflow (<a href="https://redirect.github.com/coder/coder/issues/20135">#20135</a>)</li> <li><a href="https://github.com/coder/coder/commit/c2414d5287705916875377833e43c5c21ef57a37"><code>c2414d5</code></a> chore: backport release freeze workflow to 2.27 (<a href="https://redirect.github.com/coder/coder/issues/20132">#20132</a>)</li> <li><a href="https://github.com/coder/coder/commit/ff69ed69df8cf22b60aa0bebafb0fcc89d38f4a0"><code>ff69ed6</code></a> chore: backport various downgrades from main (<a href="https://redirect.github.com/coder/coder/issues/20133">#20133</a>)</li> <li><a href="https://github.com/coder/coder/commit/f4a6894bf42f96e604173d755adcf036a7def1ac"><code>f4a6894</code></a> chore: bump <code>@radix-ui/react-dialog</code> from 1.1.4 to 1.1.15 in /site (<a href="https://redirect.github.com/coder/coder/issues/20068">#20068</a>)</li> <li><a href="https://github.com/coder/coder/commit/77b95983aa1282ebe77821e56cd3a41b1584c844"><code>77b9598</code></a> chore: bump <code>@radix-ui/react-select</code> from 2.1.4 to 2.2.6 in /site (<a href="https://redirect.github.com/coder/coder/issues/20079">#20079</a>)</li> <li><a href="https://github.com/coder/coder/commit/fc6c5a49d6122e10adfdfd075d7066a4a87a778e"><code>fc6c5a4</code></a> chore: bump msw from 2.4.8 to 2.11.3 in /site (<a href="https://redirect.github.com/coder/coder/issues/20074">#20074</a>)</li> <li><a href="https://github.com/coder/coder/commit/7c4c4abc7b41561cb20ebd7e4ef1a175a4ff0d73"><code>7c4c4ab</code></a> chore: bump the vite group across 1 directory with 3 updates (<a href="https://redirect.github.com/coder/coder/issues/20057">#20057</a>)</li> <li><a href="https://github.com/coder/coder/commit/cdd9ddd65949810a5b70baf4176e3784f47ab722"><code>cdd9ddd</code></a> chore: bump ssh2 and <code>@types/ssh2</code> in /site (<a href="https://redirect.github.com/coder/coder/issues/20077">#20077</a>)</li> <li>Additional commits viewable in <a href="https://github.com/coder/coder/compare/v2.25.2...v2.27.1">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] | </details> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ethan Dickson <ethan@coder.com>
-
chore(deps): bump github.com/hashicorp/terraform-plugin-go from 0.28.…
…0 to 0.29.0 (#263) Bumps [github.com/hashicorp/terraform-plugin-go](https://github.com/hashicorp/terraform-plugin-go) from 0.28.0 to 0.29.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-go/releases">github.com/hashicorp/terraform-plugin-go's releases</a>.</em></p> <blockquote> <h2>v0.29.0</h2> <p>NOTES:</p> <ul> <li>all: This Go module has been updated to Go 1.24 per the <a href="https://go.dev/doc/devel/release#policy">Go support policy</a>. It is recommended to review the <a href="https://go.dev/doc/go1.24">Go 1.24 release notes</a> before upgrading. Any consumers building on earlier Go versions may experience errors. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/556">#556</a>)</li> <li>tfprotov5+tfprotov6: An upcoming release will require the <code>ActionServer</code> implementation as part of <code>ProviderServer</code>. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/534">#534</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>tfprotov5+tfprotov6: Upgraded protocols and added types to support the new action type. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/534">#534</a>)</li> <li>tfprotov5+tfprotov6: Upgraded protocols and added types to support the new list type (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/525">#525</a>)</li> </ul> <p>ENHANCEMENTS:</p> <ul> <li>tftypes: <code>tftypes.Value.IsFullyNull()</code> allows SDKs to determine when a value is null or consists of only null elements and attributes. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/541">#541</a>)</li> </ul> <h2>v0.29.0-beta.1</h2> <p>NOTES:</p> <ul> <li>Updates the <code>ValidateListResourceConfig</code> RPC to validate <code>include_resource</code> as well as <code>limit</code> (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/538">#538</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>tfprotov5+tfprotov6: Add action validation RPC (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/539">#539</a>)</li> </ul> <p>ENHANCEMENTS:</p> <ul> <li>tftypes: <code>tftypes.Value.IsFullyNull()</code> allows SDKs to determine when a value is null or consists of only null elements and attributes. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/541">#541</a>)</li> </ul> <p>BUG FIXES:</p> <ul> <li>Fix proto field numbering for <code>GetProviderSchema</code> (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/539">#539</a>)</li> </ul> <h2>v0.29.0-alpha.1</h2> <p>NOTES:</p> <ul> <li>This alpha pre-release contains the protocol definitions and Go type definitions for list resources, which are a new type of resource. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/512">#512</a>)</li> <li>A <code>ProviderServerWithListResource</code> can be used with the <code>terraform query</code> subcommand in Terraform 1.13.0-alpha20250708 and later to search unmanaged infrastructure. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/512">#512</a>)</li> <li>The list resource protocol definitions are considered experimental and may change up until general availability. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/512">#512</a>)</li> <li>tfprotov5+tfprotov6: An upcoming release will require the <code>ValidateListResourceConfig</code> and <code>ListResource</code> implementations as part of <code>ProviderServer</code>. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/514">#514</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-go/blob/main/CHANGELOG.md">github.com/hashicorp/terraform-plugin-go's changelog</a>.</em></p> <blockquote> <h2>0.29.0 (September 17, 2025)</h2> <p>NOTES:</p> <ul> <li>all: This Go module has been updated to Go 1.24 per the <a href="https://go.dev/doc/devel/release#policy">Go support policy</a>. It is recommended to review the <a href="https://go.dev/doc/go1.24">Go 1.24 release notes</a> before upgrading. Any consumers building on earlier Go versions may experience errors. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/556">#556</a>)</li> <li>tfprotov5+tfprotov6: An upcoming release will require the <code>ActionServer</code> implementation as part of <code>ProviderServer</code>. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/534">#534</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>tfprotov5+tfprotov6: Upgraded protocols and added types to support the new action type. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/534">#534</a>)</li> <li>tfprotov5+tfprotov6: Upgraded protocols and added types to support the new list type (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/525">#525</a>)</li> </ul> <p>ENHANCEMENTS:</p> <ul> <li>tftypes: <code>tftypes.Value.IsFullyNull()</code> allows SDKs to determine when a value is null or consists of only null elements and attributes. