Updates go mod toolchain version to 1.22.4 #577

paketo-bot · 2024-06-10T03:29:10Z

No description provided.

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.32.0 to 0.32.1. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.32.0...v0.32.1) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.32.1 to 0.32.2. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.32.1...v0.32.2) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

* Bump github.com/anchore/syft from 0.32.2 to 0.33.0 Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.32.2 to 0.33.0. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.32.2...v0.33.0) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> * extract dependency IDs from syft output since these seem to change with syft releases Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Frankie Gallina-Jones <[email protected]>

to avoid brittleness from irrelevant SBOM content changes

* Bump github.com/anchore/syft from 0.33.0 to 0.34.0 Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.33.0 to 0.34.0. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.33.0...v0.34.0) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> * in tests: extract syft SBOM schema info from actual SBOM Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Frankie Gallina-Jones <[email protected]> Co-authored-by: Sophie Wigmore <[email protected]>

Currently, the servicebindings.Resolve(...) function does not consider whitespace when comparing the requested type/providers with what's on the filesystem. This change ensures that the type/providers read from disk are sanitized before they are used.

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.34.0 to 0.35.0. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.34.0...v0.35.0) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.35.0 to 0.35.1. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.35.0...v0.35.1) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

* Bump github.com/BurntSushi/toml from 0.4.1 to 1.0.0 Bumps [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) from 0.4.1 to 1.0.0. - [Release notes](https://github.com/BurntSushi/toml/releases) - [Commits](BurntSushi/toml@v0.4.1...v1.0.0) --- updated-dependencies: - dependency-name: github.com/BurntSushi/toml dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> * update toml decoding Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Frankie Gallina-Jones <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.17.0 to 1.18.0. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.17.0...v1.18.0) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.35.1 to 0.36.0. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.35.1...v0.36.0) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.18.0 to 1.18.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.18.0...v1.18.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.36.0 to 0.37.5. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.36.0...v0.37.5) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.37.5 to 0.37.10. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.37.5...v0.37.10) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.37.10 to 0.38.0. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.37.10...v0.38.0) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

* Fixes error interpolation case where err is nil * Adds failure case where there is additional data on the tar file Co-authored-by: Forest Eckhardt <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.38.0 to 0.39.3. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.38.0...v0.39.3) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/anchore/syft](https://github.com/anchore/syft) from 0.39.3 to 0.40.0. - [Release notes](https://github.com/anchore/syft/releases) - [Changelog](https://github.com/anchore/syft/blob/main/RELEASE.md) - [Commits](anchore/syft@v0.39.3...v0.40.0) --- updated-dependencies: - dependency-name: github.com/anchore/syft dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/gabriel-vasile/mimetype](https://github.com/gabriel-vasile/mimetype) from 1.4.2 to 1.4.3. - [Release notes](https://github.com/gabriel-vasile/mimetype/releases) - [Commits](gabriel-vasile/mimetype@v1.4.2...v1.4.3) --- updated-dependencies: - dependency-name: github.com/gabriel-vasile/mimetype dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.28.0 to 1.28.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.28.0...v1.28.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

* Enable Alternative Checksum format of algorithm-hash * Adjust alternate delimeter from - to _. * Update comment with algorithm_hash Co-authored-by: Sophie Wigmore <[email protected]> --------- Co-authored-by: Sophie Wigmore <[email protected]> Co-authored-by: Sophie Wigmore <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.28.1 to 1.29.0. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.28.1...v1.29.0) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.3.1 to 1.4.0. - [Release notes](https://github.com/google/uuid/releases) - [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md) - [Commits](google/uuid@v1.3.1...v1.4.0) --- updated-dependencies: - dependency-name: github.com/google/uuid dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.29.0 to 1.30.0. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.29.0...v1.30.0) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.4.0 to 1.5.0. - [Release notes](https://github.com/google/uuid/releases) - [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md) - [Commits](google/uuid@v1.4.0...v1.5.0) --- updated-dependencies: - dependency-name: github.com/google/uuid dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.30.0 to 1.31.0. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.30.0...v1.31.0) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.31.0 to 1.31.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.31.0...v1.31.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/google/uuid](https://github.com/google/uuid) from 1.5.0 to 1.6.0. - [Release notes](https://github.com/google/uuid/releases) - [Changelog](https://github.com/google/uuid/blob/master/CHANGELOG.md) - [Commits](google/uuid@v1.5.0...v1.6.0) --- updated-dependencies: - dependency-name: github.com/google/uuid dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/stretchr/testify](https://github.com/stretchr/testify) from 1.8.4 to 1.9.0. - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.8.4...v1.9.0) --- updated-dependencies: - dependency-name: github.com/stretchr/testify dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.31.1 to 1.32.0. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.31.1...v1.32.0) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) from 0.5.11 to 0.5.12. - [Commits](ulikunitz/xz@v0.5.11...v0.5.12) --- updated-dependencies: - dependency-name: github.com/ulikunitz/xz dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.32.0 to 1.33.0. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.32.0...v1.33.0) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/onsi/gomega](https://github.com/onsi/gomega) from 1.33.0 to 1.33.1. - [Release notes](https://github.com/onsi/gomega/releases) - [Changelog](https://github.com/onsi/gomega/blob/master/CHANGELOG.md) - [Commits](onsi/gomega@v1.33.0...v1.33.1) --- updated-dependencies: - dependency-name: github.com/onsi/gomega dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

