dependabot[bot]
77047967ce
build(deps): bump the go_modules group across 1 directory with 3 updates ( #1146 )
...
Bumps the go_modules group with 2 updates in the /interchaintest
directory:
[github.com/cometbft/cometbft](https://github.com/cometbft/cometbft ) and
[github.com/docker/docker](https://github.com/docker/docker ).
Updates `github.com/cometbft/cometbft` from 0.38.8 to 0.38.12
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cometbft/cometbft/releases ">github.com/cometbft/cometbft's
releases</a>.</em></p>
<blockquote>
<h2>v0.38.12</h2>
<p>See the <a
href="https://github.com/cometbft/cometbft/blob/v0.38.12/CHANGELOG.md#v03812 ">CHANGELOG</a>
for this release.</p>
<h2>v0.38.11</h2>
<p><a
href="https://github.com/cometbft/cometbft/blob/v0.38.11/CHANGELOG.md#v03811 ">CHANGELOG</a></p>
<h2>v0.38.10</h2>
<p>See the <a
href="https://github.com/cometbft/cometbft/blob/v0.38.10/CHANGELOG.md#v03810 ">CHANGELOG</a>
for this release.</p>
<h2>v0.38.9</h2>
<p>See the <a
href="https://github.com/cometbft/cometbft/blob/v0.38.9/CHANGELOG.md#v0389 ">CHANGELOG</a>
for this release.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cometbft/cometbft/blob/v0.38.12/CHANGELOG.md ">github.com/cometbft/cometbft's
changelog</a>.</em></p>
<blockquote>
<h2>v0.38.12</h2>
<p><em>September 3, 2024</em></p>
<p>This release includes a security fix for the light client and is
recommended
for all users.</p>
<h3>BUG FIXES</h3>
<ul>
<li><code>[light]</code> Cross-check proposer priorities in retrieved
validator sets
(<a
href="https://github.com/cometbft/cometbft/security/advisories/GHSA-g5xx-c4hv-9ccc ">#ASA-2024-009</a>)</li>
<li><code>[privval]</code> Ignore duplicate privval listen when already
connected (<a
href="https://redirect.github.com/cometbft/cometbft/issues/3828 ">#3828</a></li>
</ul>
<h3>DEPENDENCIES</h3>
<ul>
<li><code>[crypto/secp256k1]</code> Adjust to breaking interface changes
in
<code>btcec/v2</code> latest release, while avoiding breaking changes to
local CometBFT functions
(<a
href="https://redirect.github.com/cometbft/cometbft/pull/3728 ">#3728</a>)</li>
</ul>
<h3>IMPROVEMENTS</h3>
<ul>
<li><code>[types]</code> Check that proposer is one of the validators in
<code>ValidateBasic</code>
(<a
href="https://github.com/cometbft/cometbft/security/advisories/GHSA-g5xx-c4hv-9ccc ">#ASA-2024-009</a>)</li>
<li><code>[e2e]</code> Add <code>log_level</code> option to manifest
file
(<a
href="https://redirect.github.com/cometbft/cometbft/pull/3819 ">#3819</a>).</li>
<li><code>[e2e]</code> Add <code>log_format</code> option to manifest
file
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3836 ">#3836</a>).</li>
</ul>
<h2>v0.38.11</h2>
<p><em>August 12, 2024</em></p>
<p>This release fixes a panic in consensus where CometBFT would
previously panic
if there's no extension signature in non-nil Precommit EVEN IF vote
extensions
themselves are disabled.</p>
<p>It also includes a few other bug fixes and performance
improvements.</p>
<h3>BUG FIXES</h3>
<ul>
<li><code>[types]</code> Only check IFF vote is a non-nil Precommit if
extensionsEnabled
types (<a
href="https://redirect.github.com/cometbft/cometbft/issues/3565 ">#3565</a>)</li>
</ul>
<h3>IMPROVEMENTS</h3>
<ul>
<li><code>[indexer]</code> Fixed ineffective select break statements;
they now
point to their enclosing for loop label to exit
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3544 ">#3544</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9722b6dfa1https://redirect.github.com/cometbft/cometbft/issues/3982 ">#3982</a>)</li>
<li><a
href="52c00a537ff2ae0f4d1ehttps://redirect.github.com/cometbft/cometbft/issues/3912 ">#3912</a>)</li>
<li><a
href="cbedf6d7f2https://redirect.github.com/cometbft/cometbft/issues/3908 ">#3908</a>)</li>
<li><a
href="1013c80759https://redirect.github.com/cometbft/cometbft/issues/3873 ">#3873</a>)
