Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Renovate Update Patch & Minor Updates #1563

Merged
merged 4 commits into from
Oct 21, 2024
Merged

Renovate Update Patch & Minor Updates #1563

merged 4 commits into from
Oct 21, 2024

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Oct 21, 2024
edited
Loading

This PR contains the following updates:

Package Type Update Change Pending Age Adoption Passing Confidence
aquasecurity/trivy-action action minor 0.26.0 -> 0.28.0 age adoption passing confidence
aws (source) required_provider minor ~> 5.70.0 -> ~> 5.72.0 age adoption passing confidence
axe-core (source) devDependencies patch 4.10.0 -> 4.10.1 age adoption passing confidence
boto3 patch ==1.35.38 -> ==1.35.43 1.35.44 age adoption passing confidence
github.com/aws/aws-sdk-go-v2/config require minor v1.27.43 -> v1.28.0 age adoption passing confidence
github.com/aws/aws-sdk-go-v2/service/s3 require minor v1.65.2 -> v1.66.0 age adoption passing confidence
github.com/gabriel-vasile/mimetype require patch v1.4.5 -> v1.4.6 age adoption passing confidence
github.com/ministryofjustice/opg-go-common require minor v1.18.0 -> v1.25.0 age adoption passing confidence
github.com/opensearch-project/opensearch-go/v4 require minor v4.2.0 -> v4.3.0 age adoption passing confidence
github.com/vektra/mockery/v2 require patch v2.46.2 -> v2.46.3 age adoption passing confidence
github/codeql-action action patch v3.26.12 -> v3.26.13 age adoption passing confidence
go.opentelemetry.io/contrib/detectors/aws/ecs require minor v1.30.0 -> v1.31.0 age adoption passing confidence
go.opentelemetry.io/contrib/instrumentation/github.com/aws/aws-sdk-go-v2/otelaws require minor v0.55.0 -> v0.56.0 age adoption passing confidence
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp require minor v0.55.0 -> v0.56.0 age adoption passing confidence
go.opentelemetry.io/contrib/propagators/aws require minor v1.30.0 -> v1.31.0 age adoption passing confidence
go.opentelemetry.io/otel require minor v1.30.0 -> v1.31.0 age adoption passing confidence
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc require minor v1.30.0 -> v1.31.0 age adoption passing confidence
go.opentelemetry.io/otel/sdk require minor v1.30.0 -> v1.31.0 age adoption passing confidence
go.opentelemetry.io/otel/trace require minor v1.30.0 -> v1.31.0 age adoption passing confidence
golang stage patch 1.23.1-alpine -> 1.23.2-alpine age adoption passing confidence
govuk-frontend (source) dependencies patch 5.7.0 -> 5.7.1 age adoption passing confidence
hashicorp/terraform required_version patch 1.9.7 -> 1.9.8 age adoption passing confidence
outofcoffee/imposter final minor 4.0.5 -> 4.1.2 age adoption passing confidence
pagerduty (source) required_provider minor 3.15.7 -> 3.16.0 age adoption passing confidence
sass dependencies minor 1.79.5 -> 1.80.2 1.80.3 age adoption passing confidence

Release Notes

aquasecurity/trivy-action (aquasecurity/trivy-action)

v0.28.0

Compare Source

What's Changed

Full Changelog: aquasecurity/trivy-action@0.27.0...0.28.0

v0.27.0

Compare Source

What's Changed

Full Changelog: aquasecurity/trivy-action@0.26.0...0.27.0

hashicorp/terraform-provider-aws (aws)

v5.72.1

Compare Source

FEATURES:

  • New Resource: aws_iam_group_policy_attachments_exclusive (#​39732)
  • New Resource: aws_iam_user_policy_attachments_exclusive (#​39731)

ENHANCEMENTS:

  • resource/aws_resourceexplorer2_view: Add scope argument (#​39744)

BUG FIXES:

  • data-source/aws_batch_job_definition: Properly handles ignored tags. (#​39734)
  • data-source/aws_cognito_user_pool: Properly handles ignored tags. (#​39734)
  • resource/aws_cognito_user_pool: Properly handles ignored tags. (#​39734)
  • resource/aws_dynamodb_table: Fix crash when billing_mode is set to PAY_PER_REQUEST without global_secondary_index updates (#​39752)
  • resource/aws_dynamodb_table_replica: Properly handles default and ignored tags. (#​39734)
  • resource/aws_resourceexplorer2_index: Correctly mark incomplete AGGREGATOR indexes as tainted on Create (#​39744)

v5.72.0

Compare Source

NOTES:

  • This version contains all the features, enhancements, and bug fixes from the v5.71.0 release which was removed from the Terraform Registry (#​39692)
  • resource/aws_iam_role: The managed_policy_arns argument is deprecated. Use the aws_iam_role_policy_attachments_exclusive resource instead. (#​39718)

FEATURES:

  • New Resource: aws_iam_role_policy_attachments_exclusive (#​39718)

ENHANCEMENTS:

  • data-source/aws_workspaces_directory: Add saml_properties attribute (#​39060)
  • resource/aws_appflow_flow: Add source_flow_config.source_connector_properties.sapo_data.pagination_config and source_flow_config.source_connector_properties.sapo_data.parallelism_config attributes (#​38932)
  • resource/aws_cloudwatch_event_rule: Add tags to AWS API request on Update to support ABAC aws:RequestTag conditions (#​39648)
  • resource/aws_cloudwatch_event_target: Add appsync_target configuration block (#​37773)
  • resource/aws_dynamodb_table: Add on_demand_throughput and global_secondary_index.on_demand_throughput arguments (#​37799)
  • resource/aws_rds_cluster: Increase maximum value of serverlessv2_scaling_configuration.max_capacity and serverlessv2_scaling_configuration.min_capacity from 128 to 256 (#​39697)
  • resource/aws_rds_cluster_instance: Treat storage-optimization status as success when creating or updating cluster DB instances (#​39691)
  • resource/aws_workspaces_directory: Add saml_properties configuration block (#​39060)

BUG FIXES:

  • data-source/aws_ssm_document: Correct arn for automation documents (#​39705)
  • resource/aws_cognito_user_pool: Fixes error when schema has empty string_attribute_constraints or number_attribute_constraints (#​20386)
  • resource/aws_ssm_document: Correct arn for automation documents (#​39705)
dequelabs/axe-core (axe-core)

v4.10.1

Compare Source

boto/boto3 (boto3)

v1.35.43

Compare Source

=======

  • api-change:bedrock-agent: [botocore] Removing support for topK property in PromptModelInferenceConfiguration object, Making PromptTemplateConfiguration property as required, Limiting the maximum PromptVariant to 1
  • api-change:dataexchange: [botocore] This release adds Data Grant support, through which customers can programmatically create data grants to share with other AWS accounts and accept data grants from other AWS accounts.
  • api-change:ecs: [botocore] This is an Amazon ECS documentation only update to address tickets.
  • api-change:pinpoint-sms-voice-v2: [botocore] Added the registrations status of REQUIRES_AUTHENTICATION
  • api-change:pipes: [botocore] This release adds validation to require specifying a SecurityGroup and Subnets in the Vpc object under PipesSourceSelfManagedKafkaParameters. It also adds support for iso-e, iso-f, and other non-commercial partitions in ARN parameters.
  • api-change:quicksight: [botocore] Add StartDashboardSnapshotJobSchedule API. RestoreAnalysis now supports restoring analysis to folders.
  • api-change:rds: [botocore] Updates Amazon RDS documentation for TAZ IAM support
  • api-change:workspaces: [botocore] Updated the DomainName pattern for Active Directory

v1.35.42

Compare Source

=======

  • api-change:s3: [botocore] Add support for the new optional bucket-region and prefix query parameters in the ListBuckets API. For ListBuckets requests that express pagination, Amazon S3 will now return both the bucket names and associated AWS regions in the response.
  • bugfix:Config: [botocore] Fixed sigv4a_signing_region_set resolution when set in environment or config file.

