cherry-pick(release-v1.4.x): Bump securego/gosec from 2.16.0 to 2.17.0 #1486
Conversation
Bumps [securego/gosec](https://github.com/securego/gosec) from 2.16.0 to 2.17.0. - [Release notes](https://github.com/securego/gosec/releases) - [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml) - [Commits](securego/gosec@v2.16.0...v2.17.0) --- updated-dependencies: - dependency-name: securego/gosec dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
service-binding-operator-bot
added
approved
cherry-pick
dependencies
|
[APPROVALNOTIFIER] This PR is APPROVED Approval requirements bypassed by manually added approval. This pull-request has been approved by: The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
1 similar comment
|
[APPROVALNOTIFIER] This PR is APPROVED Approval requirements bypassed by manually added approval. This pull-request has been approved by: The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
openshift-merge-robot
merged commit 64756b6
into
redhat-developer:release-v1.4.x
service-binding-operator-bot
deleted the
cherry-pick_release-v1.4.x_623b0fd5_5bfc2654-d64d-4b93-ae1d-26a78a1fcbbe
branch
Bumps securego/gosec from 2.16.0 to 2.17.0.
Release notes
Sourced from securego/gosec's releases.
Commits
a89e9d5Enable go 1.21.0 in the CI build (#998)4b458c4chore(deps): update all dependencies (#997)7d51bfeUpdate to go version 1.20.7 and 1.19.12 (#993)fc2f66bchore(deps): update all dependencies (#992)2cf2f96chore(deps): update module github.com/onsi/gomega to v1.27.10 (#991)bf7fedafix: correctly identify infixed concats as potential SQL injections (#987)2292ed5chore(deps): update all dependencies (#989)fc570b6Add a new flag terse to show only the results and summary (#986)36f6933Switch to a maintained fork of zxcvbn module (#984)ed7b334Fix dependencies after bot update (#983)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)