From 02c9b7bccc970485ea2dc29aa262ccad715f3b2b Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 3 Jun 2025 09:36:28 -0600
Subject: [PATCH] chore(deps): bump the github-actions group across 1 directory
with 3 updates (#5641)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps the github-actions group with 3 updates in the / directory:
[docker/build-push-action](https://github.com/docker/build-push-action),
[mikefarah/yq](https://github.com/mikefarah/yq) and
[actions/setup-go](https://github.com/actions/setup-go).
Updates `docker/build-push-action` from 6.16.0 to 6.18.0
Release notes
Sourced from docker/build-push-action's
releases.
v6.18.0
[!NOTE]
Build
summary is now supported with Docker Build Cloud.
Full Changelog: https://github.com/docker/build-push-action/compare/v6.17.0...v6.18.0
v6.17.0
[!NOTE]
Build record is now exported using the buildx
history export command instead of the legacy export-build
tool.
Full Changelog: https://github.com/docker/build-push-action/compare/v6.16.0...v6.17.0
Commits
2634353
Merge pull request #1381
from docker/dependabot/npm_and_yarn/docker/actions-t...c0432d2
chore: update generated content0bb1f27
set builder driver and endpoint attributes for dbc summary support5f9dbf9
chore(deps): Bump @docker/actions-toolkit from 0.61.0 to
0.62.10788c44
Merge pull request #1375
from crazy-max/remove-gcraa179ca
e2e: remove GCR1dc7386
Merge pull request #1364
from crazy-max/history-export-cmd9c9803f
chore: update generated contentdb1f6c4
DOCKER_BUILD_EXPORT_LEGACY env var to opt-in for legacy export721e8c7
Bump @docker/actions-toolkit from 0.59.0 to 0.61.0- See full diff in compare
view
Updates `mikefarah/yq` from 4.45.1 to 4.45.4
Release notes
Sourced from mikefarah/yq's
releases.
v4.45.4 - Fixing wrong map() behaviour on empty map
- Fixing wrong map() behaviour on empty map #2359
- Bumped dependencies
v4.45.3 - Fixes regression bug(s)
- Fixing regression (#2353,
#2359,
#2325)
introduced with in 4.45.2 with #2325
fix
- Bumped dependencies
Sorry for the regression folks! 😓
fwiw I have since added automated tests to capture the scenarios
provided in the regression bug tickets
v4.45.2
Changelog
Sourced from mikefarah/yq's
changelog.
4.45.4:
- Fixing wrong map() behaviour on empty map #2359
- Bumped dependencies
4.45.3:
- Fixing regression introduced with in 4.45.2 with #2325
fix :sweat: sorry folks!
- Bumped dependencies
4.45.2:
4.45.1:
- Create parent directories when --split-exp is used, Thanks
@rudo-thomas
- Bumped dependencies
4.44.6:
- Fixed deleting items in array bug #2027,
#2172;
Thanks
@jandubois
- Docker image for armv7 / raspberry pi3, Thanks
@brianegge
- Fixed no-colors regression #2218
- Fixed various panic scenarios #2211
- Bumped dependencies
4.44.5:
4.44.4:
- Format comments with a gray foreground (Thanks
@gabe565)
- Fixed handling of nulls with sort_by expressions #2164
- Force no color output when NO_COLOR env presents (Thanks
@narqo)
- Fixed array subtraction update bug #2159
- Fixed index out of range error
- Can traverse straight from parent operator (parent.blah)
- Bumped dependencies
4.44.3:
- Fixed upper-case file extension detection, Thanks
@ryenus (#2121)
- Log printing follow no-colors flag #2082
- Skip and warn when interpolating strings and theres a unclosed
bracket #2083
- Fixed CSV content starting with # issue #2076
- Bumped dependencies
4.44.2:
- Handle numbers with underscores #2039
- Unique now works on maps and arrays #2068
- Added support for short hand splat with env[] expression #2071,
... (truncated)
Commits
b534aa9
Bumping version39a65b6
Updating release notes1e3006e
Removing old issue template22949df
Fixing running map against empty array bug #2359734e2cd
Bumping version082b76a
Preparing release notes5bc2cd0
Bumping golang version20407a0
Adding more tests to prevent regression again :sweat0a83da6
Bump github.com/pelletier/go-toml/v2 from 2.2.3 to 2.2.477da8b7
Bump golang from 1.24.2 to 1.24.3- Additional commits viewable in compare
view
Updates `actions/setup-go` from 5.4.0 to 5.5.0
Release notes
Sourced from actions/setup-go's
releases.
v5.5.0
What's Changed
Bug fixes:
Dependency updates:
New Contributors
Full Changelog: https://github.com/actions/setup-go/compare/v5...v5.5.0
Commits
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore ` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore ` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore ` will
remove the ignore condition of the specified dependency and ignore
conditions
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
.github/workflows/docker-main.yaml | 6 +++---
.github/workflows/docker-version-branches.yaml | 2 +-
.github/workflows/lint.yaml | 2 +-
.github/workflows/release.yaml | 4 ++--
.github/workflows/test.yaml | 8 ++++----
5 files changed, 11 insertions(+), 11 deletions(-)
diff --git a/.github/workflows/docker-main.yaml b/.github/workflows/docker-main.yaml
index c68755e12..c83be2914 100644
--- a/.github/workflows/docker-main.yaml
+++ b/.github/workflows/docker-main.yaml
@@ -45,7 +45,7 @@ jobs:
echo "sha-tag=${SHA_TAG}" >> $GITHUB_OUTPUT
- name: Docker Publish - Main
- uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1
+ uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83
with:
context: .
file: ./Dockerfile
@@ -58,7 +58,7 @@ jobs:
org.opencontainers.image.revision=${{ github.sha }}
- name: Docker Publish - Debug
- uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1
+ uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83
with:
context: .
file: ./Dockerfile.debug
@@ -81,7 +81,7 @@ jobs:
token: ${{ secrets.APPARITOR_GITHUB_TOKEN }}
- name: Bump psql environment
- uses: mikefarah/yq@8bf425b4d1344db7cd469a8d10a390876e0c77fd
+ uses: mikefarah/yq@b534aa9ee5d38001fba3cd8fe254a037e4847b37
with:
cmd:
yq eval '.pomerium.image.tag = "${{ needs.publish.outputs.sha-tag }}"' -i
diff --git a/.github/workflows/docker-version-branches.yaml b/.github/workflows/docker-version-branches.yaml
index 39c671e80..9055fad43 100644
--- a/.github/workflows/docker-version-branches.yaml
+++ b/.github/workflows/docker-version-branches.yaml
@@ -39,7 +39,7 @@ jobs:
password: ${{ secrets.DOCKERHUB_TOKEN }}
- name: Docker Publish - Version Branches
- uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1
+ uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83
with:
context: .
file: ./Dockerfile
diff --git a/.github/workflows/lint.yaml b/.github/workflows/lint.yaml
index c0fd8ce0d..2fdeb1825 100644
--- a/.github/workflows/lint.yaml
+++ b/.github/workflows/lint.yaml
@@ -13,7 +13,7 @@ jobs:
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
- - uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
+ - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
with:
go-version: 1.24.x
cache: false
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
index 71e575b50..456d71139 100644
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -31,7 +31,7 @@ jobs:
node-version: 22.x
- name: Set up Go
- uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
+ uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
with:
go-version: 1.24.x
cache: false
@@ -127,7 +127,7 @@ jobs:
token: ${{ secrets.APPARITOR_GITHUB_TOKEN }}
- name: Bump test environment
- uses: mikefarah/yq@8bf425b4d1344db7cd469a8d10a390876e0c77fd
+ uses: mikefarah/yq@b534aa9ee5d38001fba3cd8fe254a037e4847b37
with:
cmd: yq eval '.pomerium.image.tag = "${{ needs.goreleaser.outputs.tag }}"' -i projects/pomerium-demo/pomerium-demo/values.yaml
diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml
index 955beb0c6..06630dc58 100644
--- a/.github/workflows/test.yaml
+++ b/.github/workflows/test.yaml
@@ -20,7 +20,7 @@ jobs:
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
- - uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
+ - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
with:
go-version: 1.24.x
cache: false
@@ -59,7 +59,7 @@ jobs:
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683
- - uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
+ - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
with:
go-version: 1.24.x
@@ -107,7 +107,7 @@ jobs:
uses: docker/setup-buildx-action@b5ca514318bd6ebac0fb2aedd5d36ec1b5c232a2
- name: Docker Build
- uses: docker/build-push-action@14487ce63c7a62a4a324b0bfb37086795e31c6c1
+ uses: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83
with:
context: .
file: ./Dockerfile
@@ -123,7 +123,7 @@ jobs:
with:
fetch-depth: 0
- - uses: actions/setup-go@0aaccfd150d50ccaeb58ebd88d36e91967a5f35b
+ - uses: actions/setup-go@d35c59abb061a4a6fb18e82ac0862c26744d6ab5
with:
go-version: 1.24.x
cache: false