v1.35.41

Compare Source

=======

  • api-change:amplify: [botocore] Added sourceUrlType field to StartDeployment request
  • api-change:cloudformation: [botocore] Documentation update for AWS CloudFormation API Reference.
  • api-change:codebuild: [botocore] Enable proxy for reserved capacity fleet.
  • api-change:ivs: [botocore] On a channel that you own, you can now replace an ongoing stream with a new stream by streaming up with the priority parameter appended to the stream key.
  • api-change:qbusiness: [botocore] Amazon Q Business now supports embedding the Amazon Q Business web experience on third-party websites.
  • api-change:redshift: [botocore] This release launches the CreateIntegration, DeleteIntegration, DescribeIntegrations and ModifyIntegration APIs to create and manage Amazon Redshift Zero-ETL Integrations.
  • api-change:resiliencehub: [botocore] AWS Resilience Hub now integrates with the myApplications platform, enabling customers to easily assess the resilience of applications defined in myApplications. The new Resiliency widget provides visibility into application resilience and actionable recommendations for improvement.
  • api-change:sesv2: [botocore] This release adds support for email maximum delivery seconds that allows senders to control the time within which their emails are attempted for delivery.

v1.35.40

Compare Source

=======

  • api-change:codepipeline: [botocore] AWS CodePipeline V2 type pipelines now support automatically retrying failed stages and skipping stage for failed entry conditions.
  • api-change:mailmanager: [botocore] Mail Manager support for viewing and exporting metadata of archived messages.
  • api-change:securitylake: [botocore] This release updates request validation regex for resource ARNs.
  • api-change:supplychain: [botocore] This release adds AWS Supply Chain instance management functionality. Specifically adding CreateInstance, DeleteInstance, GetInstance, ListInstances, and UpdateInstance APIs.
  • api-change:transfer: [botocore] This release enables customers using SFTP connectors to query the transfer status of their files to meet their monitoring needs as well as orchestrate post transfer actions.

v1.35.39

Compare Source

=======

  • api-change:appflow: [botocore] Doc only updates for clarification around OAuth2GrantType for Salesforce.
  • api-change:elbv2: [botocore] Add zonal_shift.config.enabled attribute. Add new AdministrativeOverride construct in the describe-target-health API response to include information about the override status applied to a target.
  • api-change:emr: [botocore] This release provides new parameter "Context" in instance fleet clusters.
  • api-change:guardduty: [botocore] Added a new field for network connection details.
  • api-change:robomaker: [botocore] Documentation update: added support notices to each API action.
aws/aws-sdk-go-v2 (github.com/aws/aws-sdk-go-v2/config)

v1.28.0

gabriel-vasile/mimetype (github.com/gabriel-vasile/mimetype)

v1.4.6

Compare Source

What's Changed
New Contributors

Full Changelog: gabriel-vasile/mimetype@v1.4.5...v1.4.6

ministryofjustice/opg-go-common (github.com/ministryofjustice/opg-go-common)

v1.25.0

Compare Source

v1.24.0

Compare Source

v1.23.0

Compare Source

v1.22.0

Compare Source

v1.21.0

Compare Source

v1.20.0

Compare Source

v1.19.0

Compare Source

opensearch-project/opensearch-go (github.com/opensearch-project/opensearch-go/v4)

v4.3.0

Compare Source

What's Changed

New Contributors

Full Changelog: opensearch-project/opensearch-go@v4.2.0...v4.3.0

vektra/mockery (github.com/vektra/mockery/v2)

v2.46.3

Compare Source

Changelog

github/codeql-action (github/codeql-action)

v3.26.13

Compare Source

open-telemetry/opentelemetry-go-contrib (go.opentelemetry.io/contrib/detectors/aws/ecs)

v1.31.0: /v0.56.0/v0.25.0/v0.11.0/v0.6.0/v0.4.0/v0.3.0

Compare Source

Overview

Added
  • The Severitier and SeverityVar types are added to go.opentelemetry.io/contrib/processors/minsev allowing dynamic configuration of the severity used by the LogProcessor. (#​6116)
  • Move examples from go.opentelemetry.io/otel to this repository under examples directory. (#​6158)
  • Support yaml/json struct tags for generated code in go.opentelemetry.io/contrib/config. (#​5433)
  • Add support for parsing YAML configuration via ParseYAML in go.opentelemetry.io/contrib/config. (#​5433)
  • Add support for temporality preference configuration in go.opentelemetry.io/contrib/config. (#​5860)
Changed
  • The function signature of NewLogProcessor in go.opentelemetry.io/contrib/processors/minsev has changed to accept the added Severitier interface instead of a log.Severity. (#​6116)
  • Updated go.opentelemetry.io/contrib/config to use the v0.3.0 release of schema which includes backwards incompatible changes. (#​6126)
  • NewSDK in go.opentelemetry.io/contrib/config now returns a no-op SDK if disabled is set to true. (#​6185)
  • The deprecated go.opentelemetry.io/contrib/instrumentation/github.com/labstack/echo/otelecho package has found a Code Owner. The package is no longer deprecated. (#​6207)
Fixed
  • Possible nil dereference panic in go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace. (#​5965)
  • logrus.Level transformed to appropriate log.Severity in go.opentelemetry.io/contrib/bridges/otellogrus. (#​6191)
Removed
  • The Minimum field of the LogProcessor in go.opentelemetry.io/contrib/processors/minsev is removed.
    Use NewLogProcessor to configure this setting. (#​6116)
  • The deprecated go.opentelemetry.io/contrib/instrumentation/gopkg.in/macaron.v1/otelmacaron package is removed. (#​6186)
  • The deprecated go.opentelemetry.io/contrib/samplers/aws/xray package is removed. (#​6187)

What's Changed

Configuration

📅 Schedule: Branch creation - "before 4am on Monday" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot requested a review from a team as a code owner October 21, 2024 01:39
@renovate renovate bot added dependencies Pull requests that update a dependency file Renovate labels Oct 21, 2024
@renovate Renovate
Copy link
Contributor Author

renovate bot commented Oct 21, 2024

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 5 additional dependencies were updated

Details:

Package Change
go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.30.0 -> v1.31.0
go.opentelemetry.io/otel/metric v1.30.0 -> v1.31.0
google.golang.org/genproto/googleapis/api v0.0.0-20240903143218-8af14fe29dc1 -> v0.0.0-20241007155032-5fefd90f89a9
google.golang.org/genproto/googleapis/rpc v0.0.0-20240903143218-8af14fe29dc1 -> v0.0.0-20241007155032-5fefd90f89a9
google.golang.org/protobuf v1.34.2 -> v1.35.1

@codecov Codecov
Copy link

codecov bot commented Oct 21, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 94.79%. Comparing base (ff67458) to head (739dd68).

Additional details and impacted files 
@@            Coverage Diff             @@
##             main    #1563      +/-   ##
==========================================
- Coverage   94.81%   94.79%   -0.02%     
==========================================
  Files         271      271              
  Lines       15158    15158              
==========================================
- Hits        14372    14369       -3     
- Misses        615      617       +2     
- Partials      171      172       +1
Flag Coverage Δ
unittests 94.79% <ø> (-0.02%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@renovate Renovate
Copy link
Contributor Author

renovate bot commented Oct 21, 2024

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@andrewpearce-digital
Copy link
Contributor

andrewpearce-digital commented Oct 21, 2024
edited
Loading

The vulnerabiity scan was taking on settings from the misconfiguration scan, returning exit 1 when there is a finding (which is behaviour we want in the future and is ticketed up).

I've updated the configuration to make sure it's using the correct scanners and correct exit code for each scan type.

@andrewpearce-digital andrewpearce-digital merged commit de54d5a into main Oct 21, 2024
30 checks passed
@andrewpearce-digital andrewpearce-digital deleted the renovate-all-minor-patch-updates branch October 21, 2024 10:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrewpearce-digital andrewpearce-digital andrewpearce-digital approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file Renovate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@andrewpearce-digital