Co-authored-by: Johannes Dillmann <[email protected]>

Bumps [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) from 1.3.2 to 1.4.0. - [Release notes](https://github.com/BurntSushi/toml/releases) - [Commits](BurntSushi/toml@v1.3.2...v1.4.0) --- updated-dependencies: - dependency-name: github.com/BurntSushi/toml dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps [github.com/gabriel-vasile/mimetype](https://github.com/gabriel-vasile/mimetype) from 1.4.3 to 1.4.4. - [Release notes](https://github.com/gabriel-vasile/mimetype/releases) - [Commits](gabriel-vasile/mimetype@v1.4.3...v1.4.4) --- updated-dependencies: - dependency-name: github.com/gabriel-vasile/mimetype dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]>

linux-foundation-easycla · 2024-06-10T03:29:26Z

✅ login: dependabot[bot] (bfefb95, 37dbc35, 4a6b6e9, a8d191f, 9c33469, ec2329c, 429f8e4, 0e95819, 8f76e7a, 57021e5, 0ff8008, 5add877, 881a73d, 795b1b9, 56ac668, fe14322, 0536aa9, e6b2701, 63415bf, 95719da, 53a23cf, f498877, 8f861ec, 67a71e0, 10340fb, f1329b1, a65afbb, 5d8cd20, 74d5f06, 67120d3, 95a690c, 8a7cf8f, 5022b00, f9813db, 56d7667, 246b9c4, 6a7f27d, 8a63129, abeb000, 7b9a5b0, 6c889fc, fb8c35f, 60d240d, a9c466f, 5d38995, 22b1ca9, 8ae6429, a9983c8, 0f61b71, 1d84cfe, 9784594, d991581, e3ed2b9, e9bd6e2, ad03504, 42a0269, dd5868f, 73d8bc1, e0511eb, f58bd8e, 87586bc, e89d955, 592fec7, c65a7b7, 909d039, 3790bd4, ac9385b, 8bb42ef, e6a8364, ffd6402, 6954a42, 8a2fa04, d94b1ef, 60faaec, d53b6dd, 34d99ab, 86b7e87, 7946103, 814626f, aa8161a, 1072dbc, a97c19b, e4f7c46, 64169e4, 7cc181e, 8117a8c, 85db596, ebf2e8a, 6ff09da, c7c3398, 82fbf79, 8f080ea, c40e34d, 3e01d1e, 181d2b3, 14ebfa0, 9bfc1d4, 663a970, c6f84d7, 14956ac, 15857fd, 43dbd22, 054c1ca, 65e47b8, de0f00f, 56b3d48, 13b0ecc, 95b8056, 42ee8c8, 703e4fb, 7ece65c, dbbbbc5, dd77ec5, 2ef9116, c1b785b, 0ce6d54, 0649674, 4ff7347, 4e9c21d, 777a503, a8ac405, 35d8f76, b31dc83)
✅ login: joshuatcasey / name: Joshua Casey (1224515, 54dcc85, cd69bd3, 3735008, 579f71a, 7484d77, 580c283, 545e8c0, d176542)
✅ login: paketo-bot (77b6938, 53d7bd7, 3acbbae, 61144ef, cc22b52, 5b6af78, be2f594, 2a4b22d, 706743a, 7d3ea90, dcc1374, 7893a5c, c10f263, ec908a0, c8db4ec, e366827)
✅ login: pacostas / name: Costas Papastathis (1dd83ed, 97dea53)
✅ login: ForestEckhardt / name: Forest Eckhardt (733d098, f95ee58, 7dfd95a, 8bb254b, c0228c6, 0ce9f56, 2ecad07, 7f7eaad, 4e304e4, d2001eb, ed29b63, 68f1252, fec3ba5, c7fa1a6, 1c5ad2f, f027902, d8bc1a6, 602660a, aade3bb, 3b843c5, 4f67806, 3d5da08, de1bc36)
✅ login: noamichael (98052d2)
✅ login: robdimsdale / name: Rob Dimsdale-Zucker (11cf297, bf5a320, 1820200)
✅ login: modulo11 / name: Johannes Dillmann (4a226ae)
✅ login: ryanmoran / name: Ryan Moran (246a747, 06a914f, 998393f, 99c168f, 0c723ae, 1d7e9a9, b5dff77)
✅ login: sophiewigmore / name: Sophie Wigmore (fe74309, bc31d56, 9339a24, 5c8e862, b5e27ef, f959f31, bbd6771, e7bd30a, b0348e1, 7fc64d7)
✅ login: samj1912 / name: Sambhav Kothari (ba6658c)
✅ login: pbusko / name: Pavel Busko (d41178d, 13393ec)
✅ login: ChuckQuinnIV / name: Chuck Quinn IV (fb332c0)
❌ The email address for the commit (39b9455, 01b7e94, 56c823a, 07ce8a2, 8a2660d, 2247967, 6bec663, 5b4d81b, 115372f, 5fa7790, 190426a, 35cf40c, 3f5210f, c810215, 8b897da, 5bda788, e3745cd, 531c596, 49787b5, 29abfed, c773010, 610f3b8, 444cccb, 80341f5, 306103e, 32d5998, 776ba7a, 23a81a1, cf9981d, 1baf032, 341fa34, 1434903, e050758, e1f6949, 1be192e, cbf7ba2, 548b1e3, 05348af, 02183b6, 5ff9d3b, b8f20b3) is not linked to the GitHub account, preventing the EasyCLA check. Consult this Help Article and GitHub Help to resolve. (To view the commit's email address, add .patch at the end of this PR page's URL.) For further assistance with EasyCLA, please submit a support request ticket.

robdimsdale · 2024-06-10T17:58:10Z

We will need to switch this over to point to the v2 branch

Ryan Moran and others added 30 commits December 7, 2021 08:06

Adds v2 branch

39b9455

Fixes import statement for v2 module

c810215

Removes syft replace directive to use upstream

5bda788

Updates expectations to match new Syft output

4f67806

streamline sbom test assertions

6bec663

to avoid brittleness from irrelevant SBOM content changes

extract SBOM output structs; share across tests

5b4d81b

remove unused structs

56c823a

Add a WithLevel function to scribe.Emitter

b0348e1

Update input to syft.CatalogPackages

bbd6771

Fixes breaking changes in syft sbom package

8a2660d

make logger writers public (#284)

02183b6

add SBOM logging to scribe.Emitter

07ce8a2

Fixes error interpolation case where err is nil (#289)

99c168f

* Fixes error interpolation case where err is nil * Adds failure case where there is additional data on the tar file Co-authored-by: Forest Eckhardt <[email protected]>

Trims whitespace around dependency-mapping values (#291)

06a914f

dependabot bot and others added 24 commits October 12, 2023 22:39

Updating github-config

c8db4ec

Updating github-config

c10f263

Allows users to set a dependency mirror (#563)

4c9f338

Fixes mirror bug when originalHost is excluded (#569)

ce376b7

Support reading service bindings from VCAP_SERVICES env var (#566)

13393ec

Co-authored-by: Johannes Dillmann <[email protected]>

Updating github-config

e366827

Updates go mod toolchain version to 1.22.4

ec908a0

paketo-bot requested a review from a team as a code owner June 10, 2024 03:29

paketo-bot requested review from ForestEckhardt and sophiewigmore June 10, 2024 03:29

robdimsdale closed this Jun 10, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Updates go mod toolchain version to 1.22.4 #577

Updates go mod toolchain version to 1.22.4 #577

paketo-bot commented Jun 10, 2024

linux-foundation-easycla bot commented Jun 10, 2024

robdimsdale commented Jun 10, 2024

Updates go mod toolchain version to 1.22.4 #577

Updates go mod toolchain version to 1.22.4 #577

Conversation

paketo-bot commented Jun 10, 2024

linux-foundation-easycla bot commented Jun 10, 2024

robdimsdale commented Jun 10, 2024