Skip to content
This repository was archived by the owner on Aug 1, 2025. It is now read-only.

feat(deps): bump github.com/xmidt-org/wrp-go/v3 from 3.1.4 to 3.2.2 #176

Closed
dependabot wants to merge 1 commit into from
Closed

feat(deps): bump github.com/xmidt-org/wrp-go/v3 from 3.1.4 to 3.2.2 #176

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 16, 2023

Bumps github.com/xmidt-org/wrp-go/v3 from 3.1.4 to 3.2.2.

Release notes

Sourced from github.com/xmidt-org/wrp-go/v3's releases.

v3.2.2

Changelog

Other Work

  • fdf67997e52caf092a69779a1d48a6fd67aed53f: removed error from String to Message Type and replaced with UnKnownMessageType (@​maurafortino)
  • f80095b613917e62f0047665154694516fbcaa7f: removed message type validation and updated tests (@​maurafortino)

v3.2.1

Changelog

Dependency Updates

  • e3db47f9274acafc0635b6052d3d32d931ed37c9: feat(deps): bump github.com/google/uuid from 1.3.1 to 1.4.0 (#141) (@​dependabot[bot])

Other Work

  • 843b6f78b075c2129ca48beab5b4a83c4ba3cfa6: patch: DecodeEntity doesn't honor contentType (@​denopink)

v3.2.0

Changelog

Bug Fixes

  • 9de4923ee5c50d72a782540bd140f45a954804cd: Add two DeviceID helper functions so the prefix:id are always uniformly split when that is needed. (@​schmidtw)

Dependency Updates

  • cb99da8f9b6dd54dd718dd55f4983efdbab22f46: feat(deps): bump github.com/go-kit/kit from 0.12.0 to 0.13.0 (#133) (@​dependabot[bot])
  • 0e92ae81ee0bd0f66413c32aaf3ddf97e657febe: feat(deps): bump github.com/google/uuid from 1.3.0 to 1.3.1 (#132) (@​dependabot[bot])

Other Work

  • f4065dd18ea7d6a003b63f2e08a77300ff4a0596: Bump github.com/stretchr/testify from 1.8.2 to 1.8.3 (#126) (@​dependabot[bot])
  • 6933129ca813a085404950eb837c095a4882f998: Bump github.com/stretchr/testify from 1.8.3 to 1.8.4 (#127) (@​dependabot[bot])
  • 3df5cd13589560d256a341bfd7ced87d9ca2f6fe: Bump github.com/xmidt-org/httpaux from 0.3.2 to 0.4.0 (#128) (@​dependabot[bot])
  • 3e55fcd58b466156c1f8d87fd04cc63fc062ee8d: Fix the newly identified lint issues. (@​schmidtw)
  • 7f26190795c6e7c15f7d7ac65f195cb370f92448: Fix the style warnings and enable them moving forward. (@​schmidtw)
  • 4336a4507778249eff5be853bac2308f85723523: Update dependabot to manage all dependencies. (@​schmidtw)
  • d50cac5bac87560c71e7b9500a501978d028b7cb: Use SPDX format. (@​schmidtw)
  • 4734c1df847a6f099f928a1ad917aa6bd1c288a1: WIP: added validation for transaction uuid (@​maurafortino)
  • 9bd12352b71666b0cfdf67c9cc6f4ff8c00081a9: updated validation function name and added tests (@​maurafortino)

v3.1.6

Changelog

Other Work

  • 79fc30ced61f16aca28dc80a674a78ba7ae05bf2: Regenerate Ugorji Code for new codec version (@​renaz6)

v3.1.5

Changelog

Other Work

  • 6e3a39ee5da75a0bfdddff82df6bdb23549e43a5: Add tests (@​renaz6)
  • 85f86f6e142d256f3a1f55299d8f252632f8ad0f: Add tests for new decoder (@​renaz6)
  • 467adcd13d225ef8ba7390d51fa2718f0756427d: Bump github.com/stretchr/testify from 1.8.0 to 1.8.1 (#105) (@​dependabot[bot])
  • e6ccf0db0b432e8294722aad17c286b3607296e9: Bump github.com/stretchr/testify from 1.8.1 to 1.8.2 (#110) (@​dependabot[bot])
  • 76a155f4116175dfdffcf7d9e9ff68e73e1b41ea: Bump github.com/ugorji/go/codec from 1.2.7 to 1.2.8 (#107) (@​dependabot[bot])
  • 613507f12eb6821c3b822ad44d701c697ce7b675: Bump github.com/ugorji/go/codec from 1.2.8 to 1.2.11 (#112) (@​dependabot[bot])
  • eefc83c8b5440580b3b512bc25c8c90bec105f03: Bump go.uber.org/multierr from 1.10.0 to 1.11.0 (#117) (@​dependabot[bot])
  • e27aa84b1ad07a97704ba489f8a7e275c8c24e0c: Bump go.uber.org/multierr from 1.8.0 to 1.9.0 (#106) (@​dependabot[bot])
  • e7c67a5ebf305f867014706a34cc02ab39b30a82: Bump go.uber.org/multierr from 1.9.0 to 1.10.0 (#111) (@​dependabot[bot])
  • 020c1bd99c109316d8e8e8d2a3d0f6ce157e5286: Check and accept alternative Xmidt headers (@​renaz6)
  • a3736d5ebdfbef9630b33ba5ec1fbfb1187485d5: Fix Linter issues (@​renaz6)

... (truncated)

Changelog

Sourced from github.com/xmidt-org/wrp-go/v3's changelog.

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog and this project adheres to Semantic Versioning.

[Unreleased]

Commits
  • c62c675 Merge pull request #145 from xmidt-org/messageType-Update
  • f80095b removed message type validation and updated tests
  • fdf6799 removed error from String to Message Type and replaced with UnKnownMessageType
  • 3460c43 Merge pull request #142 from xmidt-org/denopink/patch/wrp-DecodeEntity-doesnt...
  • 8ade81d chore: patch decoder test
  • 843b6f7 patch: DecodeEntity doesn't honor contentType
  • e3db47f feat(deps): bump github.com/google/uuid from 1.3.1 to 1.4.0 (#141)
  • b1746ad Merge pull request #140 from xmidt-org/update-copyright
  • d50cac5 Use SPDX format.
  • 478cc45 Merge pull request #139 from xmidt-org/enable-style-checks
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
feat(deps): bump github.com/xmidt-org/wrp-go/v3 from 3.1.4 to 3.2.2
87a3435 
Bumps [github.com/xmidt-org/wrp-go/v3](https://github.com/xmidt-org/wrp-go) from 3.1.4 to 3.2.2.
- [Release notes](https://github.com/xmidt-org/wrp-go/releases)
- [Changelog](https://github.com/xmidt-org/wrp-go/blob/main/CHANGELOG.md)
- [Commits](xmidt-org/wrp-go@v3.1.4...v3.2.2)

---
updated-dependencies:
- dependency-name: github.com/xmidt-org/wrp-go/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Nov 16, 2023
@dependabot dependabot bot mentioned this pull request Nov 16, 2023
Closed
@github-actions github-actions bot enabled auto-merge (squash) November 16, 2023 15:01
@guardrails
Copy link

guardrails bot commented Nov 16, 2023

⚠️ We detected 1 security issue in this pull request:

Vulnerable Libraries (1)
Severity Details
Critical pkg:golang/github.com/xmidt-org/wrp-go/v3@v3.2.2 upgrade to: > v3.2.2

More info on how to fix Vulnerable Libraries in Go.

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Nov 17, 2023

Superseded by #177.

@dependabot dependabot bot closed this Nov 17, 2023
auto-merge was automatically disabled November 17, 2023 14:53

Pull request was closed

@dependabot dependabot bot deleted the dependabot/go_modules/github.com/xmidt-org/wrp-go/v3-3.2.2 branch November 17, 2023 14:53
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

1 more reviewer

@github-actions github-actions[bot] github-actions[bot] approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant