Bump the all group across 1 directory with 12 updates

[dependabot]

Bumps the all group with 7 updates in the / directory:

Package	From	To
cuelang.org/go	0.11.1	0.12.0
github.com/evanphx/json-patch	5.9.0+incompatible	5.9.11+incompatible
github.com/gkampitakis/go-snaps	0.5.7	0.5.11
github.com/go-git/go-git/v5	5.13.2	5.14.0
github.com/open-policy-agent/conftest	0.55.0	0.57.0
github.com/spf13/afero	1.11.0	1.12.0
github.com/spf13/cobra	1.8.1	1.9.1

Updates cuelang.org/go from 0.11.1 to 0.12.0

Updates github.com/evanphx/json-patch from 5.9.0+incompatible to 5.9.11+incompatible

Release notes

Sourced from github.com/evanphx/json-patch's releases.

v5.9.11

What's Changed

• Export errBadJSONDoc and errBadJSONPatch errors by @​skitt in evanphx/json-patch#209

Full Changelog: evanphx/json-patch@v5.9.10...v5.9.11

v5.9.10

What's Changed

• Drop the reference to gopkg.in for v5 by @​skitt in evanphx/json-patch#203
• remove unmaintained errors pkg(github.com/pkg/errors) by @​koba1t in evanphx/json-patch#206

New Contributors

• @​skitt made their first contribution in evanphx/json-patch#203
• @​koba1t made their first contribution in evanphx/json-patch#206

Full Changelog: evanphx/json-patch@v5.9.0...v5.9.10

Commits

• 84a4bb1 Merge pull request #209 from skitt/export-errs-v5
• 7a7a88a Export errBadJSONDoc and errBadJSONPatch errors
• bd18525 Upgrade go-flags
• 42f26cb Fix spacing
• 0a3482b Merge pull request #206 from koba1t/remove_unmaintained_error_pkg
• 106306d remove unmaintained errors pkg
• e7cfbbb Merge pull request #203 from skitt/drop-gopkgin-v5
• 61e1ad7 Drop the reference to gopkg.in for v5
• See full diff in compare view

Updates github.com/gkampitakis/go-snaps from 0.5.7 to 0.5.11

Release notes

Sourced from github.com/gkampitakis/go-snaps's releases.

v0.5.11

What's Changed

• feat: add json format config by @​kitimark in gkampitakis/go-snaps#121

New Contributors

• @​kitimark made their first contribution in gkampitakis/go-snaps#121

Full Changelog: gkampitakis/go-snaps@v0.5.10...v0.5.11

v0.5.10

What's Changed

• fix: handle builds with trimpath enabled by @​gkampitakis in gkampitakis/go-snaps#120

Full Changelog: gkampitakis/go-snaps@v0.5.9...v0.5.10

v0.5.9

What's Changed

• fix: snaps.Update should apply and on snapshot create by @​gkampitakis in gkampitakis/go-snaps#119

Full Changelog: gkampitakis/go-snaps@v0.5.8...v0.5.9

Kudos to @​orloffv for this issue gkampitakis/go-snaps#116

v0.5.8

What's Changed

• feat: implement matchYAML by @​gkampitakis in gkampitakis/go-snaps#114
• feat: implement matchStandaloneJSON by @​gkampitakis in gkampitakis/go-snaps#113

Full Changelog: gkampitakis/go-snaps@v0.5.7...v0.5.8

Commits

• e004bc1 feat: add json format config (#121)
• 8740883 fix: handle builds with trimpath enabled (#120)
• 00f3055 fix: snaps.Update should apply and on snapshot create (#119)
• 560fde0 feat: implement matchStandaloneJSON (#113)
• f81115d feat: implement matchYAML (#114)
• See full diff in compare view

Updates github.com/go-git/go-git/v5 from 5.13.2 to 5.14.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.14.0

What's Changed

• v5: Bump Go and dependencies to mitigate GO-2025-3487 by @​pjbgf in go-git/go-git#1436

⚠️ Note that this version requires Go 1.23, due to the bump to golang.org/x/[email protected] which mitigates the CVE above. User's that can't bump to Go 1.23 will need to remain on the previous v5.13.x release.

Full Changelog: go-git/go-git@v5.13.2...v5.14.0

Commits

• 863c621 Merge pull request #1436 from pjbgf/v5-bumps
• 2e69e81 build: Bump dependencies
• b2c1ec9 build: Bump Go versions
• See full diff in compare view

Updates github.com/google/go-cmp from 0.6.0 to 0.7.0

Release notes

Sourced from github.com/google/go-cmp's releases.

v0.7.0

New API:

• (#367) Support compare functions with SortSlices and SortMaps

Panic messaging:

• (#370) Detect proto.Message types when failing to export a field

Commits

• 9b12f36 Detect proto.Message types when failing to export a field (#370)
• 4dd3d63 fix: type 'aribica' => 'arabica' (#368)
• 391980c Support compare functions with SortSlices and SortMaps (#367)
• See full diff in compare view

Updates github.com/open-policy-agent/conftest from 0.55.0 to 0.57.0

Release notes

Sourced from github.com/open-policy-agent/conftest's releases.

v0.57.0

Announcements

⚠️ Upcoming Breaking Changes ⚠️

In the May 2025 release of conftest, we will change the default version of Rego syntax from v0 to v1. This will be a breaking change if your Rego policies are not compatible with the v1 syntax.

• With this release of conftest, users may opt-in to this behavior early by setting the --rego-version flag to v1.
• Individual policies can be updated gradually, by adding import rego.v1 to the policy.
• The rego-version flag will remain available indefinitely, and users who do not wish to update their Rego policies can continue to use v0 syntax by setting this flag to v0.

For more information about upgrading to Rego v1 syntax, see the upstream docs at https://www.openpolicyagent.org/docs/latest/v0-upgrade/.

Changelog

New Features

• eacba23603b16a7b0b517304d13f8b735a8a4142: feat(engine): add query metadata to evaluation results (#1061) (@​thevilledev)
• 5decd1873e4aba2cedf97202545a21e619c56494: feat(parser): handle UTF-8 BOM in JSON input (#1065) (@​thevilledev)
• abad25585b78d45ab896ce836c3477a9c00c77d7: feat: Implement SARIF output (#1042) (@​thevilledev)
• aa9e3c821138704fcb2a240a4825ab322cd42a8f: feat: enable relative jsonnet imports by setting a path-aware importer (@​thevilledev)
• 3f67b78db289d10e77f26a86b1e6b6d701c73bed: feature: Documentation command (#1009) (@​xNok)

Bug Fixes

• 151643bd4221e2b3a87413c5e165e7286519d1f0: fix: add output and tests for GitHub and Azure DevOps (@​thevilledev)
• a770d29c83a81accc0d8320918dcb877918fc5cc: fix: correct linters-settings in .golangci.yaml to enable misspell (@​thevilledev)
• 8e541da4e46bcf30f98c2681fac7eb4cf970f4bb: fix: improve handling for YAML version directives (@​thevilledev)
• 4f6bc40abada70ebc33d5273cf188ab0a0d958fa: fix: make sure lookup_ip_addr throwing builtin-err in test (#1017) (@​boranx)
• 0bbb473dd62712a9635c909632d0911a8118a9e0: fix: max stack size already set by jsonnet.MakeVM() (@​thevilledev)
• 163bdd8e5ccd02fe8ff7a517fdf6231339d75d1a: fix: prevent policy file overwrite on downloads (#1039) (@​thevilledev)
• 8b34fcbe944eec3c433386980319e55bbe8ded07: fix: remove redundant error check in push command (@​thevilledev)
• 74288411d2a3c2b55d8686dcb07ad746f30bdd1e: fix: set jsonnet VM stack limits and add test coverage (@​thevilledev)

OPA Changes

• a8d6544ad6ceb22d88d6a655a5b605e1e6fabdb7: build(deps): bump github.com/open-policy-agent/opa from 0.69.0 to 0.70.0 (#1016) (@​dependabot[bot])
• 19c82bcec98c11f9d1b9bf11b905e1d0a1e0c5a5: build(deps): bump github.com/open-policy-agent/opa from 0.70.0 to 1.1.0 (#1050) (@​dependabot[bot])

Other Changes

• 356ede4880ac68ecb005cb247e669bed5f1ac448: Merge pull request #1035 from open-policy-agent/dependabot/docker/alpine-3.21.2 (@​anderseknert)
• d5e8a778a1da62330150fca1a2f077c5498f7e58: Merge pull request #1036 from open-policy-agent/dependabot/go_modules/github.com/hashicorp/go-getter-1.7.8 (@​anderseknert)
• a60365616fb666449379903429996964f804e7cc: Merge pull request #1037 from thevilledev/fix/recursive-jsonnet (@​anderseknert)
• 3096ca75f68df61995106138285abc5ed10f17c8: Merge pull request #1038 from thevilledev/fix/yaml-preamble-multidoc (@​anderseknert)
• 6b31946d825d56636f2d04ec65f8faec12ba7ab6: Merge pull request #1040 from thevilledev/fix/missing-outputs (@​anderseknert)
• 5063084fb4bbfc2c2e9f2760f252a65a591ba7a2: Merge pull request #1041 from thevilledev/fix/impossible-nil (@​anderseknert)
• 1a2584466d979060089e6bec14842baddb596252: Merge pull request #1043 from open-policy-agent/dependabot/docker/golang-1.23.5-alpine (@​anderseknert)
• 326a1a4bfde5e2a2ea8b64712b274010b479ef8f: Merge pull request #1044 from thevilledev/fix/jsonnet-library-imports (@​anderseknert)
• 744f867abf4417a0c297861ad0d016784669f0c4: Merge pull request #1046 from open-policy-agent/dependabot/go_modules/github.com/moby/buildkit-0.19.0 (@​anderseknert)
• ea55b6165592c6147f43e065b7315b8d206778b0: Merge pull request #1051 from open-policy-agent/dependabot/go_modules/cuelang.org/go-0.12.0 (@​anderseknert)
• 6c867fcb5b2a616b7fe4cc229bf5ba7964b461d6: Merge pull request #1052 from thevilledev/fix/linters-settings (@​anderseknert)
• f110dde92b8763e55b34bb79e8f7c974ad339591: Merge pull request #1053 from thevilledev/style/enable-nilness-lint (@​anderseknert)
• 26b6c245867e5674fa4b944d47a5d9ac7f405e67: Merge pull request #1054 from thevilledev/test/registry-store-init (@​anderseknert)
• 4299ce790bad8a802b1ac1ab00e90a5257ef65a0: build(deps): bump alpine from 3.20.3 to 3.21.0 (#1026) (@​dependabot[bot])
• 154c1aae06527fc47e4f732936805f87d2a10679: build(deps): bump alpine from 3.21.0 to 3.21.2 (@​dependabot[bot])
• 33d468df93ceb4e0ec30086ae189adfa4b49c4cf: build(deps): bump cuelang.org/go from 0.10.0 to 0.10.1 (#1013) (@​dependabot[bot])
• 103315dfca8c5c15ee7342c63c574d5b3406b7a8: build(deps): bump cuelang.org/go from 0.10.1 to 0.11.0 (#1020) (@​dependabot[bot])

... (truncated)

Commits

• abad255 feat: Implement SARIF output (#1042)
• 9efcd87 test(plugin): add comprehensive plugin package tests (#1056)
• 5decd18 feat(parser): handle UTF-8 BOM in JSON input (#1065)
• 8a44613 engine: Refactor to allow for Rego version to be specified (#1059)
• eacba23 feat(engine): add query metadata to evaluation results (#1061)
• 6da5673 build(deps): bump golang from 1.23.5-alpine to 1.23.6-alpine (#1062)
• 19c82bc build(deps): bump github.com/open-policy-agent/opa from 0.70.0 to 1.1.0 (#1050)
• 256bf5e test(policy): improve engine test coverage (#1055)
• 26b6c24 Merge pull request #1054 from thevilledev/test/registry-store-init
• 3f67b78 feature: Documentation command (#1009)
• Additional commits viewable in compare view

Updates github.com/open-policy-agent/opa from 0.70.0 to 1.1.0

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v1.1.0

This release contains a mix of features, performance improvements, and bugfixes.

Performance Improvements

• ast: Remove jsonOptions from AST nodes and terms (#7281) authored by @​anderseknert
• ast+plugins: Optimize activation of bundles with no inter-bundle path overlap (#7144) authored and reported by @​sqyang94
• bundle: Optimizing rego-version management in bundle activation (#7296) authored by @​johanfylling
• cmd: Don't generate JSON from result in opa bench (#7291) authored by @​anderseknert
• topdown: Adding configurable token cache to io.jwt token verification built-ins (#7274) authored by @​johanfylling
• topdown: Reduce allocations in hot path (#7288) authored by @​anderseknert
• perf: Improvements to terms and built-in functions (#7284) authored by @​anderseknert
• perf: add Regorus ACI benchmark tests (#7298) authored by @​anderseknert
• plugins: Don't use reflect.DeepEqual for errors (#7238) authored by @​anderseknert
• testing: replace reflect.DeepEqual where possible (#7286) authored by @​anderseknert

Topdown and Rego

• topdown: Fix out of range error in numbers.range built-in (#7269) authored by @​anderseknert
• topdown+rego+server: Allow opt-in for evaluating non-det builtins in PE (#6496) authored by @​srenatus

Runtime, Tooling, SDK

• bundle: Add info about the correct rego version to parse modules on the store (#7278) co-authored by @​ashutosh-narkar and @​johanfylling
• bundle+plugins: Fixing issue where bundle plugin could panic on reconfiguration (SDK use) (#7297) authored by @​johanfylling reported by @​carabasdaniel
• cmd: Fix printed representation of ref head rules in opa repl (#7301) authored by @​anderseknert reported by @​tsandall
• cmd: Respect --v0-compatible for opa eval partial eval support modules (#7251) authored by @​johanfylling
• golangci: fix invalid linter-settings configuration name (#7244) authored by @​Juneezee
• plugins/logs: Add support for masking with array keys (#6883) authored by @​charlieegan3
• tester: code nitpicks (#7252) authored by @​srenatus
• util: Add util.Keys and util.KeysSorted (#7285) authored by @​anderseknert

Docs, Website, Ecosystem

• docs: Update docker compose file in HTTP API tutorial and use addr for binding (#7264) authored and reported by @​zanliffick
• docs: Make 'ancient' warnings closable (#7253) authored by @​srenatus reported by @​konradzagozda
• docs: Redirect opa-1 to v0-upgrade (#7259) authored by @​charlieegan3
• docs: Use preformatted strings in fmt help (#7263) authored by @​charlieegan3
• docs: Fix typo in k8s primer (#7242) authored by @​vicentinileonardo
• docs: Formatting and wording fixes (#7268) authored by @​kamilturek
• docs: Update output document of Envoy plugin. (#7241) authored by @​regeda

Miscellaneous

• ci(nightly): Remove vendor w/o modproxy check (#7292) authored by @​srenatus
• Dependency updates; notably:
  • build(go): bump to 1.23.5 (7279) authored by @​srenatus
  • build(deps): upgrade github.com/dgraph-io/badger to v4 (4.5.1) (#7239) authored by @​Juneezee
  • build(deps): bump github.com/containerd/containerd from 1.7.24 to 1.7.25
  • build(deps): bump github.com/tchap/go-patricia/v2 from 2.3.1 to 2.3.2

... (truncated)

Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

1.1.0

This release contains a mix of features, performance improvements, and bugfixes.

Performance Improvements

• ast: Remove jsonOptions from AST nodes and terms (#7281) authored by @​anderseknert
• ast+plugins: Optimize activation of bundles with no inter-bundle path overlap (#7144) authored and reported by @​sqyang94
• bundle: Optimizing rego-version management in bundle activation (#7296) authored by @​johanfylling
• cmd: Don't generate JSON from result in opa bench (#7291) authored by @​anderseknert
• topdown: Adding configurable token cache to io.jwt token verification built-ins (#7274) authored by @​johanfylling
• topdown: Reduce allocations in hot path (#7288) authored by @​anderseknert
• perf: Improvements to terms and built-in functions (#7284) authored by @​anderseknert
• perf: add Regorus ACI benchmark tests (#7298) authored by @​anderseknert
• plugins: Don't use reflect.DeepEqual for errors (#7238) authored by @​anderseknert
• testing: replace reflect.DeepEqual where possible (#7286) authored by @​anderseknert

Topdown and Rego

• topdown: Fix out of range error in numbers.range built-in (#7269) authored by @​anderseknert
• topdown+rego+server: Allow opt-in for evaluating non-det builtins in PE (#6496) authored by @​srenatus

Runtime, Tooling, SDK

• bundle: Add info about the correct rego version to parse modules on the store (#7278) co-authored by @​ashutosh-narkar and @​johanfylling
• bundle+plugins: Fixing issue where bundle plugin could panic on reconfiguration (SDK use) (#7297) authored by @​johanfylling reported by @​carabasdaniel
• cmd: Fix printed representation of ref head rules in opa repl (#7301) authored by @​anderseknert reported by @​tsandall
• cmd: Respect --v0-compatible for opa eval partial eval support modules (#7251) authored by @​johanfylling
• golangci: fix invalid linter-settings configuration name (#7244) authored by @​Juneezee
• plugins/logs: Add support for masking with array keys (#6883) authored by @​charlieegan3
• tester: code nitpicks (#7252) authored by @​srenatus
• util: Add util.Keys and util.KeysSorted (#7285) authored by @​anderseknert

Docs, Website, Ecosystem

• docs: Update docker compose file in HTTP API tutorial and use addr for binding (#7264) authored and reported by @​zanliffick
• docs: Make 'ancient' warnings closable (#7253) authored by @​srenatus reported by @​konradzagozda
• docs: Redirect opa-1 to v0-upgrade (#7259) authored by @​charlieegan3
• docs: Use preformatted strings in fmt help (#7263) authored by @​charlieegan3
• docs: Fix typo in k8s primer (#7242) authored by @​vicentinileonardo
• docs: Formatting and wording fixes (#7268) authored by @​kamilturek
• docs: Update output document of Envoy plugin. (#7241) authored by @​regeda

Miscellaneous

• ci(nightly): Remove vendor w/o modproxy check (#7292) authored by @​srenatus
• Dependency updates; notably:
  • build(go): bump to 1.23.5 (7279) authored by @​srenatus
  • build(deps): upgrade github.com/dgraph-io/badger to v4 (4.5.1) (#7239) authored by @​Juneezee
  • build(deps): bump github.com/containerd/containerd from 1.7.24 to 1.7.25

... (truncated)

Commits

• de28510 Prepare v1.1.0 release
• 2d47dd8 docs: Update generated CLI docs
• 4b8a138 topdown+rego+server: allow opt-in for evaluating non-det builtins in PE (#7313)
• 50a8c96 rego: Fixing broken BenchmarkCustomFunctionInHotPath (#7312)
• 6e83f2a topdown: jwt cache (#7274)
• 211e95d build(deps): bump github/codeql-action from 3.28.3 to 3.28.4
• e682a67 Don't use reflect.DeepEqual for errors (#7311)
• d20dd18 build(deps): bump google.golang.org/grpc from 1.69.4 to 1.70.0 (#7309)
• b032e3b Fixing issue where bundle plugin could panic on reconfiguration (SDK use) (#...
• e47bd4f bundle: Optimizing rego-version management in bundle activation (#7296)
• Additional commits viewable in compare view

Updates github.com/spf13/afero from 1.11.0 to 1.12.0

Release notes

Sourced from github.com/spf13/afero's releases.

v1.12.0

What's Changed

• improve ci by @​sagikazarmark in spf13/afero#438
• Update dependencies by @​sagikazarmark in spf13/afero#439
• add dependabot by @​sagikazarmark in spf13/afero#440
• Update README.md by @​sean9999 in spf13/afero#434
• fix lint violations by @​sagikazarmark in spf13/afero#441

New Contributors

• @​sagikazarmark made their first contribution in spf13/afero#438
• @​sean9999 made their first contribution in spf13/afero#434

Full Changelog: spf13/afero@v1.11.0...v1.12.0

Commits

• d4d55e8 Merge pull request #441 from spf13/lint
• 15743bc fix lint violations
• 024e183 Merge pull request #434 from sean9999/patch-1
• 6504f4c Merge pull request #440 from spf13/dependabot
• 09a514e add dependabot
• 1ba15b5 Merge pull request #439 from spf13/update-dependencies
• dac11c4 exclude google test lib from golangci
• e0bdbe3 update all dependencies
• 22d41e8 drop iam from google testing library
• ee4067b drop google-cloud-go-testing
• Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.8.1 to 1.9.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.9.1

🐛 Fixes

• Fix CompletionFunc implementation by @​ccoVeille in spf13/cobra#2234
• Revert "Make detection for test-binary more universal (#2173)" by @​marckhouzam in spf13/cobra#2235

Full Changelog: spf13/cobra@v1.9.0...v1.9.1

v1.9.0

✨ Features

• Allow linker to perform deadcode elimination for program using Cobra by @​aarzilli in spf13/cobra#1956
• Add default completion command even if there are no other sub-commands by @​marckhouzam in spf13/cobra#1559
• Add CompletionWithDesc helper by @​ccoVeille in spf13/cobra#2231

🐛 Fixes

• Fix deprecation comment for Command.SetOutput by @​thaJeztah in spf13/cobra#2172
• Replace deprecated ioutil usage by @​nirs in spf13/cobra#2181
• Fix --version help and output for plugins by @​nirs in spf13/cobra#2180
• Allow to reset the templates to the default by @​marckhouzam in spf13/cobra#2229

🤖 Completions

• Make Powershell completion work in constrained mode by @​lstemplinger in spf13/cobra#2196
• Improve detection for flags that accept multiple values by @​thaJeztah in spf13/cobra#2210
• add CompletionFunc type to help with completions by @​ccoVeille in spf13/cobra#2220
• Add similar whitespace escape logic to bash v2 completions than in other completions by @​kangasta in spf13/cobra#1743
• Print ActiveHelp for bash along other completions by @​marckhouzam in spf13/cobra#2076
• fix(completions): Complete map flags multiple times by @​gabe565 in spf13/cobra#2174
• fix(bash): nounset unbound file filter variable on empty extension by @​scop in spf13/cobra#2228

🧪 Testing

• Test also with go 1.23 by @​nirs in spf13/cobra#2182
• Make detection for test-binary more universal by @​thaJeztah in spf13/cobra#2173

✍🏼 Documentation

• docs: update README.md by @​eltociear in spf13/cobra#2197
• Improve site formatting by @​nirs in spf13/cobra#2183
• doc: add Conduit by @​raulb in spf13/cobra#2230
• doc: azion project added to the list of CLIs that use cobra by @​maxwelbm in spf13/cobra#2198
• Fix broken links in active_help.md by @​vuil in spf13/cobra#2202
• chore: fix function name in comment by @​zhuhaicity in spf13/cobra#2216

🔧 Dependency upgrades

• build(deps): bump github.com/cpuguy83/go-md2man/v2 from 2.0.5 to 2.0.6 by @​thaJeztah in spf13/cobra#2206
• Update to latest go-md2man by @​mikelolasagasti in spf13/cobra#2201

... (truncated)

Commits

• 40b5bc1 Revert "Make detection for test-binary more universal (#2173)" (#2235)
• a97f9fd fix CompletionFunc implementation (#2234)
• 5f9c408 chore: Upgrade dependencies for v1.9.0 (#2233)
• 24ada7f Remove the default "completion" cmd if it is alone (#1559)
• 680936a New logo
• 8cb30f9 feat: add CompletionWithDesc helper (#2231)
• 17b6dca doc: add Conduit (#2230)
• ab5cadc Allow to reset the templates to the default (#2229)
• 4ba5566 fix(bash): nounset unbound file filter variable on empty extension (#2228)
• 41b26ec Print ActiveHelp for bash along other completions (#2076)
• Additional commits viewable in compare view

Updates github.com/spf13/pflag from 1.0.5 to 1.0.6

Release notes

Sourced from github.com/spf13/pflag's releases.

v1.0.6

What's Changed

• Add exported functions to preserve pkg/flag compatibility by @​mckern in spf13/pflag#220
• remove dead code for checking error nil by @​yashbhutwala in spf13/pflag#282
• Add IPNetSlice and unit tests by @​rpothier in spf13/pflag#170
• allow for blank ip addresses by @​duhruh in spf13/pflag#316
• add github actions by @​sagikazarmark in spf13/pflag#419

New Contributors

• @​mckern made their first contribution in spf13/pflag#220
• @​yashbhutwala made their first contribution in spf13/pflag#282
• @​rpothier made their first contribution in spf13/pflag#170
• @​duhruh made their first contribution in spf13/pflag#316
• @​sagikazarmark made their first contribution in spf13/pflag#419

Full Changelog: spf13/pflag@v1.0.5...v1.0.6

Commits

• 5ca8134 Merge pull request #419 from spf13/ci
• 100ab0e disable unsupported dependency graph for now
• a0f4ddd fix govet
• f48cbd1 add github actions
• d5e0c06 allow for blank ip addresses (#316)
• 85dd5c8 Add IPNetSlice and unit tests (#170)
• 6971c29 remove dead code for checking error nil (#282)
• 81378bb Add exported functions to preserve pkg/flag compatibility (#220)
• See full diff in compare view

Updates golang.org/x/net from 0.34.0 to 0.35.0

Commits

• df97a48 go.mod: update golang.org/x dependencies
• 2dab271 route: treat short sockaddr lengths as unspecified
• b914489 internal/http3: refactor in prep for sharing transport/server code
• ebd23f8 route: fix parsing network address of length zero
• 938a9fb internal/http3: add request/response body transfer
• 145b2d7 internal/http3: add RoundTrip
• 5bda71a internal/http3: define connection and stream error types
• 3c1185a internal/http3: return error on mid-frame EOF
• a6c2c7f http2, internal/httpcommon: factor out common request header logic for h2/h3
• c72e89d internal/http3: QPACK encoding and decoding
• Additional commits viewable in compare view

Updates golang.org/x/sync from 0.10.0 to 0.11.0

Commits

• fe3591b sync/errgroup: improve documentation for semaphore limit behavior
• See full diff in compare view

Most Recent Ignore Conditions Applied to This Pull Request

Dependency Name	Ignore Conditions
github.com/go-git/go-git/v5	[>= 5.5.a, < 5.6]
github.com/open-policy-agent/conftest	[< 0.40, > 0.39.1-0.20230309145322-347708d2fd13]
github.com/open-policy-agent/opa	[>= 0.50.a, < 0.51]
github.com/open-policy-agent/conftest	[>= 0.56.a, < 0.57]

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions