Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

build(deps): bump github.com/caddyserver/caddy/v2 from 2.7.3 to 2.7.5 #154

Merged

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 16, 2023

Bumps github.com/caddyserver/caddy/v2 from 2.7.3 to 2.7.5.

Release notes

Sourced from github.com/caddyserver/caddy/v2's releases.

v2.7.5

In this release, we've fixed quite a few small bugs and annoyances, including HTTP/2 Rapid Reset which affected most HTTP/2 implementations.

On a personal note (from @​mholt): I recently became a dad! I want to thank our maintainers for helping in so many ways while I've been taking extra time for family. Francis, Matthew, Mohammed, and others -- including all the contributors below, and then some -- are to thank for shipping this release.

Highlights

  • Updated https://github.com/quic-go/quic-go from v0.37.5 to v0.39.0, including many performance improvements. GSO and ECN are now enabled by default, but you may turn them off by setting the QUIC_GO_DISABLE_GSO=true and QUIC_GO_DISABLE_ECN=true environment variables respectively, if they cause you problems. See the quic-go release notes for more details.
  • The file server's fileserver.BrowseTemplate is now exported, so it may be customized by programs embedding Caddy. (ed8bb13c5df7656647ca7fc1fd09237631a6767c)
  • Environment variables loaded with --envfile no longer override existing variables. (#5803)
  • The encode handler now compresses application/wasm* content types by default. (#5869)
  • The reverse_proxy handler can now emit very detailed logs for debugging streaming and buffering. To enable it, set the verbose_logs subdirective, and set logging to debug level. Since the logs from this are very noisy, using verbose_logs to opt-in is necessary. We may ask you to enable this when asking for support! (#5793)
  • You can now check the version with caddy -v, like most other CLI utilities! (#5874)

Caddy is on feature freeze until after 2.8 so we can improve our testing situation. These patches have all been tried to ensure they work as intended, but if you notice any issues please report them!

Changelog

  • 0e204b73 admin: Respond with 4xx on non-existing config path (#5870)
  • 89c407aa build(deps): bump actions/checkout from 3 to 4 (#5846)
  • 1405683c build(deps): bump goreleaser/goreleaser-action from 4 to 5 (#5847)
  • 38a7b6b3 caddyfile: Adjust error formatting (#5765)
  • 7103ea09 caddyfile: Fix case where heredoc marker is empty after newline (#5769)
  • 10053f75 caddyfile: Loosen heredoc parsing (#5761)
  • 58ab3a01 caddyhttp: Use LimitedReader for HTTPRedirectListener (thank you to Bartek Nowotarski for reporting)
  • 9c419f1e cmd: Fix exiting with custom status code, add caddy -v (#5874)
  • f2ab7099 cmd: Prevent overwriting existing env vars with --envfile (#5803)
  • e0aaefab encode: Add application/wasm* to the default content types (#5869)
  • fa5a579b fileserver: Add command shortcuts -l and -a (#5854)
  • ed8bb13c fileserver: Export BrowseTemplate
  • 130f6d1f fileserver: Set canonical URL on browse template (#5867)
  • a306c5f7 fileserver: browse template SVG icons and UI tweaks (#5812)
  • 0a6d3333 fileserver: docs: clarify the ability to produce JSON array with browse (#5751)
  • 82c356f2 fix: caddytest.AssertResponseCode error message (#5853)
  • 888c6d7e go.mod: Update quic-go to v0.38.0 (#5772)
  • 88b4fbf2 go.mod: Upgrade dependencies incl. x/net/http
  • df995029 httpcaddyfile: Enable TLS for catch-all site if tls directive is specified (#5808)
  • 33d8d2c6 httpcaddyfile: Sort TLS SNI matcher for deterministic JSON output (#5860)
  • 288216e1 httpcaddyfile: Stricter errors for site and upstream address schemes (#5757)
  • 2cac3c54 httpcaddyfile: fix placeholder shorthands in named routes (#5791)
  • c46ec3b5 logging: Clone array on log filters, prevent side-effects (#5786)
  • 1b73e386 logging: query filter for array of strings (#5779)
  • 4776f62c replacer: change timezone to UTC for "time.now.http" placeholders (#5774)
  • a8586b05 reverseproxy: Add logging for dynamic A upstreams (#5857)
  • 3a3182fb reverseproxy: Add more debug logs (#5793)
  • 4feac4d8 reverseproxy: Allow fallthrough for response handlers without routes (#5780)
  • e8b8d4a8 reverseproxy: Fix least_conn policy regression (#5862)
  • 2a6859a5 reverseproxy: Fix retries on "upstreams unavailable" error (#5841)
  • 05dbe1c1 reverseproxy: Replace health header placeholders (#5861)
  • 1e0dea59 reverseproxy: fix nil pointer dereference in AUpstreams.GetUpstreams (#5811)
  • b245ecd3 reverseproxy: fix parsing Caddyfile fails for unlimited request/response buffers (#5828)

... (truncated)

Commits
  • 0e204b7 admin: Respond with 4xx on non-existing config path (#5870)
  • fae195a ci: Force the Go version for govulncheck (#5879)
  • 130f6d1 fileserver: Set canonical URL on browse template (#5867)
  • 289934f tls: Add X25519Kyber768Draft00 PQ "curve" behind build tag (#5852)
  • 3a3182f reverseproxy: Add more debug logs (#5793)
  • e8b8d4a reverseproxy: Fix least_conn policy regression (#5862)
  • a8586b0 reverseproxy: Add logging for dynamic A upstreams (#5857)
  • 05dbe1c reverseproxy: Replace health header placeholders (#5861)
  • 33d8d2c httpcaddyfile: Sort TLS SNI matcher for deterministic JSON output (#5860)
  • 9c419f1 cmd: Fix exiting with custom status code, add caddy -v (#5874)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/caddyserver/caddy/v2](https://github.com/caddyserver/caddy) from 2.7.3 to 2.7.5.
- [Release notes](https://github.com/caddyserver/caddy/releases)
- [Changelog](https://github.com/caddyserver/caddy/blob/master/.goreleaser.yml)
- [Commits](caddyserver/caddy@v2.7.3...v2.7.5)

---
updated-dependencies:
- dependency-name: github.com/caddyserver/caddy/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Oct 16, 2023
@IceCodeNew IceCodeNew merged commit 134bc96 into master Oct 16, 2023
3 checks passed
@IceCodeNew IceCodeNew deleted the dependabot/go_modules/github.com/caddyserver/caddy/v2-2.7.5 branch October 16, 2023 10:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant