From f2e960e1ff0cc02c424980e89d6fb46a29cf1f6c Mon Sep 17 00:00:00 2001 From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com> Date: Tue, 19 Sep 2023 12:16:09 +0000 Subject: [PATCH] Update all dependencies --- .github/workflows/build-push-chart.yml | 10 +++++----- .github/workflows/codeql.yml | 4 ++-- .github/workflows/mega-linter.yml | 2 +- Dockerfile | 4 ++-- go.mod | 4 ++-- go.sum | 4 ++++ 6 files changed, 16 insertions(+), 12 deletions(-) diff --git a/.github/workflows/build-push-chart.yml b/.github/workflows/build-push-chart.yml index 0a5f2b9..48d558e 100644 --- a/.github/workflows/build-push-chart.yml +++ b/.github/workflows/build-push-chart.yml @@ -17,7 +17,7 @@ permissions: read-all jobs: setenv: - uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a + uses: ortelius/workflow-toolkit/.github/workflows/env-config-workflow.yml@754a0025c5262acd4495700e27ceda566780161f with: gh_head_ref: ${{ github.head_ref }} gh_ref_name: ${{ github.ref_name }} @@ -27,7 +27,7 @@ jobs: gh_run_number: ${{ github.run_number }} release: - uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a + uses: ortelius/workflow-toolkit/.github/workflows/container-release-workflow.yml@754a0025c5262acd4495700e27ceda566780161f needs: setenv with: gh_repository_owner: ${{ github.repository_owner }} @@ -43,7 +43,7 @@ jobs: permissions: security-events: write statuses: write - uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a + uses: ortelius/workflow-toolkit/.github/workflows/trivy-scan-workflow.yml@754a0025c5262acd4495700e27ceda566780161f needs: [setenv, release] with: gh_repository_owner: ${{ github.repository_owner }} @@ -54,7 +54,7 @@ jobs: helm: permissions: contents: write - uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a + uses: ortelius/workflow-toolkit/.github/workflows/helm-release-workflow.yml@754a0025c5262acd4495700e27ceda566780161f needs: [setenv, release] with: gh_repository_owner: ${{ github.repository_owner }} @@ -73,7 +73,7 @@ jobs: gh_token: ${{ secrets.HELM_INDEXER_TOKEN }} sbom: - uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@037a22b92fc8a18174e3bddecbc529f49baec75a + uses: ortelius/workflow-toolkit/.github/workflows/sbom-generation-workflow.yml@754a0025c5262acd4495700e27ceda566780161f needs: [setenv, release] with: gh_repository_owner: ${{ github.repository_owner }} diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml index 66ca7fc..605226b 100644 --- a/.github/workflows/codeql.yml +++ b/.github/workflows/codeql.yml @@ -29,11 +29,11 @@ jobs: uses: actions/checkout@3df4ab11eba7bda6032a0b82a6bb43b11571feac # v4.0.0 - name: Initialize CodeQL - uses: github/codeql-action/init@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5 + uses: github/codeql-action/init@6a28655e3dcb49cb0840ea372fd6d17733edd8a4 # v2.21.8 with: languages: "go" - name: Perform CodeQL Analysis - uses: github/codeql-action/analyze@00e563ead9f72a8461b24876bee2d0c2e8bd2ee8 # v2.21.5 + uses: github/codeql-action/analyze@6a28655e3dcb49cb0840ea372fd6d17733edd8a4 # v2.21.8 with: category: "/language:go" diff --git a/.github/workflows/mega-linter.yml b/.github/workflows/mega-linter.yml index 192c55b..4d16368 100644 --- a/.github/workflows/mega-linter.yml +++ b/.github/workflows/mega-linter.yml @@ -46,7 +46,7 @@ jobs: # Upload MegaLinter artifacts - name: Archive production artifacts if: ${{ success() }} || ${{ failure() }} - uses: actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce # v3 + uses: actions/upload-artifact@a8a3f3ad30e3422c9c7b888a15615d19a852ae32 # v3 with: name: MegaLinter reports path: | diff --git a/Dockerfile b/Dockerfile index 3455655..6db62a1 100644 --- a/Dockerfile +++ b/Dockerfile @@ -1,4 +1,4 @@ -FROM cgr.dev/chainguard/go@sha256:df8e73f458a003f2b4a924bc9881930163b49c621cb58f113fce782387dff3c3 AS builder +FROM cgr.dev/chainguard/go@sha256:184b5e0dd50873b205b4bfd850732690c0fcc56efe550d1085b7d5c392893c87 AS builder WORKDIR /app COPY . /app @@ -8,7 +8,7 @@ RUN go install github.com/swaggo/swag/cmd/swag@latest; \ go mod tidy; \ go build -o main . -FROM cgr.dev/chainguard/glibc-dynamic@sha256:b6d081a888e083ae88541c6da0c6c08077bb6b60c04b21813e7eea92d900e4be +FROM cgr.dev/chainguard/glibc-dynamic@sha256:e493a17470bdd46f932fe2d8277ed1d2eb73c5cc9368d46057e5a899ef24b263 WORKDIR /app diff --git a/go.mod b/go.mod index 2fb739e..a7677ca 100644 --- a/go.mod +++ b/go.mod @@ -4,7 +4,7 @@ go 1.20 require ( github.com/arangodb/go-driver v1.6.0 - github.com/gofiber/fiber/v2 v2.49.1 + github.com/gofiber/fiber/v2 v2.49.2 github.com/ortelius/scec-commons v0.1.11 github.com/swaggo/swag v1.16.2 ) @@ -50,7 +50,7 @@ require ( github.com/valyala/fasthttp v1.49.0 // indirect github.com/valyala/tcplisten v1.0.0 // indirect golang.org/x/crypto v0.12.0 // indirect - golang.org/x/sys v0.11.0 // indirect + golang.org/x/sys v0.12.0 // indirect golang.org/x/tools v0.12.0 // indirect gopkg.in/yaml.v3 v3.0.1 // indirect lukechampine.com/blake3 v1.2.1 // indirect diff --git a/go.sum b/go.sum index 91cffd9..a6d2e72 100644 --- a/go.sum +++ b/go.sum @@ -37,6 +37,8 @@ github.com/gofiber/fiber/v2 v2.49.0 h1:xBVG2c66GDcWfww56xHvMn52Q0XX7UrSvjj6MD8/5 github.com/gofiber/fiber/v2 v2.49.0/go.mod h1:oxpt7wQaEYgdDmq7nMxCGhilYicBLFnZ+jQSJcQDlSE= github.com/gofiber/fiber/v2 v2.49.1 h1:0W2DRWevSirc8pJl4o8r8QejDR8TV6ZUCawHxwbIdOk= github.com/gofiber/fiber/v2 v2.49.1/go.mod h1:nPUeEBUeeYGgwbDm59Gp7vS8MDyScL6ezr/Np9A13WU= +github.com/gofiber/fiber/v2 v2.49.2 h1:ONEN3/Vc+dUCxxDgZZwpqvhISgHqb+bu+isBiEyKEQs= +github.com/gofiber/fiber/v2 v2.49.2/go.mod h1:gNsKnyrmfEWFpJxQAV0qvW6l70K1dZGno12oLtukcts= github.com/gofiber/swagger v0.1.12 h1:1Son/Nc1teiIftsVu6UHqXnJ3uf31pUzZO6XQDx3QYs= github.com/gofiber/swagger v0.1.12/go.mod h1:iOCNEt1gNTtlvCEKoxYX4agnZNtxlAjhujMKG6pmG74= github.com/gofiber/swagger v0.1.13 h1:e7tMH/y34HIMklQ2+uv64Ai3E8TWCgbZyscIx+IzInE= @@ -185,6 +187,8 @@ golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/sys v0.11.0 h1:eG7RXZHdqOJ1i+0lgLgCpSXAp6M3LYlAo6osgSi0xOM= golang.org/x/sys v0.11.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.12.0 h1:CM0HF96J0hcLAwsHPJZjfdNzs0gftsLfgKt57wWHJ0o= +golang.org/x/sys v0.12.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= golang.org/x/term v0.3.0/go.mod h1:q750SLmJuPmVoN1blW3UFBPREJfb1KmY3vwxfr+nFDA=