Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump github.com/trufflesecurity/trufflehog/v3 from 3.46.3 to 3.47.0 #59

Closed
wants to merge 66 commits into from
Closed

Bump github.com/trufflesecurity/trufflehog/v3 from 3.46.3 to 3.47.0 #59

wants to merge 66 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 10, 2023
edited
Loading

Bumps github.com/trufflesecurity/trufflehog/v3 from 3.46.3 to 3.47.0.

Release notes

Sourced from github.com/trufflesecurity/trufflehog/v3's releases.

v3.47.0

What's Changed

New Contributors

Full Changelog: trufflesecurity/trufflehog@v3.46.3...v3.47.0

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dustin-decker and others added 30 commits October 13, 2022 12:50
@dustin-decker
initial
4792c93
@dustin-decker
add stackdriver links
4bd7f64
@dustin-decker
Add some docs
c0f3967
@dustin-decker
add image to readme
c8c5a2f
@dustin-decker
restructure project and add multiple outputs
7b5a837
@dustin-decker
add usage to readme
86cd264
@dependabot
Bump golang.org/x/text from 0.3.7 to 0.3.8
8befff4 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.3.7 to 0.3.8.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.3.7...v0.3.8)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #1 from trufflesecurity/dependabot/go_modules/gola…
26907bf 
…ng.org/x/text-0.3.8

Bump golang.org/x/text from 0.3.7 to 0.3.8
@dependabot
Bump golang.org/x/net from 0.0.0-20220909164309-bea034e7d591 to 0.7.0
9348b82 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.0.0-20220909164309-bea034e7d591 to 0.7.0.
- [Release notes](https://github.com/golang/net/releases)
- [Commits](https://github.com/golang/net/commits/v0.7.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #2 from trufflesecurity/dependabot/go_modules/gola…
e63a4f7 
…ng.org/x/net-0.7.0

Bump golang.org/x/net from 0.0.0-20220909164309-bea034e7d591 to 0.7.0
@dustin-decker
update policies
cee45bf
@dustin-decker
Add github files
c588ea4
@dependabot
Bump goreleaser/goreleaser-action from 3 to 4
e552fa0 
Bumps [goreleaser/goreleaser-action](https://github.com/goreleaser/goreleaser-action) from 3 to 4.
- [Release notes](https://github.com/goreleaser/goreleaser-action/releases)
- [Commits](goreleaser/goreleaser-action@v3...v4)

---
updated-dependencies:
- dependency-name: goreleaser/goreleaser-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump actions/setup-go from 3 to 4
ba4d66c 
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 3 to 4.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](actions/setup-go@v3...v4)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump cloud.google.com/go/pubsub from 1.25.1 to 1.30.0
a924d79 
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go) from 1.25.1 to 1.30.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@pubsub/v1.25.1...pubsub/v1.30.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #8 from trufflesecurity/dependabot/go_modules/clou…
1e1f5f6 
…d.google.com/go/pubsub-1.30.0

Bump cloud.google.com/go/pubsub from 1.25.1 to 1.30.0
@dustin-decker
Merge pull request #3 from trufflesecurity/dependabot/github_actions/…
a41ccd2 
…goreleaser/goreleaser-action-4

Bump goreleaser/goreleaser-action from 3 to 4
@dustin-decker
Merge pull request #4 from trufflesecurity/dependabot/github_actions/…
cd3fcaa 
…actions/setup-go-4

Bump actions/setup-go from 3 to 4
@dependabot
Bump golang.org/x/text from 0.8.0 to 0.9.0
919e39d 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.8.0 to 0.9.0.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.8.0...v0.9.0)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #12 from trufflesecurity/dependabot/go_modules/gol…
a47994b 
…ang.org/x/text-0.9.0

Bump golang.org/x/text from 0.8.0 to 0.9.0
@dependabot
Bump github.com/trufflesecurity/trufflehog/v3 from 3.14.0 to 3.31.4
4679959 
Bumps [github.com/trufflesecurity/trufflehog/v3](https://github.com/trufflesecurity/trufflehog) from 3.14.0 to 3.31.4.
- [Release notes](https://github.com/trufflesecurity/trufflehog/releases)
- [Changelog](https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml)
- [Commits](trufflesecurity/trufflehog@v3.14.0...v3.31.4)

---
updated-dependencies:
- dependency-name: github.com/trufflesecurity/trufflehog/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #13 from trufflesecurity/dependabot/go_modules/git…
2e63314 
…hub.com/trufflesecurity/trufflehog/v3-3.31.4

Bump github.com/trufflesecurity/trufflehog/v3 from 3.14.0 to 3.31.4
@dependabot
Bump github.com/open-policy-agent/opa from 0.45.0 to 0.51.0
1989e40 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.45.0 to 0.51.0.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](open-policy-agent/opa@v0.45.0...v0.51.0)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #7 from trufflesecurity/dependabot/go_modules/gith…
4a1e9a3 
…ub.com/open-policy-agent/opa-0.51.0

Bump github.com/open-policy-agent/opa from 0.45.0 to 0.51.0
add base TF config and Dockerfile (#11)
43018d8 
* add base TF config and Dockerfile

* add Dockerfile and goreleaser config
@dustin-decker
change dockerfile ref
6e5d1a9
@dustin-decker
change dockerfile ref
6139cbf
@dustin-decker
lint code
cf326c5
should fix error in release workflow (#14)
86c7df4
@dustin-decker
remove docker hub refs
f9b49d8
dustin-decker and others added 19 commits July 6, 2023 10:27
@dustin-decker
Merge pull request #39 from trufflesecurity/fix-spacelift-dependency-…
78763d1 
…order

Fix yaml if context
@dependabot
Bump github.com/trufflesecurity/trufflehog/v3 from 3.31.4 to 3.43.0
6510369 
Bumps [github.com/trufflesecurity/trufflehog/v3](https://github.com/trufflesecurity/trufflehog) from 3.31.4 to 3.43.0.
- [Release notes](https://github.com/trufflesecurity/trufflehog/releases)
- [Changelog](https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml)
- [Commits](trufflesecurity/trufflehog@v3.31.4...v3.43.0)

---
updated-dependencies:
- dependency-name: github.com/trufflesecurity/trufflehog/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #41 from trufflesecurity/dependabot/go_modules/git…
6379d78 
…hub.com/trufflesecurity/trufflehog/v3-3.43.0

Bump github.com/trufflesecurity/trufflehog/v3 from 3.31.4 to 3.43.0
@dependabot
Bump cloud.google.com/go/pubsub from 1.30.0 to 1.32.0
02c77a6 
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go) from 1.30.0 to 1.32.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@pubsub/v1.30.0...pubsub/v1.32.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump golang.org/x/text from 0.9.0 to 0.11.0
0381555 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.9.0 to 0.11.0.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.9.0...v0.11.0)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
temp disable spacelift dependency check (#43)
f15e9ab 
* temp disable spacelift dependency check

* cleaner way to define a never run
strips the gcs path uri prefix (#45)
3aff684 
avoids changing the engine
@dustin-decker
Fix error check
7e4e203
adds comment explaining forced dep (#42)
bde24fe 
* adds comment explaining forced dep

* requires explicit project input

* fix provider config

* infer project from provider for secret

* fix dot identifier syntax

* upgrade module

fixes rego file ingest

* upgrade to 0.1.2

fixes logging sink perms to topic

* update to 0.1.3

correct writer SA identity

* upgrade to 0.1.4

fix bucket policy

* upgrade to 0.1.5

fix bucket name interpolation

* add webhook container option

* upgrade to 0.1.6 of module

adds explicit subscriber permissions
for the default GCP pub/sub SA

* upgrade to 0.1.8

cleanup of iam policy resource syntax
@dustin-decker
Merge pull request #40 from trufflesecurity/dependabot/go_modules/gol…
fdf1232 
…ang.org/x/text-0.11.0

Bump golang.org/x/text from 0.9.0 to 0.11.0
@dustin-decker
Merge pull request #37 from trufflesecurity/dependabot/go_modules/clo…
99f178e 
…ud.google.com/go/pubsub-1.32.0

Bump cloud.google.com/go/pubsub from 1.30.0 to 1.32.0
@dependabot
Bump github.com/trufflesecurity/trufflehog/v3 from 3.43.0 to 3.46.3
6c47cfe 
Bumps [github.com/trufflesecurity/trufflehog/v3](https://github.com/trufflesecurity/trufflehog) from 3.43.0 to 3.46.3.
- [Release notes](https://github.com/trufflesecurity/trufflehog/releases)
- [Changelog](https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml)
- [Commits](trufflesecurity/trufflehog@v3.43.0...v3.46.3)

---
updated-dependencies:
- dependency-name: github.com/trufflesecurity/trufflehog/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
generalize input variables and docs
0112bb7
remove deployment-specific configuration
2b2ea42
cleanup
06fcfb0
@dustin-decker
Merge pull request #57 from trufflesecurity/remove-trufflesec-config
08c9e33 
Remove trufflesec config
@dustin-decker
Merge pull request #56 from trufflesecurity/dependabot/go_modules/git…
c44b9de 
…hub.com/trufflesecurity/trufflehog/v3-3.46.3

Bump github.com/trufflesecurity/trufflehog/v3 from 3.43.0 to 3.46.3
@dependabot
Bump cloud.google.com/go/pubsub from 1.30.0 to 1.33.0
188c18f 
Bumps [cloud.google.com/go/pubsub](https://github.com/googleapis/google-cloud-go) from 1.30.0 to 1.33.0.
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@pubsub/v1.30.0...pubsub/v1.33.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/pubsub
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot
Bump golang.org/x/text from 0.11.0 to 0.12.0
b3c549f 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.11.0 to 0.12.0.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.11.0...v0.12.0)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Aug 10, 2023
dependabot bot and others added 5 commits August 10, 2023 13:48
@dependabot
Bump github.com/open-policy-agent/opa from 0.51.0 to 0.55.0
ecf8aee 
Bumps [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) from 0.51.0 to 0.55.0.
- [Release notes](https://github.com/open-policy-agent/opa/releases)
- [Changelog](https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md)
- [Commits](open-policy-agent/opa@v0.51.0...v0.55.0)

---
updated-dependencies:
- dependency-name: github.com/open-policy-agent/opa
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dustin-decker
Merge pull request #53 from trufflesecurity/dependabot/go_modules/git…
4b621da 
…hub.com/open-policy-agent/opa-0.55.0

Bump github.com/open-policy-agent/opa from 0.51.0 to 0.55.0
@dustin-decker
Merge pull request #55 from trufflesecurity/dependabot/go_modules/gol…
ee2db74 
…ang.org/x/text-0.12.0

Bump golang.org/x/text from 0.11.0 to 0.12.0
@dustin-decker
Merge pull request #51 from trufflesecurity/dependabot/go_modules/clo…
f84f140 
…ud.google.com/go/pubsub-1.33.0

Bump cloud.google.com/go/pubsub from 1.30.0 to 1.33.0
@dependabot
Bump github.com/trufflesecurity/trufflehog/v3 from 3.46.3 to 3.47.0
d4e7d0d 
Bumps [github.com/trufflesecurity/trufflehog/v3](https://github.com/trufflesecurity/trufflehog) from 3.46.3 to 3.47.0.
- [Release notes](https://github.com/trufflesecurity/trufflehog/releases)
- [Changelog](https://github.com/trufflesecurity/trufflehog/blob/main/.goreleaser.yml)
- [Commits](trufflesecurity/trufflehog@v3.46.3...v3.47.0)

---
updated-dependencies:
- dependency-name: github.com/trufflesecurity/trufflehog/v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Aug 10, 2023

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/go_modules/github.com/trufflesecurity/trufflehog/v3-3.47.0 branch August 10, 2023 13:51
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file go Pull requests that update Go code
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@dustin-decker