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/541">#541</a>)</li> </ul> <h2>0.29.0-beta.1 (July 31, 2025)</h2> <p>NOTES:</p> <ul> <li>Updates the <code>ValidateListResourceConfig</code> RPC to validate <code>include_resource</code> as well as <code>limit</code> (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/538">#538</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>tfprotov5+tfprotov6: Add action validation RPC (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/539">#539</a>)</li> </ul> <p>ENHANCEMENTS:</p> <ul> <li>tftypes: <code>tftypes.Value.IsFullyNull()</code> allows SDKs to determine when a value is null or consists of only null elements and attributes. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/541">#541</a>)</li> </ul> <p>BUG FIXES:</p> <ul> <li>Fix proto field numbering for <code>GetProviderSchema</code> (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/539">#539</a>)</li> </ul> <h2>0.29.0-alpha.1 (July 08, 2025)</h2> <p>NOTES:</p> <ul> <li>This alpha pre-release contains the protocol definitions and Go type definitions for list resources, which are a new type of resource. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/512">#512</a>)</li> <li>A <code>ProviderServerWithListResource</code> can be used with the <code>terraform query</code> subcommand in Terraform 1.13.0-alpha20250708 and later to search unmanaged infrastructure. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/512">#512</a>)</li> <li>The list resource protocol definitions are considered experimental and may change up until general availability. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/512">#512</a>)</li> <li>tfprotov5+tfprotov6: An upcoming release will require the <code>ValidateListResourceConfig</code> and <code>ListResource</code> implementations as part of <code>ProviderServer</code>. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/514">#514</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/a361c9bf2cc501ea50660fd14125d33c57260454"><code>a361c9b</code></a> Update changelog</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/9c9e494a6e759b9ad203c826335c57d52f576d2c"><code>9c9e494</code></a> add changelog for list (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/561">#561</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/2cd3335df03c44f7acdded7f111446f65292b575"><code>2cd3335</code></a> add action changelogs (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/560">#560</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/c3810b1245c0f956919b8d453cff9d28119914f0"><code>c3810b1</code></a> Simplify actions to one schema type (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/559">#559</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/0d697e5665132b205e43bcd5243e4e11f02a1730"><code>0d697e5</code></a> build(deps): Bump google.golang.org/protobuf from 1.36.8 to 1.36.9 (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/557">#557</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/ef1c33e9ddce70a1938c542f38aea8db8957d1f1"><code>ef1c33e</code></a> build(deps): Bump google.golang.org/grpc from 1.75.0 to 1.75.1 (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/558">#558</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/45d8122ffc9f246ee0a1dc74afe66917e3cb4143"><code>45d8122</code></a> build(deps): Bump github.com/hashicorp/go-plugin from 1.6.3 to 1.7.0 (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/555">#555</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/d0210751fafbe65e71a45affc3b65c252b93eb00"><code>d021075</code></a> build(deps): Bump the github-actions group with 2 updates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/556">#556</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/4c19f069077df4604e75bb02898903f7a78a31c7"><code>4c19f06</code></a> Update action proto v5/v6 definitions to match TF core (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/554">#554</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-go/commit/f90fa5d0756cde5bdd75fc54bc45ea796b635d8d"><code>f90fa5d</code></a> build(deps): Bump github.com/hashicorp/terraform-registry-address (<a href="https://redirect.github.com/hashicorp/terraform-plugin-go/issues/553">#553</a>)</li> <li>Additional commits viewable in <a href="https://github.com/hashicorp/terraform-plugin-go/compare/v0.28.0...v0.29.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days. Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump github.com/docker/docker from 28.3.3+incompatible t…
…o 28.5.1+incompatible (#268) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 28.3.3+incompatible to 28.5.1+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v28.5.1</h2> <h2>28.5.1</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.1">docker/cli, 28.5.1 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.1">moby/moby, 28.5.1 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v28.5.1/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v28.5.1/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>Update BuildKit to v0.25.1. <a href="https://redirect.github.com/moby/moby/pull/51137">moby/moby#51137</a></li> <li>Update Go runtime to <a href="https://go.dev/doc/devel/release#go1.24.8">1.24.8</a>. <a href="https://redirect.github.com/moby/moby/pull/51133">moby/moby#51133</a>, <a href="https://redirect.github.com/docker/cli/pull/6541">docker/cli#6541</a></li> </ul> <h3>Deprecations</h3> <ul> <li>api/types/image: InspectResponse: deprecate <code>Parent</code> and <code>DockerVersion</code> fields. <a href="https://redirect.github.com/moby/moby/pull/51105">moby/moby#51105</a></li> <li>api/types/plugin: deprecate <code>Config.DockerVersion</code> field. <a href="https://redirect.github.com/moby/moby/pull/51110">moby/moby#51110</a></li> </ul> <h2>v28.5.0</h2> <h1>28.5.0</h1> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.0">docker/cli, 28.5.0 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.0">moby/moby, 28.5.0 milestone</a></li> <li>Deprecated and removed features, see <a href="https://github.com/docker/cli/blob/v28.5.0/docs/deprecated.md">Deprecated Features</a>.</li> <li>Changes to the Engine API, see <a href="https://github.com/moby/moby/blob/v28.5.0/docs/api/version-history.md">API version history</a>.</li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>Don't print warnings in <code>docker info</code> for broken symlinks in CLI-plugin directories. <a href="https://redirect.github.com/docker/cli/pull/6476">docker/cli#6476</a></li> <li>Fix a panic during <code>stats</code> on empty event <code>Actor.ID</code>. <a href="https://redirect.github.com/docker/cli/pull/6471">docker/cli#6471</a></li> </ul> <h3>Packaging updates</h3> <ul> <li>Remove support for legacy CBC cipher suites. <a href="https://redirect.github.com/docker/cli/pull/6474">docker/cli#6474</a></li> <li>Update Buildkit to <a href="https://github.com/moby/buildkit/releases/tag/v0.25.0">v0.25.0</a>. <a href="https://redirect.github.com/moby/moby/pull/51075">moby/moby#51075</a></li> <li>Update Dockerfile syntax to <a href="https://github.com/moby/buildkit/releases/tag/dockerfile%2F1.19.0">v1.19.0</a>. <a href="https://redirect.github.com/moby/moby/pull/51075">moby/moby#51075</a></li> </ul> <h3>Networking</h3> <ul> <li>Eliminated harmless warning about deletion of <code>endpoint_count</code> from the data store. <a href="https://redirect.github.com/moby/moby/pull/51064">moby/moby#51064</a></li> <li>Fix a bug causing IPAM plugins to not be loaded on Windows. <a href="https://redirect.github.com/moby/moby/pull/51035">moby/moby#51035</a></li> </ul> <h3>API</h3> <ul> <li>Deprecate support for kernel memory TCP accounting (<code>KernelMemoryTCP</code>). <a href="https://redirect.github.com/moby/moby/pull/51067">moby/moby#51067</a></li> <li>Fix <code>GET containers/{name}/checkpoints</code> returning <code>null</code> instead of empty JSON array when there are no checkpoints. <a href="https://redirect.github.com/moby/moby/pull/51052">moby/moby#51052</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/f8215cc266744ef195a50a70d427c345da2acdbb"><code>f8215cc</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51137">#51137</a> from austinvazquez/cherry-pick-vendor-buildkit-0.25...</li> <li><a href="https://github.com/moby/moby/commit/40a856a5939fb22379e18314cefa23c8092e3b01"><code>40a856a</code></a> hack: add patch to buildkit tests</li> <li><a href="https://github.com/moby/moby/commit/5d1c3119f28133069df20c3c657c9ca36bfbc283"><code>5d1c311</code></a> vendor: update buildkit to v0.25.1</li> <li><a href="https://github.com/moby/moby/commit/90506c114468a548133b8d619e6c72eb2c7d9197"><code>90506c1</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51133">#51133</a> from vvoland/51132-28.x</li> <li><a href="https://github.com/moby/moby/commit/17db0cd834dffc9d8832eb757f852274c2caadb1"><code>17db0cd</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51128">#51128</a> from thaJeztah/28.x_backport_gcpolicy-invalid-calcu...</li> <li><a href="https://github.com/moby/moby/commit/f7c40ea34425cdf4b142604740a9dbe9ccaf5639"><code>f7c40ea</code></a> update to go1.24.8</li> <li><a href="https://github.com/moby/moby/commit/dccf7c889c88f6814d7336f93fcf825dc8048f2a"><code>dccf7c8</code></a> builder: use proper percentage calculations for default gc policy</li> <li><a href="https://github.com/moby/moby/commit/0f040aa194369a660d60e0c424460d90a64d799b"><code>0f040aa</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51126">#51126</a> from vvoland/51124-28.x</li> <li><a href="https://github.com/moby/moby/commit/5b1a039e6f162795442c1f20b4bff8ccd26b8f48"><code>5b1a039</code></a> ci: fix cache for go modules</li> <li><a href="https://github.com/moby/moby/commit/8fa4bd5e0d071f9e9c6ae47af9ae1f805bc0a2f9"><code>8fa4bd5</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51121">#51121</a> from crazy-max/28.x_ci-caches-fixes</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v28.3.3...v28.5.1">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on Nov 19, 2025
-
chore(deps): bump github.com/hashicorp/terraform-plugin-log from 0.9.…
…0 to 0.10.0 (#279) Bumps [github.com/hashicorp/terraform-plugin-log](https://github.com/hashicorp/terraform-plugin-log) from 0.9.0 to 0.10.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-log/releases">github.com/hashicorp/terraform-plugin-log's releases</a>.</em></p> <blockquote> <h2>v0.10.0</h2> <p>NOTES:</p> <ul> <li>This Go module has been updated to Go 1.24 per the <a href="https://golang.org/doc/devel/release.html#policy">Go support policy</a>. Any consumers building on earlier Go versions may experience errors. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/263">#263</a>)</li> <li>tfsdklog.RegisterTestSink is deprecated in favor or tfsdklog.ContextWithTestLogging (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/264">#264</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>Added <code>tfsdklog.ContextWithStandardLogging()</code> for test sweeper logging (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/162">#162</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-log/blob/main/CHANGELOG.md">github.com/hashicorp/terraform-plugin-log's changelog</a>.</em></p> <blockquote> <h2>0.10.0 (November 13, 2025)</h2> <p>NOTES:</p> <ul> <li>This Go module has been updated to Go 1.24 per the <a href="https://golang.org/doc/devel/release.html#policy">Go support policy</a>. Any consumers building on earlier Go versions may experience errors. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/263">#263</a>)</li> <li>tfsdklog.RegisterTestSink is deprecated in favor or tfsdklog.ContextWithTestLogging (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/264">#264</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>Added <code>tfsdklog.ContextWithStandardLogging()</code> for test sweeper logging (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/162">#162</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/1a252785fd0d697042fcfa462b303f788a27ff33"><code>1a25278</code></a> Update changelog</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/13ad22b5987139db6bfb0656541e0ef6f6ecd6a8"><code>13ad22b</code></a> Add <code>tfsdklog.ContextWithStdlibLogging</code> for consistency (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/267">#267</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/1107e3fef6fcc8cfdb1155f2b825bde2383db88d"><code>1107e3f</code></a> build(deps): bump golangci/golangci-lint-action (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/268">#268</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/f151a1014f287cf65723960c46a802cf328e8dca"><code>f151a10</code></a> build(deps): bump actions/upload-artifact in the github-actions group (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/266">#266</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/18815d1a390cb432f4925f9580cd1a8405d1a433"><code>18815d1</code></a> Update CODEOWNERS (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/265">#265</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/c20f085a1b804145018e95722bd3b7576b96584e"><code>c20f085</code></a> Adds logging sink that uses the standard logger (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/162">#162</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/5926d5bbbf5d94bc7f2ced0758523d607344a161"><code>5926d5b</code></a> Deprecate <code>tfsdklog.RegisterTestSink</code> (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/264">#264</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/534b24b17af762b5b1b4b51725f277abbfa5bbab"><code>534b24b</code></a> [Chore] Upgrade Go version to 1.24 (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/263">#263</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/374b4707a20e28a27ca6bdf0a96bf90c452491a3"><code>374b470</code></a> build(deps): bump the github-actions group with 2 updates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/262">#262</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-log/commit/e486d3a2a78aa2a4de88c3da4be685fdbb70afa9"><code>e486d3a</code></a> chore: remove old docs (<a href="https://redirect.github.com/hashicorp/terraform-plugin-log/issues/261">#261</a>)</li> <li>Additional commits viewable in <a href="https://github.com/hashicorp/terraform-plugin-log/compare/v0.9.0...v0.10.