Bump golang from 1.19-alpine to 1.20-alpine #2380
Conversation
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
dependabot
bot
added
dependencies
|
At that time, I didn't know if a newer Go compiler could be used on older code. It seems that it should work, as the It's only later that I knew about it. |
|
I'll do the pr on my cellphone tonight, and use the /build command as a little test :) |
|
/build
|
🦙 MegaLinter status:
|
| Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
|---|---|---|---|---|---|
| ✅ BASH | bash-exec | 6 | 0 | 0.01s | |
| ✅ BASH | shellcheck | 6 | 0 | 0.16s | |
| ✅ BASH | shfmt | 6 | 0 | 0 | 0.42s |
| ✅ COPYPASTE | jscpd | yes | no | 3.57s | |
| ✅ DOCKERFILE | hadolint | 114 | 0 | 19.52s | |
| ✅ JSON | eslint-plugin-jsonc | 21 | 0 | 0 | 2.58s |
| ✅ JSON | jsonlint | 19 | 0 | 0.34s | |
| ✅ JSON | v8r | 21 | 0 | 14.36s | |
| markdownlint | 309 | 0 | 230 | 8.11s | |
| ✅ MARKDOWN | markdown-link-check | 309 | 0 | 6.2s | |
| ✅ MARKDOWN | markdown-table-formatter | 309 | 0 | 0 | 21.56s |
| ✅ OPENAPI | spectral | 1 | 0 | 2.24s | |
| bandit | 183 | 47 | 2.51s | ||
| ✅ PYTHON | black | 183 | 0 | 0 | 4.77s |
| ✅ PYTHON | flake8 | 183 | 0 | 2.16s | |
| ✅ PYTHON | isort | 183 | 0 | 0 | 1.62s |
| ✅ PYTHON | mypy | 183 | 0 | 8.99s | |
| ✅ PYTHON | pylint | 183 | 0 | 14.12s | |
| pyright | 183 | 254 | 20.45s | ||
| ✅ REPOSITORY | checkov | yes | no | 34.42s | |
| ✅ REPOSITORY | git_diff | yes | no | 0.41s | |
| ✅ REPOSITORY | secretlint | yes | no | 15.46s | |
| ✅ REPOSITORY | trivy | yes | no | 33.84s | |
| ✅ SPELL | cspell | 745 | 0 | 28.71s | |
| ✅ SPELL | misspell | 566 | 0 | 0 | 1.15s |
| ✅ XML | xmllint | 3 | 0 | 0 | 0.5s |
| ✅ YAML | prettier | 81 | 0 | 0 | 3.57s |
| ✅ YAML | v8r | 23 | 0 | 70.91s | |
| ✅ YAML | yamllint | 82 | 0 | 1.38s |
See detailed report in MegaLinter reports
MegaLinter is graciously provided by
|
/build ref=1d9bec75a7db74169e8940c037a4e4b17ff3cd90
|
|
/build ref=echoix:fix/build-sh-changes
|
|
Once #2381 merged, call @dependabot rebase, then /build |
|
@dependabot rebase |
|
Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry! If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request |
|
@dependabot recreate |
Bumps golang from 1.19-alpine to 1.20-alpine. --- updated-dependencies: - dependency-name: golang dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/docker/golang-1.20-alpine
branch
from
cb03cc9 to
eb04a10
Compare
|
/build
|
|
/build
|
|
/build ref=pull/2406/merge
|
|
/build ref=dependabot/docker/golang-1.20-alpine
|
|
@dependabot rebase |
|
Looks like this PR has been edited by someone other than Dependabot. That means Dependabot can't rebase it - sorry! If you're happy for Dependabot to recreate it from scratch, overwriting any edits, you can request |
🦙 MegaLinter status:
|
| Descriptor | Linter | Files | Fixed | Errors | Elapsed time |
|---|---|---|---|---|---|
| ✅ BASH | bash-exec | 6 | 0 | 0.02s | |
| ✅ BASH | shellcheck | 6 | 0 | 0.14s | |
| ✅ BASH | shfmt | 6 | 0 | 0 | 0.05s |
| ✅ COPYPASTE | jscpd | yes | no | 2.85s | |
| ✅ DOCKERFILE | hadolint | 114 | 0 | 17.14s | |
| ✅ JSON | eslint-plugin-jsonc | 21 | 0 | 0 | 1.81s |
| ✅ JSON | jsonlint | 19 | 0 | 0.29s | |
| ✅ JSON | npm-package-json-lint | yes | no | 0.64s | |
| ✅ JSON | v8r | 21 | 0 | 12.41s | |
| markdownlint | 309 | 2 | 230 | 6.33s | |
| ✅ MARKDOWN | markdown-link-check | 309 | 0 | 5.53s | |
| ✅ MARKDOWN | markdown-table-formatter | 309 | 2 | 0 | 17.94s |
| ✅ OPENAPI | spectral | 1 | 0 | 1.68s | |
| bandit | 183 | 47 | 2.2s | ||
| ✅ PYTHON | black | 183 | 0 | 0 | 3.6s |
| ✅ PYTHON | flake8 | 183 | 0 | 1.8s | |
| ✅ PYTHON | isort | 183 | 0 | 0 | 0.43s |
| ✅ PYTHON | mypy | 183 | 0 | 7.55s | |
| ✅ PYTHON | pylint | 183 | 0 | 12.21s | |
| pyright | 183 | 251 | 17.51s | ||
| ✅ REPOSITORY | checkov | yes | no | 30.91s | |
| devskim | yes | 61 | 1.41s | ||
| ✅ REPOSITORY | dustilock | yes | no | 1.43s | |
| ✅ REPOSITORY | git_diff | yes | no | 0.05s | |
| ✅ REPOSITORY | secretlint | yes | no | 8.55s | |
| ✅ REPOSITORY | syft | yes | no | 0.98s | |
| ✅ REPOSITORY | trivy | yes | no | 23.32s | |
| ✅ SPELL | cspell | 745 | 0 | 19.53s | |
| ✅ SPELL | misspell | 566 | 2 | 0 | 0.6s |
| ✅ XML | xmllint | 3 | 0 | 0 | 0.03s |
| ✅ YAML | prettier | 81 | 0 | 0 | 2.78s |
| ✅ YAML | v8r | 23 | 0 | 60.71s | |
| ✅ YAML | yamllint | 82 | 0 | 1.08s |
See detailed report in MegaLinter reports
You could have same capabilities but better runtime performances if you request a new MegaLinter flavor.
MegaLinter is graciously provided by
|
Did it need to have a different title for the change log, since it doesn't use the solution proposed by dependabot? @nvuillam |
|
It could be another PR, but as it's a dependency update, if we forget it's not the end of the world ^^ |
Bumps golang from 1.19-alpine to 1.20-alpine.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)