Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(deps): bump the go group with 4 updates #1056

Merged
merged 1 commit into from
Nov 4, 2024
Merged

build(deps): bump the go group with 4 updates #1056

merged 1 commit into from
Nov 4, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 1, 2024

Bumps the go group with 4 updates: github.com/envoyproxy/go-control-plane, github.com/open-policy-agent/opa, go.uber.org/mock and google.golang.org/protobuf.

Updates github.com/envoyproxy/go-control-plane from 0.13.0 to 0.13.1

Release notes

Sourced from github.com/envoyproxy/go-control-plane's releases.

v0.13.1

What's Changed

Full Changelog: envoyproxy/go-control-plane@v0.13.0...v0.13.1

Commits
  • 03ea0b2 Mirrored from envoyproxy/envoy @ d049362557545b054e1a883231e64944ed0a8819
  • bec043f Mirrored from envoyproxy/envoy @ c6761de5f33e97758471c6b973a57a5c2e5db925
  • 8c942bd Mirrored from envoyproxy/envoy @ e48666365c8a0b3a62343602fd9380d58a7afd95
  • e1df533 Mirrored from envoyproxy/envoy @ 1173629e531abf758f011c2da15da739f72881c6
  • deb90cf Mirrored from envoyproxy/envoy @ 42068a59e37d0d6c313340d0175cb08cce2574bb
  • 06f4ee8 Mirrored from envoyproxy/envoy @ a3e32c92c5ae699a4daad094c6a87b58e1e84ec2
  • f61d5e4 Mirrored from envoyproxy/envoy @ 1a153166a6d1e9336ee8982d1a00ba98655c9d39
  • f6ecc7e Mirrored from envoyproxy/envoy @ 07a8c4afe8ac83632535bd118f142df70d2335be
  • 74bddf0 Mirrored from envoyproxy/envoy @ 865aa1081a0a66d13b2564382abc89129c1ba090
  • d1afc3b Mirrored from envoyproxy/envoy @ 38530270d6cb3a3a71a9b70b3de55854750b75a9
  • Additional commits viewable in compare view

Updates github.com/open-policy-agent/opa from 0.69.0 to 0.70.0

Release notes

Sourced from github.com/open-policy-agent/opa's releases.

v0.70.0

This release contains a mix of features, performance improvements, and bugfixes.

Optimized read mode for OPA's in-memory store (#7125)

A new optimized read mode has been added to the default in-memory store, where data written to the store is eagerly converted to AST values (the data format used during evaluation). This removes the time spent converting raw data values to AST during policy evaluation, thereby improving performance.

The memory footprint of the store will increase, as processed AST values generally take up more space in memory than the corresponding raw data values, but overall memory usage of OPA might remain more stable over time, as pre-converted data is shared across evaluations and isn't recomputed for each evaluation, which can cause spikes in memory usage.

This mode can be enabled for opa run, opa eval, and opa bench by setting the --optimize-store-for-read-speed flag.

More information about this feature can be found here.

Co-authored by @​johanfylling and @​ashutosh-narkar.

Topdown and Rego

  • topdown: Use new Inter-Query Value Cache for json.match_schema built-in function (#7011) authored by @​anderseknert reported by @​lcarva
  • ast: Fix location text attribute for multi-value rules with generated body (#7128) authored by @​anderseknert
  • ast: Fix regression in opa check where a file that referenced non-provided schemas failed validation (#7124) authored by @​tjons
  • test/cases/testdata: Fix bug in test by replacing unification by explicit equality check (#7093) authored by @​matajoh
  • ast: Replace use of yaml.v2 library with yaml.v3. The earlier version would parse yes/no values as boolean. The usage of yaml.v2 in the parser was unintentional and now has been updated to yaml.v3 (#7090) authored by @​anderseknert

Runtime, Tooling, SDK

  • cmd: Make opa check respect --ignore when --bundle flag is set (#7136) authored by @​anderseknert
  • server/writer: Properly handle result encoding errors which earlier on failure would emit logs such as superfluous call to WriteHeader() while still returning 200 HTTP status code. Now, errors encoding the payload properly lead to 500 HTTP status code, without extra logs. Also use Header().Set() not Header().Add() to avoid duplicate content-type headers (#7114) authored by @​srenatus
  • cmd: Support file:// format for TLS key material file flags in opa run (#7094) authored by @​alexrohozneanu
  • plugins/rest/azure: Support managed identity for App Service / Container Apps (#7085) reported and authored by @​apc-kamezaki
  • debug: Fix step-over behaviour when exiting partial rules (#7096) authored by @​johanfylling
  • util+plugins: Fix potential memory leaks with explicit timer cancellation (#7089) authored by @​philipaconrad

Docs, Website, Ecosystem

  • docs: Fix OCI example with updated flag used by the ORAS CLI (#7130) authored by @​b3n3d17
  • docs: Delete Atom editor from supported editor integrations (#7111) authored by @​KaranbirSingh7
  • docs/website: Add Styra OPA ASP.NET Core SDK integration (#7073) authored by @​philipaconrad
  • docs/website: Update compatibility information on the rego-cpp integration (#7078) authored by @​matajoh

Miscellaneous

  • Dependency updates; notably:
    • build(deps): bump github.com/containerd/containerd from 1.7.22 to 1.7.23
    • build(deps): bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5
    • build(deps): bump golang.org/x/net from 0.29.0 to 0.30.0
    • build(deps): bump golang.org/x/time from 0.6.0 to 0.7.0
    • build(deps): bump google.golang.org/grpc from 1.67.0 to 1.67.1
Changelog

Sourced from github.com/open-policy-agent/opa's changelog.

0.70.0

This release contains a mix of features, performance improvements, and bugfixes.

Optimized read mode for OPA's in-memory store (#7125)

A new optimized read mode has been added to the default in-memory store, where data written to the store is eagerly converted to AST values (the data format used during evaluation). This removes the time spent converting raw data values to AST during policy evaluation, thereby improving performance.

The memory footprint of the store will increase, as processed AST values generally take up more space in memory than the corresponding raw data values, but overall memory usage of OPA might remain more stable over time, as pre-converted data is shared across evaluations and isn't recomputed for each evaluation, which can cause spikes in memory usage.

This mode can be enabled for opa run, opa eval, and opa bench by setting the --optimize-store-for-read-speed flag.

More information about this feature can be found here.

Co-authored by @​johanfylling and @​ashutosh-narkar.

Topdown and Rego

  • topdown: Use new Inter-Query Value Cache for json.match_schema built-in function (#7011) authored by @​anderseknert reported by @​lcarva
  • ast: Fix location text attribute for multi-value rules with generated body (#7128) authored by @​anderseknert
  • ast: Fix regression in opa check where a file that referenced non-provided schemas failed validation (#7124) authored by @​tjons
  • test/cases/testdata: Fix bug in test by replacing unification by explicit equality check (#7093) authored by @​matajoh
  • ast: Replace use of yaml.v2 library with yaml.v3. The earlier version would parse yes/no values as boolean. The usage of yaml.v2 in the parser was unintentional and now has been updated to yaml.v3 (#7090) authored by @​anderseknert

Runtime, Tooling, SDK

  • cmd: Make opa check respect --ignore when --bundle flag is set (#7136) authored by @​anderseknert
  • server/writer: Properly handle result encoding errors which earlier on failure would emit logs such as superfluous call to WriteHeader() while still returning 200 HTTP status code. Now, errors encoding the payload properly lead to 500 HTTP status code, without extra logs. Also use Header().Set() not Header().Add() to avoid duplicate content-type headers (#7114) authored by @​srenatus
  • cmd: Support file:// format for TLS key material file flags in opa run (#7094) authored by @​alexrohozneanu
  • plugins/rest/azure: Support managed identity for App Service / Container Apps (#7085) reported and authored by @​apc-kamezaki
  • debug: Fix step-over behaviour when exiting partial rules (#7096) authored by @​johanfylling
  • util+plugins: Fix potential memory leaks with explicit timer cancellation (#7089) authored by @​philipaconrad

Docs, Website, Ecosystem

  • docs: Fix OCI example with updated flag used by the ORAS CLI (#7130) authored by @​b3n3d17
  • docs: Delete Atom editor from supported editor integrations (#7111) authored by @​KaranbirSingh7
  • docs/website: Add Styra OPA ASP.NET Core SDK integration (#7073) authored by @​philipaconrad
  • docs/website: Update compatibility information on the rego-cpp integration (#7078) authored by @​matajoh

Miscellaneous

  • Dependency updates; notably:
    • build(deps): bump github.com/containerd/containerd from 1.7.22 to 1.7.23
    • build(deps): bump github.com/prometheus/client_golang from 1.20.4 to 1.20.5
    • build(deps): bump golang.org/x/net from 0.29.0 to 0.30.0
    • build(deps): bump golang.org/x/time from 0.6.0 to 0.7.0
    • build(deps): bump google.golang.org/grpc from 1.67.0 to 1.67.1
Commits
  • 2ea031e Prepare v0.70.0 release
  • 6af5e79 storage: Optimized read mode for default data storage
  • 1b797d9 Make opa check respect --ignore when --bundle flag is set (#7137)
  • 8e44b98 build(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (#7138)
  • ad6ffda build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (#7135)
  • 67fe53b Update Andrew Peabody to emeritus (#7133)
  • 30f3747 build(deps): bump github/codeql-action from 3.26.13 to 3.27.0
  • f7957bd 🐛 fix: oras cli changed to --config
  • 58ec50b Fix location for multivalue rules with generated bodies (#7129)
  • 555fe84 only check schemas when schemas are provided (#7124)
  • Additional commits viewable in compare view

Updates go.uber.org/mock from 0.4.0 to 0.5.0

Release notes

Sourced from go.uber.org/mock's releases.

v0.5.0

0.5.0 (15 Oct 2024)

Added

  • #153[]: Add --write_command_comment flag to specify whether to include Generated by this command comment.
  • #191[]: Add --build_constraint flag to add //go:build directives to generated mocks
  • #214[]: Add gob mode to support custom package loading techniques in place of --exec_only

Changed

  • #181[]: Made mockgen faster by changing flags passed to go list.
  • #183[]: Made Cond matcher generic.
  • #204[]: Removed ISGOMOCK() from generated mocks.
  • #207[]: Deprecated reflect mode and replaced it with the new package mode.

Fixed

  • #144[]: Fix a deadlock that can happen when mocking an interface that matches fmt.Stringer.
  • #168[]: Fix an issue where the "generated by" comment was being included in the package comment of generated mocks.

#144: uber-go/mock#144 #153: uber-go/mock#153 #168: uber-go/mock#168 #181: uber-go/mock#181 #183: uber-go/mock#183 #191: uber-go/mock#191 #204: uber-go/mock#204 #207: uber-go/mock#207 #214: uber-go/mock#214

Thanks to @​tulzke @​JacobOaks @​ARR4N @​sashamelentyev @​sywhang @​fasmat @​eyasy1217 @​ghouscht @​tie @​Neo2308 @​carson-brill @​alexandear @​sodul @​nbgraham for their contributions this release.

Changelog

Sourced from go.uber.org/mock's changelog.

0.5.0 (15 Oct 2024)

Added

  • #153[]: Add --write_command_comment flag to specify whether to include Generated by this command comment.
  • #191[]: Add --build_constraint flag to add //go:build directives to generated mocks
  • #214[]: Add gob mode to support custom package loading techniques in place of --exec_only

Changed

  • #181[]: Made mockgen faster by changing flags passed to go list.
  • #183[]: Made Cond matcher generic.
  • #204[]: Removed ISGOMOCK() from generated mocks.
  • #207[]: Deprecated reflect mode and replaced it with the new package mode.

Fixed

  • #144[]: Fix a deadlock that can happen when mocking an interface that matches fmt.Stringer.
  • #168[]: Fix an issue where the "generated by" comment was being included in the package comment of generated mocks.

#144: uber-go/mock#144 #153: uber-go/mock#153 #168: uber-go/mock#168 #181: uber-go/mock#181 #183: uber-go/mock#183 #191: uber-go/mock#191 #204: uber-go/mock#204 #207: uber-go/mock#207 #214: uber-go/mock#214

Thanks to @​tulzke @​JacobOaks @​ARR4N @​sashamelentyev @​sywhang @​fasmat @​eyasy1217 @​ghouscht @​tie @​Neo2308 @​carson-brill @​alexandear @​sodul @​nbgraham for their contributions this release.

Commits
  • a9c44d9 Release v0.5.0 (#213)
  • d164a16 Add gob mode to support custom package loading techniques in place of `--exec...
  • d01ed30 deprecated reflect mode has been replaced with package mode (#207)
  • 6d5eb71 Regenerate generated mocks (#206)
  • 8adc9de feat: mockgen flag --build_constraint to add //go:build directives (#191)
  • c50d83c Support Go 1.22 and Go 1.23 (#203)
  • 33ccc99 Avoid stringer-related deadlocks without adding ISGOMOCK (#204)
  • 60372e3 chore: gofumpt -w . (#202)
  • 70a5e8c Clarify documentation on Finish (#194)
  • ec32d99 Bump goreleaser/goreleaser-action from 4 to 6 (#182)
  • Additional commits viewable in compare view

Updates google.golang.org/protobuf from 1.34.2 to 1.35.1

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the go group with 4 updates
44fa979 
Bumps the go group with 4 updates: [github.com/envoyproxy/go-control-plane](https://github.com/envoyproxy/go-control-plane), [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa), [go.uber.org/mock](https://github.com/uber/mock) and google.golang.org/protobuf.


Updates `github.com/envoyproxy/go-control-plane` from 0.13.0 to 0.13.1
- [Release notes](https://github.com/envoyproxy/go-control-plane/releases)
- [Changelog](https://github.com/envoyproxy/go-control-plane/blob/main/CHANGELOG.md)
- [Commits](envoyproxy/go-control-plane@v0.13.0...v0.13.1)

Updates `github.com/open-policy-agent/opa` from 0.69.0 to 0.70.0
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](open-policy-agent/opa@v0.69.0...v0.70.0)

Updates `go.uber.org/mock` from 0.4.0 to 0.5.0
- [Release notes](https://github.com/uber/mock/releases)
- [Changelog](https://github.com/uber-go/mock/blob/main/CHANGELOG.md)
- [Commits](uber-go/mock@v0.4.0...v0.5.0)

Updates `google.golang.org/protobuf` from 1.34.2 to 1.35.1

---
updated-dependencies:
- dependency-name: github.com/envoyproxy/go-control-plane
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/open-policy-agent/opa
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: go.uber.org/mock
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/protobuf
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner November 1, 2024 18:52
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 1, 2024
@dependabot dependabot bot requested review from kenjenkins and removed request for a team November 1, 2024 18:52
@calebdoxsey calebdoxsey merged commit 93bb9bb into main Nov 4, 2024
8 checks passed
@calebdoxsey calebdoxsey deleted the dependabot/go_modules/go-c5500bf3f7 branch November 4, 2024 16:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@calebdoxsey calebdoxsey calebdoxsey approved these changes

@kenjenkins kenjenkins Awaiting requested review from kenjenkins kenjenkins is a code owner automatically assigned from pomerium/dev-backend

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@calebdoxsey