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump github.com/coder/coder/v2 from 2.27.3 to 2.28.3 (#280)
Bumps [github.com/coder/coder/v2](https://github.com/coder/coder) from 2.27.3 to 2.28.3. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/coder/coder/releases">github.com/coder/coder/v2's releases</a>.</em></p> <blockquote> <h2>v2.28.3</h2> <h2>Changelog</h2> <blockquote> <p>[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our <a href="https://github.com/coder/coder/releases/latest">latest stable release</a> while we refine this version. Learn more about our <a href="https://coder.com/docs/install/releases">Release Schedule</a>.</p> </blockquote> <h3>Bug fixes</h3> <ul> <li>Upgrade aibridge lib to fix cache issue (<a href="https://redirect.github.com/coder/coder/issues/20730">#20730</a>) (<a href="https://redirect.github.com/coder/coder/issues/20734">#20734</a>, 7beb95fd5) <blockquote> <p>AI Bridge's injected MCP tools were not being set in a stable sort order. This lead to invalidation of the cache in upstream AI providers' APIs, resulting in more cache writes and therefore higher token spend. Deployments with AI Bridge enabled as well as the oauth2 and mcp-server-http experiments will be affected by this bug, and are highly encouraged to upgrade.</p> </blockquote> </li> </ul> <p>Compare: <a href="https://github.com/coder/coder/compare/v2.28.2...v2.28.3"><code>v2.28.2...v2.28.3</code></a></p> <h2>Container image</h2> <ul> <li><code>docker pull ghcr.io/coder/coder:v2.28.3</code></li> </ul> <h2>Install/upgrade</h2> <p>Refer to our docs to <a href="https://coder.com/docs/install">install</a> or <a href="https://coder.com/docs/install/upgrade">upgrade</a> Coder, or use a release asset below.</p> <h2>v2.28.2</h2> <h2>Changelog</h2> <blockquote> <p>[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our <a href="https://github.com/coder/coder/releases/latest">latest stable release</a> while we refine this version. Learn more about our <a href="https://coder.com/docs/install/releases">Release Schedule</a>.</p> </blockquote> <h3>Bug fixes</h3> <ul> <li>Use correct slog arguments (<a href="https://redirect.github.com/coder/coder/issues/20721">#20721</a>) (<a href="https://redirect.github.com/coder/coder/issues/20723">#20723</a>, 097e085fc)</li> </ul> <p>Compare: <a href="https://github.com/coder/coder/compare/v2.28.1...v2.28.2"><code>v2.28.1...v2.28.2</code></a></p> <h2>Container image</h2> <ul> <li><code>docker pull ghcr.io/coder/coder:v2.28.2</code></li> </ul> <h2>Install/upgrade</h2> <p>Refer to our docs to <a href="https://coder.com/docs/install">install</a> or <a href="https://coder.com/docs/install/upgrade">upgrade</a> Coder, or use a release asset below.</p> <h2>v2.28.1</h2> <h2>Changelog</h2> <blockquote> <p>[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our <a href="https://github.com/coder/coder/releases/latest">latest stable release</a> while we refine this version. Learn more about our <a href="https://coder.com/docs/install/releases">Release Schedule</a>.</p> </blockquote> <h3>Chores</h3> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/coder/coder/commit/7beb95fd56d2f790502e236b64906f8eefb969bd"><code>7beb95f</code></a> fix: upgrade aibridge lib to fix cache issue (<a href="https://redirect.github.com/coder/coder/issues/20730">#20730</a>) (<a href="https://redirect.github.com/coder/coder/issues/20734">#20734</a>)</li> <li><a href="https://github.com/coder/coder/commit/097e085fcb0b8dbcaa78e3338444d1b0c6af6a90"><code>097e085</code></a> fix: use correct slog arguments (<a href="https://redirect.github.com/coder/coder/issues/20721">#20721</a>) (<a href="https://redirect.github.com/coder/coder/issues/20723">#20723</a>)</li> <li><a href="https://github.com/coder/coder/commit/b8ab2d351fbd6b68ca5afe659de89e25c300f3c3"><code>b8ab2d3</code></a> chore: update Go to 1.24.10 (<a href="https://redirect.github.com/coder/coder/issues/20684">#20684</a>) (<a href="https://redirect.github.com/coder/coder/issues/20688">#20688</a>)</li> <li><a href="https://github.com/coder/coder/commit/1b1e3cb706b899e0779f1561e088ee8cbd3f6aaf"><code>1b1e3cb</code></a> chore: change managed agent limit (<a href="https://redirect.github.com/coder/coder/issues/20664">#20664</a>)</li> <li><a href="https://github.com/coder/coder/commit/ea0aca0f26f3b32e95ce624e3877acbcaaa7c7ca"><code>ea0aca0</code></a> fix(coderd): fix template ai task check error message (<a href="https://redirect.github.com/coder/coder/issues/20651">#20651</a>) (<a href="https://redirect.github.com/coder/coder/issues/20659">#20659</a>)</li> <li><a href="https://github.com/coder/coder/commit/563612eb3b3b585a729cabc3555fda5f34dbbb71"><code>563612e</code></a> fix: delete related task when deleting workspace (<a href="https://redirect.github.com/coder/coder/issues/20567">#20567</a>) (<a href="https://redirect.github.com/coder/coder/issues/20585">#20585</a>)</li> <li><a href="https://github.com/coder/coder/commit/fa43ea8e688bfcf8a7591936274a54d5a0058497"><code>fa43ea8</code></a> chore: remove brazil fly.io proxy (<a href="https://redirect.github.com/coder/coder/issues/20601">#20601</a>) (<a href="https://redirect.github.com/coder/coder/issues/20645">#20645</a>)</li> <li><a href="https://github.com/coder/coder/commit/d82ba7e3a4e18ad85fda871edc135cf851d58f71"><code>d82ba7e</code></a> fix(coderd): disallow POSTing a workspace build on a deleted workspace (<a href="https://redirect.github.com/coder/coder/issues/2058">#2058</a>...</li> <li><a href="https://github.com/coder/coder/commit/cb4ea1f3970518d620bde14ea511bf1c4129327a"><code>cb4ea1f</code></a> fix(coderd): fix audit log resource link for tasks (<a href="https://redirect.github.com/coder/coder/issues/20545">#20545</a>) (<a href="https://redirect.github.com/coder/coder/issues/20547">#20547</a>)</li> <li><a href="https://github.com/coder/coder/commit/effbe4e52e83ef78bfcbac858fbbaf4751aa854b"><code>effbe4e</code></a> refactor: remove TaskAppID from codersdk.WorkspaceBuild (<a href="https://redirect.github.com/coder/coder/issues/20583">#20583</a>) (<a href="https://redirect.github.com/coder/coder/issues/20592">#20592</a>)</li> <li>Additional commits viewable in <a href="https://github.com/coder/coder/compare/v2.27.3...v2.28.3">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] | </details> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ethan Dickson <ethan@coder.com> Co-authored-by: Ethan <39577870+ethanndickson@users.noreply.github.com>
3 people authoredNov 19, 2025
Commits on Nov 21, 2025
-
chore(deps): bump golang.org/x/crypto from 0.43.0 to 0.45.0 (#281)
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.43.0 to 0.45.0. <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9"><code>4e0068c</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c"><code>e79546e</code></a> ssh: curb GSSAPI DoS risk by limiting number of specified OIDs</li> <li><a href="https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748"><code>f91f7a7</code></a> ssh/agent: prevent panic on malformed constraint</li> <li><a href="https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b"><code>2df4153</code></a> acme/autocert: let automatic renewal work with short lifetime certs</li> <li><a href="https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989"><code>bcf6a84</code></a> acme: pass context to request</li> <li><a href="https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e"><code>b4f2b62</code></a> ssh: fix error message on unsupported cipher</li> <li><a href="https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2"><code>79ec3a5</code></a> ssh: allow to bind to a hostname in remote forwarding</li> <li><a href="https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f"><code>122a78f</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd"><code>c0531f9</code></a> all: eliminate vet diagnostics</li> <li><a href="https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb"><code>0997000</code></a> all: fix some comments</li> <li>Additional commits viewable in <a href="https://github.com/golang/crypto/compare/v0.43.0...v0.45.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/coder/terraform-provider-coderd/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump github.com/docker/docker from 28.5.1+incompatible t…
…o 28.5.2+incompatible (#277) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 28.5.1+incompatible to 28.5.2+incompatible. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/docker/releases">github.com/docker/docker's releases</a>.</em></p> <blockquote> <h2>v28.5.2</h2> <h2>28.5.2</h2> <p>For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:</p> <ul> <li><a href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.2">docker/cli, 28.5.2 milestone</a></li> <li><a href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.2">moby/moby, 28.5.2 milestone</a></li> </ul> <blockquote> <p>[!CAUTION] This release contains fixes for three high-severity security vulnerabilities in runc:</p> <ul> <li><a href="https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2">CVE-2025-31133</a></li> <li><a href="https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r">CVE-2025-52565</a></li> <li><a href="https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm">CVE-2025-52881</a></li> </ul> <p>All three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary <code>/proc</code> files.</p> </blockquote> <h3>Packaging updates</h3> <ul> <li>Update runc to <a href="https://github.com/opencontainers/runc/releases/tag/v1.3.3">v1.3.3</a>. <a href="https://redirect.github.com/moby/moby/pull/51394">moby/moby#51394</a></li> </ul> <h3>Bug fixes and enhancements</h3> <ul> <li>dockerd-rootless.sh: if slirp4netns is not installed, try using pasta (passt). <a href="https://redirect.github.com/moby/moby/pull/51162">moby/moby#51162</a></li> <li>Update Go runtime to <a href="https://go.dev/doc/devel/release#go1.24.9">1.24.9</a>. <a href="https://redirect.github.com/moby/moby/pull/51387">moby/moby#51387</a>, <a href="https://redirect.github.com/docker/cli/pull/6613">docker/cli#6613</a></li> </ul> <h3>Deprecations</h3> <ul> <li>Go-SDK: cli/command/image/build: deprecate <code>DefaultDockerfileName</code>, <code>DetectArchiveReader</code>, <code>WriteTempDockerfile</code>, <code>ResolveAndValidateContextPath</code>. These utilities were only used internally and will be removed in the next release. <a href="https://redirect.github.com/docker/cli/pull/6610">docker/cli#6610</a></li> <li>Go-SDK: cli/command/image/build: deprecate IsArchive utility. <a href="https://redirect.github.com/docker/cli/pull/6560">docker/cli#6560</a></li> <li>Go-SDK: opts: deprecate <code>ValidateMACAddress</code>. <a href="https://redirect.github.com/docker/cli/pull/6560">docker/cli#6560</a></li> <li>Go-SDK: opts: deprecate ListOpts.Delete(). <a href="https://redirect.github.com/docker/cli/pull/6560">docker/cli#6560</a></li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/moby/moby/commit/89c5e8fd66634b6128fc4c0e6f1236e2540e46e0"><code>89c5e8f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51396">#51396</a> from thaJeztah/28.x_backport_api_docs</li> <li><a href="https://github.com/moby/moby/commit/9b93878308cae892878febfa52ff0b5799bea7b0"><code>9b93878</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51395">#51395</a> from thaJeztah/28.x_backport_rootless_reject</li> <li><a href="https://github.com/moby/moby/commit/6178456763b64c360983c5a5ea35d4258171e91c"><code>6178456</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51398">#51398</a> from vvoland/51397-28.x</li> <li><a href="https://github.com/moby/moby/commit/0cae4e5c8f76756eaba81dbd23ef57fccac3033f"><code>0cae4e5</code></a> vendor: github.com/moby/buildkit v0.25.2</li> <li><a href="https://github.com/moby/moby/commit/33cc06f6169ddba8f00c50a8c12494b54b1cb2fc"><code>33cc06f</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51394">#51394</a> from vvoland/51393-28.x</li> <li><a href="https://github.com/moby/moby/commit/d525277410726d5f99e46b8b2ba60ea9b7011afa"><code>d525277</code></a> api/docs: remove BuildCache.Parent field for API v1.42 and up</li> <li><a href="https://github.com/moby/moby/commit/2fbc51b4f895c75749896bf4655f7888a300bb9d"><code>2fbc51b</code></a> dockerd-rootless.sh: reject DOCKERD_ROOTLESS_ROOTLESSKIT_NET=host</li> <li><a href="https://github.com/moby/moby/commit/bd98008c078ab4a4d99f0c1577e641dbfe191cfd"><code>bd98008</code></a> integration-cli: Adjust nofile limits</li> <li><a href="https://github.com/moby/moby/commit/19675151a3d3b947501fcad1dcacbd00e6f4b23e"><code>1967515</code></a> Dockerfile: update runc binary to v1.3.3</li> <li><a href="https://github.com/moby/moby/commit/44896604b8f50d9ba38199c25ed2c7d2d40318a7"><code>4489660</code></a> Merge pull request <a href="https://redirect.github.com/docker/docker/issues/51387">#51387</a> from thaJeztah/28.x_bump_go</li> <li>Additional commits viewable in <a href="https://github.com/docker/docker/compare/v28.5.1...v28.5.2">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump github.com/hashicorp/terraform-plugin-framework-val…
