Fix security deps 20260609#83
Closed
upbeat-backbone-bose wants to merge 335 commits into
Closed
Conversation
…s/backend/go_modules-dd7da38a6b build(deps): bump golang.org/x/crypto from 0.40.0 to 0.45.0 in /backend in the go_modules group across 1 directory
Bumps [actions/checkout](https://github.com/actions/checkout) from 5 to 6. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](actions/checkout@v5...v6) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [github.com/spf13/cobra](https://github.com/spf13/cobra) from 1.10.1 to 1.10.2. - [Release notes](https://github.com/spf13/cobra/releases) - [Commits](spf13/cobra@v1.10.1...v1.10.2) --- updated-dependencies: - dependency-name: github.com/spf13/cobra dependency-version: 1.10.2 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [ui/speedtest](https://github.com/librespeed/speedtest) from `4458c69` to `a3ed066`. - [Release notes](https://github.com/librespeed/speedtest/releases) - [Commits](librespeed/speedtest@4458c69...a3ed066) --- updated-dependencies: - dependency-name: ui/speedtest dependency-version: a3ed06699fca657ce045dffa3a8ade5ff99012b0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…tions/actions/checkout-6 build(deps): bump actions/checkout from 5 to 6
…s/backend/github.com/spf13/cobra-1.10.2 build(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 in /backend
…s/ui/speedtest-a3ed066 build(deps): bump ui/speedtest from `4458c69` to `a3ed066`
Bumps the go_modules group with 1 update in the /backend directory: [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go). Updates `github.com/quic-go/quic-go` from 0.54.1 to 0.57.0 - [Release notes](https://github.com/quic-go/quic-go/releases) - [Commits](quic-go/quic-go@v0.54.1...v0.57.0) --- updated-dependencies: - dependency-name: github.com/quic-go/quic-go dependency-version: 0.57.0 dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com>
…s/backend/go_modules-15eab1e1d8 build(deps): bump github.com/quic-go/quic-go from 0.54.1 to 0.57.0 in /backend in the go_modules group across 1 directory
Bumps [actions/download-artifact](https://github.com/actions/download-artifact) from 6 to 7. - [Release notes](https://github.com/actions/download-artifact/releases) - [Commits](actions/download-artifact@v6...v7) --- updated-dependencies: - dependency-name: actions/download-artifact dependency-version: '7' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [actions/upload-artifact](https://github.com/actions/upload-artifact) from 5 to 6. - [Release notes](https://github.com/actions/upload-artifact/releases) - [Commits](actions/upload-artifact@v5...v6) --- updated-dependencies: - dependency-name: actions/upload-artifact dependency-version: '6' dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [github.com/miekg/dns](https://github.com/miekg/dns) from 1.1.68 to 1.1.69. - [Commits](miekg/dns@v1.1.68...v1.1.69) --- updated-dependencies: - dependency-name: github.com/miekg/dns dependency-version: 1.1.69 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…tions/actions/download-artifact-7 build(deps): bump actions/download-artifact from 6 to 7
…tions/actions/upload-artifact-6 build(deps): bump actions/upload-artifact from 5 to 6
…s/backend/github.com/miekg/dns-1.1.69 build(deps): bump github.com/miekg/dns from 1.1.68 to 1.1.69 in /backend
Bumps [ui/speedtest](https://github.com/librespeed/speedtest) from `a3ed066` to `750f043`. - [Release notes](https://github.com/librespeed/speedtest/releases) - [Commits](librespeed/speedtest@a3ed066...750f043) --- updated-dependencies: - dependency-name: ui/speedtest dependency-version: 750f043872f0315c00e9baed43307aa57ca6d0b1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…s/ui/speedtest-750f043 build(deps): bump ui/speedtest from `a3ed066` to `750f043`
