Bump github.com/hashicorp/go-hclog from 1.2.0 to 1.2.1 #80

Merged
dependabot[bot] merged 1 commits from dependabot/go_modules/github.com/hashicorp/go-hclog-1.2.1 into v3 2022-06-25 22:45:55 +03:00
dependabot[bot] commented 2022-06-06 20:25:36 +03:00 (Migrated from github.com)

Bumps github.com/hashicorp/go-hclog from 1.2.0 to 1.2.1.

Release notes

Sourced from github.com/hashicorp/go-hclog's releases.

testify/go.yaml fix

This bumps the version of testify and go.yaml that are referenced by go-hclog to fix a security issue in go.yaml.

Commits
  • fb7b65b Merge pull request #114 from hashicorp/bflad-update-testify
  • 5ab8851 deps: Update github.com/stretchr/testify@v1.7.2
  • 6298bbe fix GH test workflow after master -> main switch (#113)
  • af3b44c Merge pull request #111 from hashicorp/update-dependencies
  • 1245bc2 build: update dependencies
  • d6f8c30 Merge pull request #110 from hashicorp/aw/update-readme
  • 48a8ddd Update README.md
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Bumps [github.com/hashicorp/go-hclog](https://github.com/hashicorp/go-hclog) from 1.2.0 to 1.2.1. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/hashicorp/go-hclog/releases">github.com/hashicorp/go-hclog's releases</a>.</em></p> <blockquote> <h2>testify/go.yaml fix</h2> <p>This bumps the version of testify and go.yaml that are referenced by go-hclog to fix a security issue in go.yaml.</p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/hashicorp/go-hclog/commit/fb7b65b200fe87c3aae8a4d92b099ad774d26fa8"><code>fb7b65b</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-hclog/issues/114">#114</a> from hashicorp/bflad-update-testify</li> <li><a href="https://github.com/hashicorp/go-hclog/commit/5ab885101d9803c6e041d715a1ca798553d5551c"><code>5ab8851</code></a> deps: Update github.com/stretchr/testify@v1.7.2</li> <li><a href="https://github.com/hashicorp/go-hclog/commit/6298bbecb218dc8c8a26c1fc498754c742f61511"><code>6298bbe</code></a> fix GH test workflow after master -&gt; main switch (<a href="https://github-redirect.dependabot.com/hashicorp/go-hclog/issues/113">#113</a>)</li> <li><a href="https://github.com/hashicorp/go-hclog/commit/af3b44c87c8a1e434bf5f8f4fa08a0bed3f3c29b"><code>af3b44c</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-hclog/issues/111">#111</a> from hashicorp/update-dependencies</li> <li><a href="https://github.com/hashicorp/go-hclog/commit/1245bc28fd2d5d0761aa497bdae0d7052cabfcc1"><code>1245bc2</code></a> build: update dependencies</li> <li><a href="https://github.com/hashicorp/go-hclog/commit/d6f8c30e62d2ae7eeeaff7f37df0f928497667ff"><code>d6f8c30</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/hashicorp/go-hclog/issues/110">#110</a> from hashicorp/aw/update-readme</li> <li><a href="https://github.com/hashicorp/go-hclog/commit/48a8ddd161b2ae2cda5beb2e880c8bbd5a64854b"><code>48a8ddd</code></a> Update README.md</li> <li>See full diff in <a href="https://github.com/hashicorp/go-hclog/compare/v1.2.0...v1.2.1">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/hashicorp/go-hclog&package-manager=go_modules&previous-version=1.2.0&new-version=1.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details>
github-actions[bot] (Migrated from github.com) approved these changes 2022-06-06 20:25:52 +03:00
Sign in to join this conversation.
No description provided.