…idators from 0.18.0 to 0.19.0 (#275) Bumps [github.com/hashicorp/terraform-plugin-framework-validators](https://github.com/hashicorp/terraform-plugin-framework-validators) from 0.18.0 to 0.19.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-framework-validators/releases">github.com/hashicorp/terraform-plugin-framework-validators's releases</a>.</em></p> <blockquote> <h2>v0.19.0</h2> <p>NOTES:</p> <ul> <li>all: This Go module has been updated to Go 1.24 per the Go support policy. It is recommended to review the Go 1.24 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/307">#307</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>actionvalidator: Introduce new package with declarative validators for action configurations (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/302">#302</a>)</li> <li>listresourcevalidator: Introduce new package with declarative validators for list resource configurations (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/298">#298</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/terraform-plugin-framework-validators/blob/main/CHANGELOG.md">github.com/hashicorp/terraform-plugin-framework-validators's changelog</a>.</em></p> <blockquote> <h2>0.19.0 (October 07, 2025)</h2> <p>NOTES:</p> <ul> <li>all: This Go module has been updated to Go 1.24 per the Go support policy. It is recommended to review the Go 1.24 release notes before upgrading. Any consumers building on earlier Go versions may experience errors. (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/307">#307</a>)</li> </ul> <p>FEATURES:</p> <ul> <li>actionvalidator: Introduce new package with declarative validators for action configurations (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/302">#302</a>)</li> <li>listresourcevalidator: Introduce new package with declarative validators for list resource configurations (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/298">#298</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/25a1378536d4975c1f8676989788a38e141c5e2e"><code>25a1378</code></a> Update changelog</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/3f083cadb275dda0849cac3a9421b1194e97f518"><code>3f083ca</code></a> build(deps): bump the terraform-plugin group with 2 updates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/305">#305</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/af35c54dbe9a3d552ad812f6c40173e00ff8eb95"><code>af35c54</code></a> update go version to 1.24.0 (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/307">#307</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/8e55d8ccabdb5fb483a7fac5ce1439c989faedbf"><code>8e55d8c</code></a> build(deps): bump the github-actions group with 2 updates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/304">#304</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/ca7df0b8e52fda5a73eee4f65893d90536410346"><code>ca7df0b</code></a> build(deps): bump the github-actions group with 2 updates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/303">#303</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/639f59d7aa564f50a626303e03b0daf6c9e1b9d0"><code>639f59d</code></a> actionvalidator: Add package for common action configuration validators (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/302">#302</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/073371e1763e4967c30cb6d339a3e2efd55bd449"><code>073371e</code></a> [CI] Update lock workflow file</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/23783f1f55c0f1ba7c151d4ed728af9dbb88094a"><code>23783f1</code></a> build(deps): bump the terraform-plugin group with 2 updates (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/301">#301</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/d81de64eae568113c84a4bdf46977856e30b6ce3"><code>d81de64</code></a> build(deps): bump github.com/hashicorp/terraform-plugin-framework (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/300">#300</a>)</li> <li><a href="https://github.com/hashicorp/terraform-plugin-framework-validators/commit/ee3a2f98fab3900fe72e4b94adc31db193825931"><code>ee3a2f9</code></a> build(deps): bump golang.org/x/oauth2 from 0.8.0 to 0.27.0 in /tools (<a href="https://redirect.github.com/hashicorp/terraform-plugin-framework-validators/issues/299">#299</a>)</li> <li>Additional commits viewable in <a href="https://github.com/hashicorp/terraform-plugin-framework-validators/compare/v0.18.0...v0.19.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on Nov 28, 2025
-
chore(deps): bump actions/checkout from 5.0.0 to 6.0.0 (#282)
Bumps [actions/checkout](https://github.com/actions/checkout) from 5.0.0 to 6.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/releases">actions/checkout's releases</a>.</em></p> <blockquote> <h2>v6.0.0</h2> <h2>What's Changed</h2> <ul> <li>Update README to include Node.js 24 support details and requirements by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2248">actions/checkout#2248</a></li> <li>Persist creds to a separate file by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2286">actions/checkout#2286</a></li> <li>v6-beta by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2298">actions/checkout#2298</a></li> <li>update readme/changelog for v6 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2311">actions/checkout#2311</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v5.0.0...v6.0.0">https://github.com/actions/checkout/compare/v5.0.0...v6.0.0</a></p> <h2>v6-beta</h2> <h2>What's Changed</h2> <p>Updated persist-credentials to store the credentials under <code>$RUNNER_TEMP</code> instead of directly in the local git config.</p> <p>This requires a minimum Actions Runner version of <a href="https://github.com/actions/runner/releases/tag/v2.329.0">v2.329.0</a> to access the persisted credentials for <a href="https://docs.github.com/en/actions/tutorials/use-containerized-services/create-a-docker-container-action">Docker container action</a> scenarios.</p> <h2>v5.0.1</h2> <h2>What's Changed</h2> <ul> <li>Port v6 cleanup to v5 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2301">actions/checkout#2301</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/checkout/compare/v5...v5.0.1">https://github.com/actions/checkout/compare/v5...v5.0.1</a></p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/actions/checkout/blob/main/CHANGELOG.md">actions/checkout's changelog</a>.