chore(deps): update all non-major dependencies

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
alpine	final	patch	3.19.0 -> 3.19.1
alpine	stage	patch	3.19.0 -> 3.19.1
codecov/codecov-action	action	digest	eaaf4be -> ab904c4
gcr.io/kaniko-project/executor	final	minor	v1.19.0-debug -> v1.20.1-debug
github.com/go-vela/types	require	minor	v0.22.0 -> v0.23.0
github.com/urfave/cli/v2	require	minor	v2.26.0 -> v2.27.1
github/codeql-action	action	digest	305f654 -> 1a077f8
reviewdog/action-golangci-lint	action	digest	94d61e3 -> 8e1117c

---

Release Notes

GoogleContainerTools/kaniko (gcr.io/kaniko-project/executor)

v1.20.1

Compare Source

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.20.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.20.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.20.1-slim

• chore(deps): bump github.com/moby/buildkit from 0.11.6 to 0.12.5, github.com/docker/docker from 24.0.7+incompatible to 25.0.2+incompatible, and other deps #​2995
• chore(deps): bump google.golang.org/api from 0.157.0 to 0.161.0 #​2987
• chore(deps): bump github.com/google/go-containerregistry from 0.18.0 to 0.19.0 #​2988
• chore(deps): bump sigstore/cosign-installer from 3.3.0 to 3.4.0 #​2989
• chore(deps): bump github.com/opencontainers/runc from 1.1.5 to 1.1.12 #​2981
• README change only: Clarify why merging into another container is a bad idea #​2965
• chore(deps): bump google-github-actions/auth from 2.0.1 to 2.1.0 #​2972
• chore(deps): bump google-github-actions/setup-gcloud from 2.0.1 to 2.1.0 #​2973
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.14 to 1.15.15 #​2975
• chore(deps): bump github.com/google/go-containerregistry from 0.17.0 to 0.18.0 #​2976
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.11 to 1.15.14 #​2966
• chore(deps): bump google.golang.org/api from 0.155.0 to 0.157.0 #​2960
• chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.26.3 to 1.26.5 #​2963
• chore(deps): update go-git/go-git, ProtonMail/go-cryto, and cloudflare/circl deps #​2959
• Update clarification for release.md #​2957

Huge thank you for this release towards our contributors:

• Aaron Prindle
• Asher
• Bob Du
• dependabot[bot]
• JeromeJu
• Maximilian Hippler
• timbavtbc

v1.20.0

Compare Source

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.20.0
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.20.0-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.20.0-slim

• chore(deps): bump golang.org/x/oauth2 from 0.15.0 to 0.16.0 #​2948
• chore(deps): bump google-github-actions/auth from 2.0.0 to 2.0.1 #​2947
• chore(deps): bump golang.org/x/sync from 0.5.0 to 0.6.0 #​2950
• chore(deps): bump github.com/containerd/containerd from 1.7.11 to 1.7.12 #​2951
• Prevent extra snapshot with --use-new-run #​2943
• replace github.com/Azure/azure-storage-blob-go => github.com/Azure/azure-sdk-for-go/sdk/storage/azblob #​2945
• Fixed wrong example in README.md #​2931
• chore(deps): bump golang.org/x/sys from 0.15.0 to 0.16.0 #​2936
• chore(deps): bump google.golang.org/api from 0.154.0 to 0.155.0 #​2937
• chore(deps): bump github.com/cloudflare/circl from 1.3.3 to 1.3.7 #​2942
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.9 to 1.15.11 #​2939
• chore(deps): bump AdityaGarg8/remove-unwanted-software from 1 to 2 #​2940
• chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.47.7 to 1.47.8 #​2932
• chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.26.2 to 1.26.3 #​2933
• chore(deps): bump github.com/google/go-containerregistry from 0.15.2 to 0.17.0 #​2924
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.7 to 1.15.9 #​2926
• chore(deps): bump google-github-actions/setup-gcloud from 2.0.0 to 2.0.1 #​2927

Huge thank you for this release towards our contributors:

• Asher
• Bob Du
• dependabot[bot]
• Maximilian Hippler

v1.19.2

Compare Source

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.19.2
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.19.2-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.19.2-slim

• chore: update gcr and acr cred helpers #​2910
• chore(deps): bump sigstore/cosign-installer from 3.2.0 to 3.3.0 #​2911
• chore(deps): bump google.golang.org/api from 0.152.0 to 0.154.0 #​2912
• chore(deps): bump cloud.google.com/go/storage from 1.35.1 to 1.36.0 #​2913
• chore(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 #​2914
• chore(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 #​2915
• fix: resolve integration test issue issue where container-diff cannot pull OCI images properly from registry #​2918
• fix: also update github.com/awslabs/amazon-ecr-credential-helper to resolve issues with AWS ECR authentication (resolves #​2882) #​2908

Huge thank you for this release towards our contributors:

• Aaron Prindle
• dependabot[bot]
• Patrick Decat

v1.19.1

Compare Source

The executor images in this release are:

gcr.io/kaniko-project/executor:v1.19.1
gcr.io/kaniko-project/executor:latest

The debug images are available at:

gcr.io/kaniko-project/executor:debug
gcr.io/kaniko-project/executor:v1.19.1-debug

The slim executor images which don't contain any authentication binaries are available at:

gcr.io/kaniko-project/executor:slim
gcr.io/kaniko-project/executor:v1.19.1-slim

• Reproducing and Fixing #​2892 #​2893
• chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.15.3 to 1.15.7 #​2897
• chore(deps): bump google-github-actions/setup-gcloud from 1.1.1 to 2.0.0 #​2902
• chore(deps): bump actions/setup-go from 4.1.0 to 5.0.0 #​2901
• chore(deps): bump github.com/containerd/containerd from 1.7.10 to 1.7.11 #​2899
• chore(deps): bump github.com/go-git/go-git/v5 from 5.10.1 to 5.11.0 #​2898
• chore(deps): bump github.com/aws/aws-sdk-go-v2 from 1.23.5 to 1.24.0 #​2896
• chore(deps): bump github.com/containerd/containerd from 1.7.9 to 1.7.10 #​2888
• chore(deps): bump github.com/aws/aws-sdk-go-v2/config from 1.25.8 to 1.25.11 #​2889
• chore(deps): bump google-github-actions/auth from 1.2.0 to 2.0.0 #​2886
• chore(deps): bump github.com/go-git/go-git/v5 from 5.10.0 to 5.10.1 #​2890
• fix: resolve aws-sdk-go-v2 lib compat issues causing ECR failures #​2885
• chore(deps): bump github.com/spf13/afero from 1.10.0 to 1.11.0 #​2891

Huge thank you for this release towards our contributors:

• Aaron Prindle
• dependabot[bot]
• Maxime BOSSARD

go-vela/types (github.com/go-vela/types)

v0.23.0

Compare Source

What's Changed

• feat(repo settings): approve build mechanism for pull_request events by @​ecrupper in https://github.com/go-vela/types/pull/328
• feat(repo)!: change allow_<event> fields to an AllowEvents struct + DB use integer masking by @​ecrupper in https://github.com/go-vela/types/pull/314
• fix(repo_events): add support for reopen by @​ecrupper in https://github.com/go-vela/types/pull/337
• feat(deployment): add deployment table by @​claire1618 in https://github.com/go-vela/types/pull/323
• enhance(secret): use allow event system by @​ecrupper in https://github.com/go-vela/types/pull/341
• feat: adding a delete_event by @​claire1618 in https://github.com/go-vela/types/pull/340
• fix: enabling a delete event to be allowed by @​claire1618 in https://github.com/go-vela/types/pull/342
• fix(repo): remove dead code EventAllowed by @​ecrupper in https://github.com/go-vela/types/pull/343
• enhance(ci): include PR title validation workflow by @​ecrupper in https://github.com/go-vela/types/pull/344
• fix(events): add schedule to ToDatabase and improve tests by @​ecrupper in https://github.com/go-vela/types/pull/345
• enhance(env): add VELA_PULL_REQUEST_SOURCE and _TARGET to comment type by @​ecrupper in https://github.com/go-vela/types/pull/346
• fix: title validator handle no parentheses + enforce whitespace by @​ecrupper in https://github.com/go-vela/types/pull/347
• feat: remodling EventDelete to resemble EventTag by @​claire1618 in https://github.com/go-vela/types/pull/348
• chore(deps): bulk update deps by @​ecrupper in https://github.com/go-vela/types/pull/349
• chore(deps): update codecov/codecov-action action to v4 by @​renovate in https://github.com/go-vela/types/pull/350
• chore(deps): update all non-major dependencies by @​renovate in https://github.com/go-vela/types/pull/334
• fix: fixing Nullify() DeployNumber statment to actually work by @​claire1618 in https://github.com/go-vela/types/pull/351
• chore(deps): update all non-major dependencies by @​renovate in https://github.com/go-vela/types/pull/352
• fix(schema): add delete events and wildcard to pull_request by @​ecrupper in https://github.com/go-vela/types/pull/354
• fix(database): add limit and eviction policy for deployment builds by @​ecrupper in https://github.com/go-vela/types/pull/355
• fix(ci): codeql by @​wass3rw3rk in https://github.com/go-vela/types/pull/356
• chore(deps): update github/codeql-action digest to e8893c5 by @​renovate in https://github.com/go-vela/types/pull/353
• chore(ci): include minor and patch versions in workflows by @​ecrupper in https://github.com/go-vela/types/pull/357

Full Changelog: go-vela/types@v0.22.0...v0.23.0

urfave/cli (github.com/urfave/cli/v2)

v2.27.1

Compare Source

What's Changed

• v2: Add build tag urfave_cli_no_suggest by @​dolmen in https://github.com/urfave/cli/pull/1847

Full Changelog: urfave/cli@v2.27.0...v2.27.1

v2.27.0

Compare Source

What's Changed

• v2 Add integration with golangci-lint by @​skelouse in https://github.com/urfave/cli/pull/1830
• v2: GitHub Actions: upgrade Go, upgrade actions by @​dolmen in https://github.com/urfave/cli/pull/1848
• Feat:(issue_1797) Add Args for app/cmd/subcmd to avoid argument... be… by @​dearchap in https://github.com/urfave/cli/pull/1829
• Fix:(issue_1850) Add RunAction for uint/uint64 slice flags by @​dearchap in https://github.com/urfave/cli/pull/1851

Full Changelog: urfave/cli@v2.26.0...v2.27.0

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Comparison is base (800615c) 44.91% compared to head (428b0bb) 44.91%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #183   +/-   ##
=======================================
  Coverage   44.91%   44.91%           
=======================================
  Files           7        7           
  Lines         688      688           
=======================================
  Hits          309      309           
  Misses        379      379