Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix(deps): update osv-scanner minor (#1246)
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | Type | Update | |---|---|---|---|---|---|---|---| | [github.com/CycloneDX/cyclonedx-go](https://redirect.github.com/CycloneDX/cyclonedx-go) | `v0.9.0` -> `v0.9.1` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fCycloneDX%2fcyclonedx-go/v0.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fCycloneDX%2fcyclonedx-go/v0.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fCycloneDX%2fcyclonedx-go/v0.9.0/v0.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fCycloneDX%2fcyclonedx-go/v0.9.0/v0.9.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [github.com/charmbracelet/bubbletea](https://redirect.github.com/charmbracelet/bubbletea) | `v1.1.0` -> `v1.1.1` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fcharmbracelet%2fbubbletea/v1.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fcharmbracelet%2fbubbletea/v1.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fcharmbracelet%2fbubbletea/v1.1.0/v1.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fcharmbracelet%2fbubbletea/v1.1.0/v1.1.1?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | | [github.com/ianlancetaylor/demangle](https://redirect.github.com/ianlancetaylor/demangle) | `81f5be9` -> `0a2b629` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fianlancetaylor%2fdemangle/v0.0.0-20240912202439-0a2b6291aafd?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2fianlancetaylor%2fdemangle/v0.0.0-20240912202439-0a2b6291aafd?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2fianlancetaylor%2fdemangle/v0.0.0-20240805132620-81f5be970eca/v0.0.0-20240912202439-0a2b6291aafd?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fianlancetaylor%2fdemangle/v0.0.0-20240805132620-81f5be970eca/v0.0.0-20240912202439-0a2b6291aafd?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | digest | | [google.golang.org/grpc](https://redirect.github.com/grpc/grpc-go) | `v1.66.1` -> `v1.66.2` | [![age](https://developer.mend.io/api/mc/badges/age/go/google.golang.org%2fgrpc/v1.66.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/google.golang.org%2fgrpc/v1.66.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/google.golang.org%2fgrpc/v1.66.1/v1.66.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/google.golang.org%2fgrpc/v1.66.1/v1.66.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) | require | patch | --- ### Release Notes <details> <summary>CycloneDX/cyclonedx-go (github.com/CycloneDX/cyclonedx-go)</summary> ### [`v0.9.1`](https://redirect.github.com/CycloneDX/cyclonedx-go/releases/tag/v0.9.1) [Compare Source](https://redirect.github.com/CycloneDX/cyclonedx-go/compare/v0.9.0...v0.9.1) #### Changelog ##### Fixes - [`6f0e0cf`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/6f0e0cf025dd99ab903e33f8e043d92b28dab4f6): fix: `nil` pointer dereference during evidence conversion ([@​nscuro](https://redirect.github.com/nscuro)) - [`ce43b6f`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/ce43b6f4cb5707d3ef2db1af1d597f5b23bf0e15): fix: make linter happy ([@​nscuro](https://redirect.github.com/nscuro)) - [`5d799e6`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/5d799e634b9bed9c86621048544737b210e433e8): fix: remove deprecated goreleaser flag ([@​nscuro](https://redirect.github.com/nscuro)) ##### Building and Packaging - [`6d5bcb0`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/6d5bcb0e277207551dbc728eb29959f1d3cbd685): build(deps): bump actions/checkout from 4.1.6 to 4.1.7 ([@​dependabot](https://redirect.github.com/dependabot)\[bot]) - [`f34fc0c`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/f34fc0c413da74d20d1cc240863aaf2eb6b274f7): build(deps): bump actions/setup-go from 5.0.1 to 5.0.2 ([@​dependabot](https://redirect.github.com/dependabot)\[bot]) - [`71cff22`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/71cff221b8dbbc1d50f839fa76ecea4e42d83a2b): build(deps): bump gitpod/workspace-go from `8d15123` to `2a9e01c` ([@​dependabot](https://redirect.github.com/dependabot)\[bot]) - [`ea69355`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/ea693550558d230b3fbba810b6e75ac2eb0b55c8): build(deps): bump golangci/golangci-lint-action from 6.0.1 to 6.1.0 ([@​dependabot](https://redirect.github.com/dependabot)\[bot]) - [`d5cbdad`](https://redirect.github.com/CycloneDX/cyclonedx-go/commit/d5cbdad49dfbf54f2dab4ad95bd1a47c710a526c): build(deps): bump goreleaser/goreleaser-action from 5.1.0 to 6.0.0 ([@​dependabot](https://redirect.github.com/dependabot)\[bot]) </details> <details> <summary>charmbracelet/bubbletea (github.com/charmbracelet/bubbletea)</summary> ### [`v1.1.1`](https://redirect.github.com/charmbracelet/bubbletea/releases/tag/v1.1.1) [Compare Source](https://redirect.github.com/charmbracelet/bubbletea/compare/v1.1.0...v1.1.1) ### Don't panic! Panicking is a part of life…and a part of workin’ in Go. This release addresses two edge cases where a `panic()` could tank Bubble Tea and break your terminal: #### Panics outside of Bubble Tea If a panic occurs outside of Bubble Tea you can use [`Program.Kill`](https://pkg.go.dev/github.com/charmbracelet/bubbletea#Program.Kill) to restore the terminal state before exiting: ```go func main() { p := tea.NewProgram(model{}) go func() { time.Sleep(3 * time.Second) defer p.Kill() panic("Urgh") }() if _, err := p.Run(); err != nil { log.Fatal(err) } } ``` #### Panics in Cmds If a panic occurs in a `Cmd` Bubble Tea will now automatically restore the terminal to its natural state before exiting. ```go type model struct{} // This command will totally panic. func pancikyCmd() tea.Msg { panic("Oh no! Jk.") } func (m model) Update(msg tea.Msg) (tea.Model, tea.Cmd) { switch msg := msg.(type) { case tea.KeyMsg: switch msg.String() { case "enter": // Panic time! But everything will be OK. return m, pancikyCmd } } return m, nil } ``` Happy panicking (if that makes any sense). #### Changelog ##### Fixed! - [`0589921`](https://redirect.github.com/charmbracelet/bubbletea/commit/0589921d2e5a1ee33e0dba1d54836946e78fe059): fix: recover from panics within cmds ([@​aymanbagabas](https://redirect.github.com/aymanbagabas)) - [`6e71f52`](https://redirect.github.com/charmbracelet/bubbletea/commit/6e71f52a8add0fdeba202d4e1bdd289182b156ac): fix: restore the terminal on kill ([@​aymanbagabas](https://redirect.github.com/aymanbagabas)) *** <a href="https://charm.sh/"><img alt="The Charm logo" src="https://stuff.charm.sh/charm-badge.jpg" width="400"></a> Thoughts? Questions? We love hearing from you. Feel free to reach out on [Twitter](https://twitter.com/charmcli), [The Fediverse](https://mastodon.technology/@​charm), or on [Discord](https://charm.sh/chat). </details> <details> <summary>grpc/grpc-go (google.golang.org/grpc)</summary> ### [`v1.66.2`](https://redirect.github.com/grpc/grpc-go/releases/tag/v1.66.2): Release 1.66.2 [Compare Source](https://redirect.github.com/grpc/grpc-go/compare/v1.66.1...v1.66.2) ### Dependencies - Remove unintentional dependency on the `testing` package ([#​7579](https://redirect.github.com/grpc/grpc-go/issues/7579)) - Remove unintentional dependency on the `flate` package ([#​7595](https://redirect.github.com/grpc/grpc-go/issues/7595)) - Special Thanks: [@​ash2k](https://redirect.github.com/ash2k) ### Bug Fixes - client: fix a bug that prevented memory reuse after handling unary RPCs ([#​7571](https://redirect.github.com/grpc/grpc-go/issues/7571)) - Special Thanks: [@​coxley](https://redirect.github.com/coxley) </details> --- ### Configuration 📅 **Schedule**: Branch creation - "before 6am on monday" in timezone Australia/Sydney, Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 👻 **Immortal**: This PR will be recreated if closed unmerged. Get [config help](https://redirect.github.com/renovatebot/renovate/discussions) if that's undesired. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/google/osv-scanner). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOC43NC4xIiwidXBkYXRlZEluVmVyIjoiMzguNzQuMSIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOlsiZGVwZW5kZW5jaWVzIl19-->
- Loading branch information