</em></p> <blockquote> <h1>Changelog</h1> <h2>V6.0.0</h2> <ul> <li>Persist creds to a separate file by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2286">actions/checkout#2286</a></li> <li>Update README to include Node.js 24 support details and requirements by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2248">actions/checkout#2248</a></li> </ul> <h2>V5.0.1</h2> <ul> <li>Port v6 cleanup to v5 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2301">actions/checkout#2301</a></li> </ul> <h2>V5.0.0</h2> <ul> <li>Update actions checkout to use node 24 by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2226">actions/checkout#2226</a></li> </ul> <h2>V4.3.1</h2> <ul> <li>Port v6 cleanup to v4 by <a href="https://github.com/ericsciple"><code>@ericsciple</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2305">actions/checkout#2305</a></li> </ul> <h2>V4.3.0</h2> <ul> <li>docs: update README.md by <a href="https://github.com/motss"><code>@motss</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1971">actions/checkout#1971</a></li> <li>Add internal repos for checking out multiple repositories by <a href="https://github.com/mouismail"><code>@mouismail</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1977">actions/checkout#1977</a></li> <li>Documentation update - add recommended permissions to Readme by <a href="https://github.com/benwells"><code>@benwells</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2043">actions/checkout#2043</a></li> <li>Adjust positioning of user email note and permissions heading by <a href="https://github.com/joshmgross"><code>@joshmgross</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2044">actions/checkout#2044</a></li> <li>Update README.md by <a href="https://github.com/nebuk89"><code>@nebuk89</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2194">actions/checkout#2194</a></li> <li>Update CODEOWNERS for actions by <a href="https://github.com/TingluoHuang"><code>@TingluoHuang</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2224">actions/checkout#2224</a></li> <li>Update package dependencies by <a href="https://github.com/salmanmkc"><code>@salmanmkc</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/2236">actions/checkout#2236</a></li> </ul> <h2>v4.2.2</h2> <ul> <li><code>url-helper.ts</code> now leverages well-known environment variables by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1941">actions/checkout#1941</a></li> <li>Expand unit test coverage for <code>isGhes</code> by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1946">actions/checkout#1946</a></li> </ul> <h2>v4.2.1</h2> <ul> <li>Check out other refs/* by commit if provided, fall back to ref by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1924">actions/checkout#1924</a></li> </ul> <h2>v4.2.0</h2> <ul> <li>Add Ref and Commit outputs by <a href="https://github.com/lucacome"><code>@lucacome</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1180">actions/checkout#1180</a></li> <li>Dependency updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a>- <a href="https://redirect.github.com/actions/checkout/pull/1777">actions/checkout#1777</a>, <a href="https://redirect.github.com/actions/checkout/pull/1872">actions/checkout#1872</a></li> </ul> <h2>v4.1.7</h2> <ul> <li>Bump the minor-npm-dependencies group across 1 directory with 4 updates by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1739">actions/checkout#1739</a></li> <li>Bump actions/checkout from 3 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1697">actions/checkout#1697</a></li> <li>Check out other refs/* by commit by <a href="https://github.com/orhantoy"><code>@orhantoy</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1774">actions/checkout#1774</a></li> <li>Pin actions/checkout's own workflows to a known, good, stable version. by <a href="https://github.com/jww3"><code>@jww3</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1776">actions/checkout#1776</a></li> </ul> <h2>v4.1.6</h2> <ul> <li>Check platform to set archive extension appropriately by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1732">actions/checkout#1732</a></li> </ul> <h2>v4.1.5</h2> <ul> <li>Update NPM dependencies by <a href="https://github.com/cory-miller"><code>@cory-miller</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1703">actions/checkout#1703</a></li> <li>Bump github/codeql-action from 2 to 3 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1694">actions/checkout#1694</a></li> <li>Bump actions/setup-node from 1 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1696">actions/checkout#1696</a></li> <li>Bump actions/upload-artifact from 2 to 4 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/checkout/pull/1695">actions/checkout#1695</a></li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/checkout/commit/1af3b93b6815bc44a9784bd300feb67ff0d1eeb3"><code>1af3b93</code></a> update readme/changelog for v6 (<a href="https://redirect.github.com/actions/checkout/issues/2311">#2311</a>)</li> <li><a href="https://github.com/actions/checkout/commit/71cf2267d89c5cb81562390fa70a37fa40b1305e"><code>71cf226</code></a> v6-beta (<a href="https://redirect.github.com/actions/checkout/issues/2298">#2298</a>)</li> <li><a href="https://github.com/actions/checkout/commit/069c6959146423d11cd0184e6accf28f9d45f06e"><code>069c695</code></a> Persist creds to a separate file (<a href="https://redirect.github.com/actions/checkout/issues/2286">#2286</a>)</li> <li><a href="https://github.com/actions/checkout/commit/ff7abcd0c3c05ccf6adc123a8cd1fd4fb30fb493"><code>ff7abcd</code></a> Update README to include Node.js 24 support details and requirements (<a href="https://redirect.github.com/actions/checkout/issues/2248">#2248</a>)</li> <li>See full diff in <a href="https://github.com/actions/checkout/compare/08c6903cd8c0fde910a37f88322edcfb5dd907a8...1af3b93b6815bc44a9784bd300feb67ff0d1eeb3">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
-
chore(deps): bump actions/setup-go from 6.0.0 to 6.1.0 (#283)
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 6.0.0 to 6.1.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/actions/setup-go/releases">actions/setup-go's releases</a>.</em></p> <blockquote> <h2>v6.1.0</h2> <h2>What's Changed</h2> <h3>Enhancements</h3> <ul> <li>Fall back to downloading from go.dev/dl instead of storage.googleapis.com/golang by <a href="https://github.com/nicholasngai"><code>@nicholasngai</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/665">actions/setup-go#665</a></li> <li>Add support for .tool-versions file and update workflow by <a href="https://github.com/priya-kinthali"><code>@priya-kinthali</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/673">actions/setup-go#673</a></li> <li>Add comprehensive breaking changes documentation for v6 by <a href="https://github.com/mahabaleshwars"><code>@mahabaleshwars</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/674">actions/setup-go#674</a></li> </ul> <h3>Dependency updates</h3> <ul> <li>Upgrade eslint-config-prettier from 10.0.1 to 10.1.8 and document breaking changes in v6 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/617">actions/setup-go#617</a></li> <li>Upgrade actions/publish-action from 0.3.0 to 0.4.0 by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/641">actions/setup-go#641</a></li> <li>Upgrade semver and <code>@types/semver</code> by <a href="https://github.com/dependabot"><code>@dependabot</code></a> in <a href="https://redirect.github.com/actions/setup-go/pull/652">actions/setup-go#652</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/nicholasngai"><code>@nicholasngai</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/665">actions/setup-go#665</a></li> <li><a href="https://github.com/priya-kinthali"><code>@priya-kinthali</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/673">actions/setup-go#673</a></li> <li><a href="https://github.com/mahabaleshwars"><code>@mahabaleshwars</code></a> made their first contribution in <a href="https://redirect.github.com/actions/setup-go/pull/674">actions/setup-go#674</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/actions/setup-go/compare/v6...v6.1.0">https://github.com/actions/setup-go/compare/v6...v6.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/actions/setup-go/commit/4dc6199c7b1a012772edbd06daecab0f50c9053c"><code>4dc6199</code></a> Bump semver and <code>@types/semver</code> (<a href="https://redirect.github.com/actions/setup-go/issues/652">#652</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/f3787be646645f6c7bfecfa3e48f82a00d113834"><code>f3787be</code></a> Add comprehensive breaking changes documentation for v6 (<a href="https://redirect.github.com/actions/setup-go/issues/674">#674</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/3a0c2c82458cbb45a3cbfeeb2b91ce8f85420560"><code>3a0c2c8</code></a> Bump actions/publish-action from 0.3.0 to 0.4.0 (<a href="https://redirect.github.com/actions/setup-go/issues/641">#641</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/faf52423ec0d44c58f68e83b614bfcd99dded66f"><code>faf5242</code></a> Add support for .tool-versions file in setup-go, update workflow (<a href="https://redirect.github.com/actions/setup-go/issues/673">#673</a>)</li> <li><a href="https://github.com/actions/setup-go/commit/7bc60db215a8b16959b0b5cccfdc95950d697b25"><code>7bc60db</code></a> Fall back to downloading from go.dev/dl instead of storage.googleapis.com/gol...</li> <li><a href="https://github.com/actions/setup-go/commit/c0137caad775660c0844396c52da96e560aba63d"><code>c0137ca</code></a> Bump eslint-config-prettier from 10.0.1 to 10.1.8 and document breaking chang...</li> <li>See full diff in <a href="https://github.com/actions/setup-go/compare/44694675825211faa026b3c33043df3e48a5fa00...4dc6199c7b1a012772edbd06daecab0f50c9053c">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Commits on Dec 5, 2025
-
chore(deps): bump github.com/coder/coder/v2 from 2.28.3 to 2.28.4 (#285)
Bumps [github.com/coder/coder/v2](https://github.com/coder/coder) from 2.28.3 to 2.28.4. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/coder/coder/releases">github.com/coder/coder/v2's releases</a>.</em></p> <blockquote> <h2>v2.28.4</h2> <h2>Changelog</h2> <blockquote> <p>[!NOTE] This is a mainline Coder release. We advise enterprise customers without a staging environment to install our <a href="https://github.com/coder/coder/releases/latest">latest stable release</a> while we refine this version. Learn more about our <a href="https://coder.com/docs/install/releases">Release Schedule</a>.</p> </blockquote> <h3>SECURITY FIXES</h3> <ul> <li>Remove a sensitive field from an agent log line (<a href="https://redirect.github.com/coder/coder/issues/20968">#20968</a>) (<a href="https://redirect.github.com/coder/coder/issues/20972">#20972</a>, e2a46393f)</li> </ul> <h3>Bug fixes</h3> <ul> <li>Backport dynamic parameters fix <a href="https://redirect.github.com/coder/coder/issues/20740">#20740</a> (<a href="https://redirect.github.com/coder/coder/issues/20777">#20777</a>, 8765352fb)</li> <li>Backport fix <a href="https://redirect.github.com/coder/coder/issues/20769">#20769</a> to 2.28 (<a href="https://redirect.github.com/coder/coder/issues/20872">#20872</a>, aa5b22cb4)</li> </ul> <p>Compare: <a href="https://github.com/coder/coder/compare/v2.28.3...v2.28.4"><code>v2.28.3...v2.28.4</code></a></p> <h2>Container image</h2> <ul> <li><code>docker pull ghcr.io/coder/coder:v2.28.4</code></li> </ul> <h2>Install/upgrade</h2> <p>Refer to our docs to <a href="https://coder.com/docs/install">install</a> or <a href="https://coder.com/docs/install/upgrade">upgrade</a> Coder, or use a release asset below.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/coder/coder/commit/e2a46393fce40bc630df3293c1ee66a596277289"><code>e2a4639</code></a> fix: remove a sensitive field from an agent log line (<a href="https://redirect.github.com/coder/coder/issues/20968">#20968</a>) (<a href="https://redirect.github.com/coder/coder/issues/20972">#20972</a>)</li> <li><a href="https://github.com/coder/coder/commit/aa5b22cb46af53f6596249ac615077406b92cece"><code>aa5b22c</code></a> chore: backport fix <a href="https://redirect.github.com/coder/coder/issues/20769">#20769</a> to 2.28 (<a href="https://redirect.github.com/coder/coder/issues/20872">#20872</a>)</li> <li><a href="https://github.com/coder/coder/commit/8765352fb70dc1cd66c06398e1d869470275bc6b"><code>8765352</code></a> chore: backport dynamic parameters fix <a href="https://redirect.github.com/coder/coder/issues/20740">#20740</a> (<a href="https://redirect.github.com/coder/coder/issues/20777">#20777</a>)</li> <li>See full diff in <a href="https://github.com/coder/coder/compare/v2.28.3...v2.28.4">compare view</a></li> </ul> </details> <br /> <details> <summary>Most Recent Ignore Conditions Applied to This Pull Request</summary> | Dependency Name | Ignore Conditions | | --- | --- | | github.com/coder/coder/v2 | [>= 2.15.0.a, < 2.15.1] | | github.com/coder/coder/v2 | [>= 2.18.0.a, < 2.18.1] | </details> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Loading
This comparison is taking too long to generate.
Unfortunately it looks like we can’t render this comparison for you right now. It might be too big, or there might be something weird with your repository.
You can try running this command locally to see the comparison on your machine:
git diff v0.0.12...main