Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0 #1164

dependabot · 2022-12-05T06:15:31Z

Bumps github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0.

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.5.0

What's Changed

*: add collision resistent SHA1 implementation by @pjbgf in go-git/go-git#618

*: replace go-homedir with os.UserHomeDir by @mvdan in go-git/go-git#535

Remote: add RemoteURL to {Fetch,Pull,Push}Options by @noerw in go-git/go-git#375

Remote: Push, add support to push commits per hashes by @tjamet in go-git/go-git#325

Remote: Push, add ForceWithLease Push Option by @john-cai in go-git/go-git#404

Remote: PushOptions add push-options by @S-Bohn in go-git/go-git#399

Remote: Push, add atomic to push options by @john-cai in go-git/go-git#406

Remote: add FollowTags option for pushes by @john-cai in go-git/go-git#385

Worktree: use syscall.Timespec.Unix by @tklauser in go-git/go-git#437

Worktree: Checkout, simplified sparse checkout by @john-cai in go-git/go-git#410

Repository: don't crash accessing invalid pathinfo by @muesli in go-git/go-git#443

storage: filesystem, switch from os.SEEK_* to io.Seek* by @abhinav in go-git/go-git#421

config: add branch description support by @ninedraft in go-git/go-git#409

revision: fix endless looping in revision parser by @michenriksen in go-git/go-git#475

pumbling: optimise zlib reader and consolidate sync.Pools by @pjbgf in go-git/go-git#608

pumbling: parse optimisations by @pjbgf in go-git/go-git#602

plumbing: object, rename calculation uses too much memory by @jfontan in go-git/go-git#503

plumbing: protocol/pakp and server, include the contents of GO_GIT_USER_AGENT_EXTRA. Fixes #529 by @stewing in go-git/go-git#531

plumbing: protocol/pakp, avoid duplicate encoding when overriding a Capability value. by @tylerchr in go-git/go-git#521

plumbing: protocol/pakp, update agent by @caarlos0 in go-git/go-git#453

plumbing: protocol/pakp: Actions should have type Action by @abhinav in go-git/go-git#420

plumbing: protocol/pakp: allow unsupported multi_ack capability by @pjbgf in go-git/go-git#613

plumbing: transport/ssh, auto-populate HostKeyAlgorithms. Fixes #411 by @evanelias in go-git/go-git#548

pumbling: format/packfile, resolve external reference delta by @ga-paul-t in go-git/go-git#392

plumbing: format/packfile, prevent large objects from being read into memory completely by @zeripath in go-git/go-git#330

plumbing: format/index, support v3 index by @john-cai in go-git/go-git#407

plumbing: format/gitignore, Read .git/info/exclude file too. by @enisdenjo in go-git/go-git#402

plumbing: format/gitattributes, Avoid index out of range by @To1ne in go-git/go-git#598

plumbing: format/config, Branch name with hash can be cloned. Fixes #309 by @dowy in go-git/go-git#354

go.mod: update github.com/xanzy/ssh-agent to v0.3.1 by @tklauser in go-git/go-git#403

go.mod: update dependencies to remove supply chain CVEs by @pjbgf in go-git/go-git#620

examples: added "tag find if head is tagged" by @snebel29 in go-git/go-git#374

examples: remote fix typo by @nep-0 in go-git/go-git#408

Full Changelog: go-git/go-git@v5.4.2...v5.5.0

Commits

3e07c50 Merge pull request #620 from fluxcd/update-deps
f2d68c4 build: bump git workflow to Go 1.19
6629ba6 Update dependencies
b80af01 Update test.yml
5132549 Merge pull request #622 from go-git/test-1.19
67fb0c0 .github: update go version
0966a00 Merge pull request #618 from fluxcd/collision_detection
7c37589 sha1: Add collision resistent implementation
c798d4a Merge pull request #503 from jfontan/fix/similarity-matrix-too-big
acd6c65 Merge pull request #354 from dowy/issue/Proposal: Local Registry Image Specs #309-clone-branch-with-hash-in-name
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) from 5.4.2 to 5.5.0. - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.4.2...v5.5.0) --- updated-dependencies: - dependency-name: github.com/go-git/go-git/v5 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

openshift-ci · 2022-12-05T06:15:38Z

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign adambkaplan for approval by writing /assign @adambkaplan in a comment. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

SaschaSchwarze0 · 2022-12-05T10:22:06Z

There is a problem which is CGO related. Seems we will get a new go-git version and should simply skip this update.

Reference: go-git/go-git#624

HeavyWombat · 2022-12-06T09:02:14Z

There is a problem which is CGO related. Seems we will get a new go-git version and should simply skip this update.

Reference: go-git/go-git#624

@dependabot close
If I understood Dependabot correctly, it will not try to make this suggestion again until there is another version I guess.

dependabot bot added kind/dependency-change Categorizes issue or PR as related to changing dependencies release-note-none Label for when a PR does not need a release note labels Dec 5, 2022

openshift-ci bot requested review from HeavyWombat and SaschaSchwarze0 December 5, 2022 06:15

dependabot bot closed this Dec 6, 2022

dependabot bot deleted the dependabot/go_modules/github.com/go-git/go-git/v5-5.5.0 branch December 6, 2022 09:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0 #1164

Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0 #1164

dependabot bot commented on behalf of github Dec 5, 2022

openshift-ci bot commented Dec 5, 2022

SaschaSchwarze0 commented Dec 5, 2022

HeavyWombat commented Dec 6, 2022

Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0 #1164

Bump github.com/go-git/go-git/v5 from 5.4.2 to 5.5.0 #1164

Conversation

dependabot bot commented on behalf of github Dec 5, 2022

v5.5.0

What's Changed

openshift-ci bot commented Dec 5, 2022

SaschaSchwarze0 commented Dec 5, 2022

HeavyWombat commented Dec 6, 2022