Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

deps: update module github.com/anchore/syft to v1.17.0 #704

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Sep 13, 2024

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
github.com/anchore/syft v1.11.1 -> v1.17.0 age adoption passing confidence

Release Notes

anchore/syft (github.com/anchore/syft)

v1.17.0

Compare Source

Added Features
Bug Fixes
Additional Changes

(Full Changelog)

v1.16.0

Compare Source

Added Features
Bug Fixes

(Full Changelog)

v1.15.0

Compare Source

Added Features

(Full Changelog)

v1.14.2

Compare Source

Bug Fixes
Additional Changes

(Full Changelog)

v1.14.1

Compare Source

Bug Fixes

(Full Changelog)

v1.14.0

Compare Source

Added Features
Bug Fixes
Additional Changes

(Full Changelog)

v1.13.0

Compare Source

Added Features
Bug Fixes

(Full Changelog)

v1.12.2

Compare Source

Added Features
Bug Fixes
Additional Changes

(Full Changelog)

v1.12.1

Compare Source

v1.12.0

Compare Source


Configuration

📅 Schedule: Branch creation - "every weekend" in timezone Europe/Berlin, Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the kind/dependencies Pull requests that update a dependency file label Sep 13, 2024
Copy link
Contributor Author

renovate bot commented Sep 13, 2024

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • 48 additional dependencies were updated
  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.22.5 -> 1.23.3
github.com/anchore/stereoscope v0.0.3 -> v0.0.9
dario.cat/mergo v1.0.0 -> v1.0.1
github.com/CycloneDX/cyclonedx-go v0.9.0 -> v0.9.1
github.com/Masterminds/semver/v3 v3.2.0 -> v3.3.0
github.com/Masterminds/sprig/v3 v3.2.3 -> v3.3.0
github.com/Microsoft/go-winio v0.6.1 -> v0.6.2
github.com/Microsoft/hcsshim v0.11.4 -> v0.11.7
github.com/ProtonMail/go-crypto v1.0.0 -> v1.1.2
github.com/adrg/xdg v0.5.0 -> v0.5.3
github.com/anchore/clio v0.0.0-20240522144804-d81e109008aa -> v0.0.0-20241115144204-29e89f9fa837
github.com/anchore/fangs v0.0.0-20240508143433-f016b099950f -> v0.0.0-20241014201141-b6e4b3469f10
github.com/anchore/packageurl-go v0.1.1-0.20240507183024-848e011fc24f -> v0.1.1-0.20241018175412-5c22e6360c4f
github.com/bmatcuk/doublestar/v4 v4.6.1 -> v4.7.1
github.com/charmbracelet/lipgloss v0.12.1 -> v1.0.0
github.com/charmbracelet/x/ansi v0.1.4 -> v0.4.5
github.com/containerd/containerd v1.7.13 -> v1.7.23
github.com/containerd/ttrpc v1.2.2 -> v1.2.5
github.com/cyphar/filepath-securejoin v0.2.4 -> v0.2.5
github.com/docker/cli v27.1.1+incompatible -> v27.3.1+incompatible
github.com/docker/docker v27.1.2+incompatible -> v27.3.1+incompatible
github.com/felixge/httpsnoop v1.0.3 -> v1.0.4
github.com/gabriel-vasile/mimetype v1.4.4 -> v1.4.6
github.com/github/go-spdx/v2 v2.3.1 -> v2.3.2
github.com/go-git/go-billy/v5 v5.5.0 -> v5.6.0
github.com/huandu/xstrings v1.3.3 -> v1.5.0
github.com/mattn/go-runewidth v0.0.15 -> v0.0.16
github.com/moby/sys/user v0.1.0 -> v0.3.0
github.com/pelletier/go-toml/v2 v2.1.0 -> v2.2.2
github.com/saferwall/pe v1.5.4 -> v1.5.5
github.com/shopspring/decimal v1.2.0 -> v1.4.0
github.com/spf13/cast v1.6.0 -> v1.7.0
github.com/spf13/viper v1.18.2 -> v1.19.0
github.com/sylabs/sif/v2 v2.17.1 -> v2.20.0
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.45.0 -> v0.49.0
go.opentelemetry.io/otel v1.19.0 -> v1.24.0
go.opentelemetry.io/otel/metric v1.19.0 -> v1.24.0
go.opentelemetry.io/otel/trace v1.19.0 -> v1.24.0
golang.org/x/crypto v0.27.0 -> v0.29.0
golang.org/x/mod v0.20.0 -> v0.22.0
golang.org/x/sync v0.8.0 -> v0.9.0
google.golang.org/genproto v0.0.0-20231106174013-bbf56f31fb17 -> v0.0.0-20240213162025-012b6fc9bca9
google.golang.org/genproto/googleapis/rpc v0.0.0-20231120223509-83a465c0220f -> v0.0.0-20240314234333-6e1732d8331c
google.golang.org/grpc v1.59.0 -> v1.62.1
golang.org/x/net v0.28.0 -> v0.31.0
golang.org/x/sys v0.25.0 -> v0.27.0
golang.org/x/term v0.24.0 -> v0.26.0
golang.org/x/text v0.18.0 -> v0.20.0
google.golang.org/appengine v1.6.7 -> v1.6.8

@github-actions github-actions bot added the size/M Denotes a PR that changes 30-99 lines, ignoring generated files. label Sep 13, 2024
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from d4651d2 to 6869a59 Compare September 28, 2024 01:00
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.12.2 deps: update module github.com/anchore/syft to v1.13.0 Sep 28, 2024
@github-actions github-actions bot added size/L Denotes a PR that changes 100-499 lines, ignoring generated files. and removed size/M Denotes a PR that changes 30-99 lines, ignoring generated files. labels Sep 28, 2024
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.13.0 deps: update module github.com/anchore/syft to v1.14.0 Oct 11, 2024
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from 6869a59 to d44452f Compare October 11, 2024 22:51
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from d44452f to 615ea5f Compare October 19, 2024 01:57
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.14.0 deps: update module github.com/anchore/syft to v1.14.1 Oct 19, 2024
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from 615ea5f to e958c89 Compare October 25, 2024 22:23
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.14.1 deps: update module github.com/anchore/syft to v1.14.2 Oct 25, 2024
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from e958c89 to 8313a90 Compare November 1, 2024 23:07
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.14.2 deps: update module github.com/anchore/syft to v1.15.0 Nov 1, 2024
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from 8313a90 to 75cb0fa Compare November 9, 2024 01:48
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.15.0 deps: update module github.com/anchore/syft to v1.16.0 Nov 9, 2024
@renovate renovate bot force-pushed the renovate/github.com-anchore-syft-1.x branch from 75cb0fa to 5d96574 Compare November 22, 2024 23:14
@renovate renovate bot changed the title deps: update module github.com/anchore/syft to v1.16.0 deps: update module github.com/anchore/syft to v1.17.0 Nov 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
kind/dependencies Pull requests that update a dependency file size/L Denotes a PR that changes 100-499 lines, ignoring generated files.
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants