Bump github.com/secure-systems-lab/go-securesystemslib from 0.4.0 to 0.5.0 #24
Conversation
dependabot
bot
added
dependencies
|
It looks like secure-systems-lab/go-securesystemslib#34 might be breaking in-toto |
|
We're working on bumping that on in-toto-golang. |
dependabot
bot
force-pushed
the
dependabot/go_modules/github.com/secure-systems-lab/go-securesystemslib-0.5.0
branch
2 times, most recently
from
89f643c to
cad5da0
Compare
Bumps [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib) from 0.4.0 to 0.5.0. - [Release notes](https://github.com/secure-systems-lab/go-securesystemslib/releases) - [Commits](secure-systems-lab/go-securesystemslib@v0.4.0...v0.5.0) --- updated-dependencies: - dependency-name: github.com/secure-systems-lab/go-securesystemslib dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
force-pushed
the
dependabot/go_modules/github.com/secure-systems-lab/go-securesystemslib-0.5.0
branch
from
cad5da0 to
36b7700
Compare
|
https://github.com/in-toto/in-toto-golang/releases/tag/v0.7.0 is live. Note that a couple of APIs have changed to handle the change in go-securesystemslib. I'm guessing you're hitting those codepaths since the test is failing. |
|
closing in favor of #35 |
|
OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting If you change your mind, just re-open this PR and I'll resolve any conflicts on it. |
dependabot
bot
deleted the
dependabot/go_modules/github.com/secure-systems-lab/go-securesystemslib-0.5.0
branch
Bumps github.com/secure-systems-lab/go-securesystemslib from 0.4.0 to 0.5.0.
Commits
c32a0fdMerge pull request #34 from khalkie/main60bd7fdAdded ctx parameter to Sign and Verify interfaces to allow context passing in...154aa5bMerge pull request #33 from secure-systems-lab/dependabot/github_actions/domi...88ee094chore(deps): bump dominikh/staticcheck-action from 1.2.0 to 1.3.0309cc87Merge pull request #30 from ohkinozomu/staticcheck-actionfa0a6f8Merge pull request #32 from secure-systems-lab/optimize-encoder-throughput2603c05Merge pull request #31 from secure-systems-lab/dependabot/go_modules/github.c...c425201chore(deps): bump github.com/stretchr/testify from 1.8.0 to 1.8.18d6fdf7Add staticcheck-actionc1e41baMerge pull request #28 from secure-systems-lab/dependabot/go_modules/github.c...Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)