From 9a452f38ee4654e0f5d96905f9b4dae40e547a96 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 28 May 2024 14:20:11 +0200
Subject: [PATCH] Bump github.com/hashicorp/go-version from 1.6.0 to 1.7.0
(#1454)
Bumps
[github.com/hashicorp/go-version](https://github.com/hashicorp/go-version)
from 1.6.0 to 1.7.0.
Release notes
Sourced from github.com/hashicorp/go-version's
releases.
v1.7.0
ENHANCEMENTS:
- Remove
reflect dependency (#91)
- Implement the
database/sql.Scanner and
database/sql/driver.Value interfaces for
Version (#133)
INTERNAL:
- [COMPLIANCE] Add Copyright and License Headers (#115)
- [COMPLIANCE] Update MPL-2.0 LICENSE (#105)
- Bump actions/cache from 3.0.11 to 3.2.5 (#116)
- Bump actions/checkout from 3.2.0 to 3.3.0 (#111)
- Bump actions/upload-artifact from 3.1.1 to 3.1.2 (#112)
- GHA Migration (#103)
- github: Pin external GitHub Actions to hashes (#107)
- SEC-090: Automated trusted workflow pinning (2023-04-05) (#124)
- update readme (#104)
Changelog
Sourced from github.com/hashicorp/go-version's
changelog.
1.7.0 (May 24, 2024)
ENHANCEMENTS:
- Remove
reflect dependency (#91)
- Implement the
database/sql.Scanner and
database/sql/driver.Value interfaces for
Version (#133)
INTERNAL:
- [COMPLIANCE] Add Copyright and License Headers (#115)
- [COMPLIANCE] Update MPL-2.0 LICENSE (#105)
- Bump actions/cache from 3.0.11 to 3.2.5 (#116)
- Bump actions/checkout from 3.2.0 to 3.3.0 (#111)
- Bump actions/upload-artifact from 3.1.1 to 3.1.2 (#112)
- GHA Migration (#103)
- github: Pin external GitHub Actions to hashes (#107)
- SEC-090: Automated trusted workflow pinning (2023-04-05) (#124)
- update readme (#104)
Commits
fcaa532
Update CHANGELOG.mdb85381a
Update CHANGELOG.mdd55f214
Implement the Scan and driver.Value SQL interfaces (#133)e04a866
remove reflection dependency (#91)94bab9e
[COMPLIANCE] Add Copyright and License Headers (#115)73ddc63
github: Change Dependabot to only manage HashiCorp-owned Actionsbf1144e
SEC-090: Automated trusted workflow pinning (2023-04-05) (#124)644291d
Bump actions/cache from 3.0.11 to 3.2.5 (#116)8f6487b
Bump actions/upload-artifact from 3.1.1 to 3.1.2 (#112)7f856b8
Bump actions/checkout from 3.2.0 to 3.3.0 (#111)- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
go.mod | 2 +-
go.sum | 4 ++--
2 files changed, 3 insertions(+), 3 deletions(-)
diff --git a/go.mod b/go.mod
index 84933de2..8ccbeffc 100644
--- a/go.mod
+++ b/go.mod
@@ -9,7 +9,7 @@ require (
github.com/fatih/color v1.17.0 // MIT
github.com/ghodss/yaml v1.0.0 // MIT + NOTICE
github.com/google/uuid v1.6.0 // BSD-3-Clause
- github.com/hashicorp/go-version v1.6.0 // MPL 2.0
+ github.com/hashicorp/go-version v1.7.0 // MPL 2.0
github.com/hashicorp/hc-install v0.6.4 // MPL 2.0
github.com/hashicorp/terraform-exec v0.21.0 // MPL 2.0
github.com/hashicorp/terraform-json v0.22.1 // MPL 2.0
diff --git a/go.sum b/go.sum
index 16f9c9a1..71bd69bd 100644
--- a/go.sum
+++ b/go.sum
@@ -97,8 +97,8 @@ github.com/googleapis/gax-go/v2 v2.12.2 h1:mhN09QQW1jEWeMF74zGR81R30z4VJzjZsfkUh
github.com/googleapis/gax-go/v2 v2.12.2/go.mod h1:61M8vcyyXR2kqKFxKrfA22jaA8JGF7Dc8App1U3H6jc=
github.com/hashicorp/go-cleanhttp v0.5.2 h1:035FKYIWjmULyFRBKPs8TBQoi0x6d9G4xc9neXJWAZQ=
github.com/hashicorp/go-cleanhttp v0.5.2/go.mod h1:kO/YDlP8L1346E6Sodw+PrpBSV4/SoxCXGY6BqNFT48=
-github.com/hashicorp/go-version v1.6.0 h1:feTTfFNnjP967rlCxM/I9g701jU+RN74YKx2mOkIeek=
-github.com/hashicorp/go-version v1.6.0/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09ZGVZPK5anwXA=
+github.com/hashicorp/go-version v1.7.0 h1:5tqGy27NaOTB8yJKUZELlFAS/LTKJkrmONwQKeRZfjY=
+github.com/hashicorp/go-version v1.7.0/go.mod h1:fltr4n8CU8Ke44wwGCBoEymUuxUHl09ZGVZPK5anwXA=
github.com/hashicorp/hc-install v0.6.4 h1:QLqlM56/+SIIGvGcfFiwMY3z5WGXT066suo/v9Km8e0=
github.com/hashicorp/hc-install v0.6.4/go.mod h1:05LWLy8TD842OtgcfBbOT0WMoInBMUSHjmDx10zuBIA=
github.com/hashicorp/terraform-exec v0.21.0 h1:uNkLAe95ey5Uux6KJdua6+cv8asgILFVWkd/RG0D2XQ=