From bc5c0b9e0557fbdabc6cccf10ba4d8be21e2abf3 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 29 Aug 2024 02:01:36 +0000 Subject: [PATCH 1/6] build(deps): Bump dependabot/fetch-metadata from 2.1.0 to 2.2.0 (#307) Bumps [dependabot/fetch-metadata](https://github.com/dependabot/fetch-metadata) from 2.1.0 to 2.2.0. - [Release notes](https://github.com/dependabot/fetch-metadata/releases) - [Commits](https://github.com/dependabot/fetch-metadata/compare/v2.1.0...v2.2.0) --- updated-dependencies: - dependency-name: dependabot/fetch-metadata dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/dependabot-auto-merge.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/dependabot-auto-merge.yml b/.github/workflows/dependabot-auto-merge.yml index 6d44e201..e278e1e1 100644 --- a/.github/workflows/dependabot-auto-merge.yml +++ b/.github/workflows/dependabot-auto-merge.yml @@ -15,7 +15,7 @@ jobs: steps: - name: Dependabot metadata id: metadata - uses: dependabot/fetch-metadata@v2.1.0 + uses: dependabot/fetch-metadata@v2.2.0 with: github-token: "${{ secrets.GITHUB_TOKEN }}" From d364a39f1bdf74b3768b8508d4fc801d3f023839 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 29 Aug 2024 02:01:49 +0000 Subject: [PATCH 2/6] build(deps): Bump ossf/scorecard-action from 2.3.3 to 2.4.0 (#308) Bumps [ossf/scorecard-action](https://github.com/ossf/scorecard-action) from 2.3.3 to 2.4.0. - [Release notes](https://github.com/ossf/scorecard-action/releases) - [Changelog](https://github.com/ossf/scorecard-action/blob/main/RELEASE.md) - [Commits](https://github.com/ossf/scorecard-action/compare/dc50aa9510b46c811795eb24b2f1ba02a914e534...62b2cac7ed8198b15735ed49ab1e5cf35480ba46) --- updated-dependencies: - dependency-name: ossf/scorecard-action dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/scorecard.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 54fa2190..29f0599e 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -59,7 +59,7 @@ jobs: persist-credentials: false - name: Run analysis - uses: ossf/scorecard-action@dc50aa9510b46c811795eb24b2f1ba02a914e534 # v2.3.3 + uses: ossf/scorecard-action@62b2cac7ed8198b15735ed49ab1e5cf35480ba46 # v2.4.0 with: results_file: results.sarif results_format: sarif From eba3fa886dbd5ed3d7d73f6af4f1d0d26c7e6437 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 29 Aug 2024 02:01:52 +0000 Subject: [PATCH 3/6] build(deps): Bump opentofu/setup-opentofu from 1.0.3 to 1.0.4 (#310) Bumps [opentofu/setup-opentofu](https://github.com/opentofu/setup-opentofu) from 1.0.3 to 1.0.4. - [Release notes](https://github.com/opentofu/setup-opentofu/releases) - [Commits](https://github.com/opentofu/setup-opentofu/compare/ae80d4ecaab946d8f5ff18397fbf6d0686c6d46a...12f4debbf681675350b6cd1f0ff8ecfbda62027b) --- updated-dependencies: - dependency-name: opentofu/setup-opentofu dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/terratest.yml | 2 +- .github/workflows/test.yml | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/terratest.yml b/.github/workflows/terratest.yml index 8eabbae1..a18faf21 100644 --- a/.github/workflows/terratest.yml +++ b/.github/workflows/terratest.yml @@ -48,7 +48,7 @@ jobs: terraform_wrapper: false - name: Install OpenTofu - uses: opentofu/setup-opentofu@ae80d4ecaab946d8f5ff18397fbf6d0686c6d46a # v1.0.3 + uses: opentofu/setup-opentofu@12f4debbf681675350b6cd1f0ff8ecfbda62027b # v1.0.4 with: tofu_version: 1.8 tofu_wrapper: false diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index 46e1ce91..eac3b3ea 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -184,7 +184,7 @@ jobs: cache: true - name: Install OpenTofu ${{ matrix.opentofu_version }} - uses: opentofu/setup-opentofu@ae80d4ecaab946d8f5ff18397fbf6d0686c6d46a # v1.0.3 + uses: opentofu/setup-opentofu@12f4debbf681675350b6cd1f0ff8ecfbda62027b # v1.0.4 with: tofu_version: ~${{ matrix.opentofu_version }} tofu_wrapper: false From e2cc059733606a4d8793c437d23d7e561f2b7c23 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 29 Aug 2024 13:56:40 -0600 Subject: [PATCH 4/6] build(deps): Bump actions/setup-go from 5.0.1 to 5.0.2 (#309) Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ryan Parman --- .github/workflows/go-dep-submission.yml | 2 +- .github/workflows/golangci-lint.yml | 2 +- .github/workflows/govulncheck.yml | 2 +- .github/workflows/release.yml | 2 +- .github/workflows/terratest.yml | 2 +- .github/workflows/test.yml | 8 ++++---- 6 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.github/workflows/go-dep-submission.yml b/.github/workflows/go-dep-submission.yml index 6a13a3b4..c56c1a7f 100644 --- a/.github/workflows/go-dep-submission.yml +++ b/.github/workflows/go-dep-submission.yml @@ -39,7 +39,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true diff --git a/.github/workflows/golangci-lint.yml b/.github/workflows/golangci-lint.yml index 1e326474..5dd856c9 100644 --- a/.github/workflows/golangci-lint.yml +++ b/.github/workflows/golangci-lint.yml @@ -44,7 +44,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true diff --git a/.github/workflows/govulncheck.yml b/.github/workflows/govulncheck.yml index dcbb428e..81d114ac 100644 --- a/.github/workflows/govulncheck.yml +++ b/.github/workflows/govulncheck.yml @@ -38,7 +38,7 @@ jobs: vuln.go.dev:443 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8b70bbc6..e1be6fd6 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -45,7 +45,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true diff --git a/.github/workflows/terratest.yml b/.github/workflows/terratest.yml index a18faf21..34046515 100644 --- a/.github/workflows/terratest.yml +++ b/.github/workflows/terratest.yml @@ -36,7 +36,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml index eac3b3ea..ab9aa753 100644 --- a/.github/workflows/test.yml +++ b/.github/workflows/test.yml @@ -43,7 +43,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true @@ -75,7 +75,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true @@ -126,7 +126,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true @@ -178,7 +178,7 @@ jobs: fetch-depth: 0 - name: Install Go - uses: actions/setup-go@cdcb36043654635271a94b9a6d1392de5bb323a7 # v5.0.1 + uses: actions/setup-go@0a12ed9d6a96ab950c8f026ed9f722fe0da7ef32 # v5.0.2 with: go-version: ">= 1.22.1" cache: true From c585991aafb814ae09e05bc5da5e5f78b031fb9d Mon Sep 17 00:00:00 2001 From: "Ryan Parman (Bot)" Date: Thu, 29 Aug 2024 19:57:10 +0000 Subject: [PATCH 5/6] automation: Updated AUTHORS and CHANGELOG on Thu Aug 29 19:57:10 UTC 2024. --- CHANGELOG.md | 6 +++++- 1 file changed, 5 insertions(+), 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 903adf0d..fde36bb0 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -79,6 +79,10 @@ The format is based on [Keep a Changelog](https://keepachangelog.com), adheres t * [`df2f04b`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/df2f04b980dd4a5d264203728882c7136a151059): **deps**: Bump `github.com/hashicorp/terraform-plugin-framework-validators` from 0.12.0 to 0.13.0 ([#288](https://github.com/northwood-labs/terraform-provider-corefunc/issues/288)) ([@dependabot](https://github.com/dependabot)) * [`013dd6c`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/013dd6c98d77e63807da3f669d4399ae41d7d02d): **deps**: Bump `github.com/hashicorp/go-getter` from 1.7.4 to 1.7.5 in /terratest/functions in the go_modules group ([#282](https://github.com/northwood-labs/terraform-provider-corefunc/issues/282)) ([@dependabot](https://github.com/dependabot)) * [`d9bf03a`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/d9bf03a64cf90058b770d76f783d080cbacb35ff): **deps**: Bump `golang/govulncheck-action` from 1.0.2 to 1.0.3 ([#277](https://github.com/northwood-labs/terraform-provider-corefunc/issues/277)) ([@dependabot](https://github.com/dependabot)) +* [`bc5c0b9`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/bc5c0b9e0557fbdabc6cccf10ba4d8be21e2abf3): **deps**: Bump `dependabot/fetch-metadata` from 2.1.0 to 2.2.0 ([#307](https://github.com/northwood-labs/terraform-provider-corefunc/issues/307)) ([@dependabot](https://github.com/dependabot)) +* [`d364a39`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/d364a39f1bdf74b3768b8508d4fc801d3f023839): **deps**: Bump `ossf/scorecard-action` from 2.3.3 to 2.4.0 ([#308](https://github.com/northwood-labs/terraform-provider-corefunc/issues/308)) ([@dependabot](https://github.com/dependabot)) +* [`eba3fa8`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/eba3fa886dbd5ed3d7d73f6af4f1d0d26c7e6437): **deps**: Bump `opentofu/setup-opentofu` from 1.0.3 to 1.0.4 ([#310](https://github.com/northwood-labs/terraform-provider-corefunc/issues/310)) ([@dependabot](https://github.com/dependabot)) +* [`e2cc059`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/e2cc059733606a4d8793c437d23d7e561f2b7c23): **deps**: Bump `actions/setup-go` from 5.0.1 to 5.0.2 ([#309](https://github.com/northwood-labs/terraform-provider-corefunc/issues/309)) ([@dependabot](https://github.com/dependabot)) ### :test_tube: Testing @@ -668,4 +672,4 @@ The format is based on [Keep a Changelog](https://keepachangelog.com), adheres t * [`eb9f7ae`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/eb9f7aecfdaa7bda9087b9b58229d3943571a863): Update the GoReleaser configuration. ([@skyzyx](https://github.com/skyzyx)) * [`a01b12e`](https://github.com/northwood-labs/terraform-provider-corefunc/commit/a01b12e6870b821f561624bca79407e4c87c73cf): Trying to get the build to work. ([@skyzyx](https://github.com/skyzyx)) -

Generated on 2024-08-28.

+

Generated on 2024-08-29.

From d187d6da6258b113691bb2d5c6b7771765c6cc9a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 29 Aug 2024 19:57:47 +0000 Subject: [PATCH 6/6] build(deps): Bump actions/upload-artifact from 4.3.3 to 4.3.6 (#311) Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 4.3.3 to 4.3.6. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](https://github.com/actions/upload-artifact/compare/65462800fd760344b1a7b4382951275a0abb4808...834a144ee995460fba8ed112a2fc961b36a5ec5a) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Ryan Parman --- .github/workflows/scorecard.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/scorecard.yml b/.github/workflows/scorecard.yml index 29f0599e..14cfba95 100644 --- a/.github/workflows/scorecard.yml +++ b/.github/workflows/scorecard.yml @@ -81,7 +81,7 @@ jobs: # Upload the results as artifacts (optional). Commenting out will disable uploads of run results in SARIF # format to the repository Actions tab. - name: Upload artifact - uses: actions/upload-artifact@65462800fd760344b1a7b4382951275a0abb4808 # v4.3.3 + uses: actions/upload-artifact@834a144ee995460fba8ed112a2fc961b36a5ec5a # v4.3.6 with: name: SARIF file path: results.sarif