Bumps [ui/speedtest](https://github.com/librespeed/speedtest) from `750f043` to `746824b`. - [Release notes](https://github.com/librespeed/speedtest/releases) - [Commits](librespeed/speedtest@750f043...746824b) --- updated-dependencies: - dependency-name: ui/speedtest dependency-version: 746824b77d7ca3b3b348e20302cff84534dcd18f dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…s/ui/speedtest-746824b build(deps): bump ui/speedtest from `750f043` to `746824b`
Bumps [ui/speedtest](https://github.com/librespeed/speedtest) from `746824b` to `9830af2`. - [Release notes](https://github.com/librespeed/speedtest/releases) - [Commits](librespeed/speedtest@746824b...9830af2) --- updated-dependencies: - dependency-name: ui/speedtest dependency-version: 9830af2c3a0525d2df213e2682f2993f4ba7c651 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [github.com/miekg/dns](https://github.com/miekg/dns) from 1.1.69 to 1.1.70. - [Commits](miekg/dns@v1.1.69...v1.1.70) --- updated-dependencies: - dependency-name: github.com/miekg/dns dependency-version: 1.1.70 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…s/ui/speedtest-9830af2 build(deps): bump ui/speedtest from `746824b` to `9830af2`
…s/backend/github.com/miekg/dns-1.1.70 build(deps): bump github.com/miekg/dns from 1.1.69 to 1.1.70 in /backend
Bumps [github.com/miekg/dns](https://github.com/miekg/dns) from 1.1.70 to 1.1.72. - [Commits](miekg/dns@v1.1.70...v1.1.72) --- updated-dependencies: - dependency-name: github.com/miekg/dns dependency-version: 1.1.72 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [ui/speedtest](https://github.com/librespeed/speedtest) from `9830af2` to `734a35f`. - [Release notes](https://github.com/librespeed/speedtest/releases) - [Commits](librespeed/speedtest@9830af2...734a35f) --- updated-dependencies: - dependency-name: ui/speedtest dependency-version: 734a35f89c8f7b6ed8a415337e32e40432df8200 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…s/backend/github.com/miekg/dns-1.1.72 build(deps): bump github.com/miekg/dns from 1.1.70 to 1.1.72 in /backend
…s/ui/speedtest-734a35f build(deps): bump ui/speedtest from `9830af2` to `734a35f`
Bumps [ui/speedtest](https://github.com/librespeed/speedtest) from `734a35f` to `98f447c`. - [Release notes](https://github.com/librespeed/speedtest/releases) - [Commits](librespeed/speedtest@734a35f...98f447c) --- updated-dependencies: - dependency-name: ui/speedtest dependency-version: 98f447c8db55417a6b10a108f5f65251a2f5f36d dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>
…s/ui/speedtest-98f447c build(deps): bump ui/speedtest from `734a35f` to `98f447c`
…ctions/docker/setup-buildx-action-4.1.0 build(deps): bump docker/setup-buildx-action from 4.0.0 to 4.1.0
…ctions/docker/build-push-action-7.2.0 build(deps): bump docker/build-push-action from 7.1.0 to 7.2.0
…ctions/docker/login-action-4.2.0 build(deps): bump docker/login-action from 4.1.0 to 4.2.0
…yarn/ui/unplugin-vue-components-32.1.0 build(deps-dev): bump unplugin-vue-components from 32.0.0 to 32.1.0 in /ui
…yarn/ui/vite-8.0.14 build(deps-dev): bump vite from 8.0.13 to 8.0.14 in /ui
…yarn/ui/apexcharts-5.13.0 build(deps-dev): bump apexcharts from 5.12.0 to 5.13.0 in /ui
…yarn/ui/vue-i18n-11.4.4 build(deps-dev): bump vue-i18n from 11.4.2 to 11.4.4 in /ui
Bumps [docker/setup-qemu-action](https://github.com/docker/setup-qemu-action) from 4.0.0 to 4.1.0. - [Release notes](https://github.com/docker/setup-qemu-action/releases) - [Commits](docker/setup-qemu-action@v4.0.0...v4.1.0) --- updated-dependencies: - dependency-name: docker/setup-qemu-action dependency-version: 4.1.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [eslint](https://github.com/eslint/eslint) from 10.4.0 to 10.4.1. - [Release notes](https://github.com/eslint/eslint/releases) - [Commits](eslint/eslint@v10.4.0...v10.4.1) --- updated-dependencies: - dependency-name: eslint dependency-version: 10.4.1 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [vue](https://github.com/vuejs/core) from 3.5.34 to 3.5.35. - [Release notes](https://github.com/vuejs/core/releases) - [Changelog](https://github.com/vuejs/core/blob/main/CHANGELOG.md) - [Commits](vuejs/core@v3.5.34...v3.5.35) --- updated-dependencies: - dependency-name: vue dependency-version: 3.5.35 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…ctions/docker/setup-qemu-action-4.1.0 build(deps): bump docker/setup-qemu-action from 4.0.0 to 4.1.0
…yarn/ui/eslint-10.4.1 build(deps-dev): bump eslint from 10.4.0 to 10.4.1 in /ui
…yarn/ui/vue-3.5.35 build(deps): bump vue from 3.5.34 to 3.5.35 in /ui
Bumps the go_modules group with 1 update in the /backend directory: [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go). Updates `github.com/quic-go/quic-go` from 0.59.0 to 0.59.1 - [Release notes](https://github.com/quic-go/quic-go/releases) - [Commits](quic-go/quic-go@v0.59.0...v0.59.1) --- updated-dependencies: - dependency-name: github.com/quic-go/quic-go dependency-version: 0.59.1 dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [vite](https://github.com/vitejs/vite/tree/HEAD/packages/vite) from 8.0.14 to 8.0.16. - [Release notes](https://github.com/vitejs/vite/releases) - [Changelog](https://github.com/vitejs/vite/blob/main/packages/vite/CHANGELOG.md) - [Commits](https://github.com/vitejs/vite/commits/v8.0.16/packages/vite) --- updated-dependencies: - dependency-name: vite dependency-version: 8.0.16 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [vue-i18n](https://github.com/intlify/vue-i18n/tree/HEAD/packages/vue-i18n) from 11.4.4 to 11.4.5. - [Release notes](https://github.com/intlify/vue-i18n/releases) - [Changelog](https://github.com/intlify/vue-i18n/blob/master/CHANGELOG.md) - [Commits](https://github.com/intlify/vue-i18n/commits/v11.4.5/packages/vue-i18n) --- updated-dependencies: - dependency-name: vue-i18n dependency-version: 11.4.5 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [apexcharts](https://github.com/apexcharts/apexcharts.js) from 5.13.0 to 5.14.0. - [Release notes](https://github.com/apexcharts/apexcharts.js/releases) - [Commits](apexcharts/apexcharts.js@v5.13.0...v5.14.0) --- updated-dependencies: - dependency-name: apexcharts dependency-version: 5.14.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…es/backend/go_modules-c3a371b575 build(deps): bump github.com/quic-go/quic-go from 0.59.0 to 0.59.1 in /backend in the go_modules group across 1 directory
…yarn/ui/vite-8.0.16 build(deps-dev): bump vite from 8.0.14 to 8.0.16 in /ui
…yarn/ui/vue-i18n-11.4.5 build(deps-dev): bump vue-i18n from 11.4.4 to 11.4.5 in /ui
…yarn/ui/apexcharts-5.14.0 build(deps-dev): bump apexcharts from 5.13.0 to 5.14.0 in /ui
Bumps [github.com/reeflective/console](https://github.com/reeflective/console) from 0.1.25 to 0.3.1. - [Release notes](https://github.com/reeflective/console/releases) - [Commits](reeflective/console@v0.1.25...v0.3.1) --- updated-dependencies: - dependency-name: github.com/reeflective/console dependency-version: 0.3.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [axios](https://github.com/axios/axios) from 1.16.1 to 1.17.0. - [Release notes](https://github.com/axios/axios/releases) - [Changelog](https://github.com/axios/axios/blob/v1.x/CHANGELOG.md) - [Commits](axios/axios@v1.16.1...v1.17.0) --- updated-dependencies: - dependency-name: axios dependency-version: 1.17.0 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
Bumps [vue-eslint-parser](https://github.com/vuejs/vue-eslint-parser) from 10.4.0 to 10.4.1. - [Release notes](https://github.com/vuejs/vue-eslint-parser/releases) - [Commits](vuejs/vue-eslint-parser@v10.4.0...v10.4.1) --- updated-dependencies: - dependency-name: vue-eslint-parser dependency-version: 10.4.1 dependency-type: direct:development update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>
…es/backend/github.com/reeflective/console-0.3.1 build(deps): bump github.com/reeflective/console from 0.1.25 to 0.3.1 in /backend
…yarn/ui/axios-1.17.0 build(deps-dev): bump axios from 1.16.1 to 1.17.0 in /ui
…yarn/ui/vue-eslint-parser-10.4.1 build(deps-dev): bump vue-eslint-parser from 10.4.0 to 10.4.1 in /ui
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.