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3892 ">#3892</a>)</li>
<li><a
href="2fb0cdd429https://redirect.github.com/cometbft/cometbft/issues/3907 ">#3907</a>)</li>
<li><a
href="dcbf35967fhttps://redirect.github.com/cometbft/cometbft/issues/3906 ">#3906</a>)</li>
<li><a
href="8de81d5e39https://redirect.github.com/cometbft/cometbft/issues/3905 ">#3905</a>)</li>
<li><a
href="221c7445aehttps://redirect.github.com/cometbft/cometbft/issues/38 ">#38</a>...</li>
<li><a
href="969c8d1d92https://redirect.github.com/cometbft/cometbft/issues/934 ">#934</a>)
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3893 ">#3893</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/cometbft/cometbft/compare/v0.38.8...v0.38.12 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `github.com/docker/docker` from 24.0.9+incompatible to
25.0.6+incompatible
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/docker/docker/releases ">github.com/docker/docker's
releases</a>.</em></p>
<blockquote>
<h2>v25.0.6</h2>
<h2>25.0.6</h2>
<p>For a full list of pull requests and changes in this release, refer
to the relevant GitHub milestones:</p>
<ul>
<li><a
href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.6 ">docker/cli,
25.0.6 milestone</a></li>
<li><a
href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.6 ">moby/moby,
25.0.6 milestone</a></li>
<li>Deprecated and removed features, see <a
href="https://github.com/docker/cli/blob/v25.0.6/docs/deprecated.md ">Deprecated
Features</a>.</li>
<li>Changes to the Engine API, see <a
href="https://github.com/moby/moby/blob/v25.0.6/docs/api/version-history.md ">API
version history</a>.</li>
</ul>
<h3>Security</h3>
<p>This release contains a fix for <a
href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41110 ">CVE-2024-41110</a>
/ <a
href="https://github.com/moby/moby/security/advisories/GHSA-v23v-6jw2-98fq ">GHSA-v23v-6jw2-98fq</a>
that impacted setups using <a
href="https://docs.docker.com/engine/extend/plugins_authorization/ ">authorization
plugins (AuthZ)</a> for access control.</p>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>[25.0] remove erroneous <code>platform</code> from image
<code>config</code> OCI descriptor in <code>docker save</code> output.
<a
href="https://redirect.github.com/moby/moby/pull/47695 ">moby/moby#47695</a></li>
<li>[25.0 backport] Fix a nil dereference when getting image history for
images having layers without the <code>Created</code> value set. <a
href="https://redirect.github.com/moby/moby/pull/47759 ">moby/moby#47759</a></li>
<li>[25.0 backport] apparmor: Allow confined runc to kill containers. <a
href="https://redirect.github.com/moby/moby/pull/47830 ">moby/moby#47830</a></li>
<li>[25.0 backport] Fix an issue where rapidly promoting a Swarm node
after another node was demoted could cause the promoted node to fail its
promotion. <a
href="https://redirect.github.com/moby/moby/pull/47869 ">moby/moby#47869</a></li>
<li>[25.0 backport] don't depend on containerd platform.Parse to return
a typed error. <a
href="https://redirect.github.com/moby/moby/pull/47890 ">moby/moby#47890</a></li>
<li>[25.0 backport] builder/mobyexporter: Add missing nil check <a
href="https://redirect.github.com/moby/moby/pull/47987 ">moby/moby#47987</a></li>
</ul>
<h3>Packaging updates</h3>
<ul>
<li>Update AWS SDK Go v2 to v1.24.1 for AWS CloudWatch logging driver.
<a
href="https://redirect.github.com/moby/moby/pull/47724 ">moby/moby#47724</a></li>
<li>Update Go runtime to 1.21.12, which contains security fixes for <a
href="https://github.com/advisories/GHSA-hw49-2p59-3mhj ">CVE-2024-24791</a>
<a
href="https://redirect.github.com/moby/moby/pull/48146 ">moby/moby#48146</a></li>
<li>Update Containerd (static binaries only) to <a
href="https://github.com/containerd/containerd/releases/tag/v1.7.20 ">v1.7.20</a>.
<a
href="https://redirect.github.com/moby/moby/pull/48199 ">moby/moby#48199</a></li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/moby/moby/compare/v25.0.5...v25.0.6 ">https://github.com/moby/moby/compare/v25.0.5...v25.0.6 </a></p>
<h2>v25.0.5</h2>
<h2>25.0.5</h2>
<p>For a full list of pull requests and changes in this release, refer
to the relevant GitHub milestones:</p>
<ul>
<li><a
href="https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A25.0.5 ">docker/cli,
25.0.5 milestone</a></li>
<li><a
href="https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A25.0.5 ">moby/moby,
25.0.5 milestone</a></li>
<li>Deprecated and removed features, see <a
href="https://github.com/docker/cli/blob/v25.0.5/docs/deprecated.md ">Deprecated
Features</a>.</li>
<li>Changes to the Engine API, see <a
href="https://github.com/moby/moby/blob/v25.0.5/docs/api/version-history.md ">API
version history</a>.</li>
</ul>
<h3>Security</h3>
<p>This release contains a security fix for <a
href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx ">CVE-2024-29018</a>,
a potential data exfiltration from 'internal' networks via authoritative
DNS servers.</p>
<h3>Bug fixes and enhancements</h3>
<ul>
<li>
<p><a
href="https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx ">CVE-2024-29018</a>:
Do not forward requests to external DNS servers for a container that is
only connected to an 'internal' network. Previously, requests were
forwarded if the host's DNS server was running on a loopback address,
like systemd's 127.0.0.53. <a
href="https://redirect.github.com/moby/moby/pull/47589 ">moby/moby#47589</a></p>
</li>
<li>
<p>plugin: fix mounting /etc/hosts when running in UserNS. <a
href="https://redirect.github.com/moby/moby/pull/47588 ">moby/moby#47588</a></p>
</li>
<li>
<p>rootless: fix <code>open /etc/docker/plugins: permission
denied</code>. <a
href="https://redirect.github.com/moby/moby/pull/47587 ">moby/moby#47587</a></p>
</li>
<li>
<p>Fix multiple parallel <code>docker build</code> runs leaking disk
space. <a
href="https://redirect.github.com/moby/moby/pull/47527 ">moby/moby#47527</a></p>
</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="b08a51fe16https://redirect.github.com/docker/docker/issues/48231 ">#48231</a>
from austinvazquez/backport-vendor-otel-v0.46.1-to-...</li>
<li><a
href="d151b0f87fc6ba9a5124https://redirect.github.com/docker/docker/issues/48225 ">#48225</a>
from austinvazquez/backport-workflow-artifact-reten...</li>
<li><a
href="4673a3ca2chttps://redirect.github.com/docker/docker/issues/48227 ">#48227</a>
from austinvazquez/backport-backport-branch-check-t...</li>
<li><a
href="30f89081027454d6a2e665cc597ceab722836927https://redirect.github.com/docker/docker/issues/48199 ">#48199</a>
from austinvazquez/update-containerd-binary-to-1.7.20</li>
<li><a
href="e8ecb9c76de6cae1f237https://github.com/docker/docker/compare/v24.0.9...v25.0.6 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `github.com/rs/cors` from 1.10.1 to 1.11.1
<details>
<summary>Commits</summary>
<ul>
<li><a
href="a814d7990ahttps://redirect.github.com/rs/cors/issues/184 ">#184</a>)...</li>
<li><a
href="1562b1715bhttps://redirect.github.com/rs/cors/issues/178 ">#178</a>)</li>
<li><a
href="3d336ea9b5https://redirect.github.com/rs/cors/issues/175 ">#175</a>)</li>
<li><a
href="85fc0cac7bhttps://redirect.github.com/rs/cors/issues/145 ">#145</a>)
(#...</li>
<li><a
href="4c32059b27https://redirect.github.com/rs/cors/issues/170 ">#170</a>)...</li>
<li><a
href="8d33ca4794af821aecfc0bcf73f5c9eacc8e8b6chttps://redirect.github.com/rs/cors/issues/165 ">#165</a>)</li>
<li><a
href="9297f15606https://redirect.github.com/rs/cors/issues/163 ">#163</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/rs/cors/compare/v1.10.1...v1.11.1 ">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/onsonr/sonr/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Prad Nukala <prad@sonr.io>
2024-10-21 12:01:52 -04:00
dependabot[bot]
c138f923ce
build(deps): bump the go_modules group with 2 updates ( #1145 )
...
[//]: # (dependabot-start)
⚠️ **Dependabot is rebasing this PR** ⚠️
Rebasing might not happen immediately, so don't worry if this takes some
time.
Note: if you make any changes to this PR yourself, they will take
precedence over the rebase.
---
[//]: # (dependabot-end)
Bumps the go_modules group with 2 updates:
[github.com/cometbft/cometbft](https://github.com/cometbft/cometbft ) and
[google.golang.org/grpc](https://github.com/grpc/grpc-go ).
Updates `github.com/cometbft/cometbft` from 0.38.8 to 0.38.12
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/cometbft/cometbft/releases ">github.com/cometbft/cometbft's
releases</a>.</em></p>
<blockquote>
<h2>v0.38.12</h2>
<p>See the <a
href="https://github.com/cometbft/cometbft/blob/v0.38.12/CHANGELOG.md#v03812 ">CHANGELOG</a>
for this release.</p>
<h2>v0.38.11</h2>
<p><a
href="https://github.com/cometbft/cometbft/blob/v0.38.11/CHANGELOG.md#v03811 ">CHANGELOG</a></p>
<h2>v0.38.10</h2>
<p>See the <a
href="https://github.com/cometbft/cometbft/blob/v0.38.10/CHANGELOG.md#v03810 ">CHANGELOG</a>
for this release.</p>
<h2>v0.38.9</h2>
<p>See the <a
href="https://github.com/cometbft/cometbft/blob/v0.38.9/CHANGELOG.md#v0389 ">CHANGELOG</a>
for this release.</p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/cometbft/cometbft/blob/v0.38.12/CHANGELOG.md ">github.com/cometbft/cometbft's
changelog</a>.</em></p>
<blockquote>
<h2>v0.38.12</h2>
<p><em>September 3, 2024</em></p>
<p>This release includes a security fix for the light client and is
recommended
for all users.</p>
<h3>BUG FIXES</h3>
<ul>
<li><code>[light]</code> Cross-check proposer priorities in retrieved
validator sets
(<a
href="https://github.com/cometbft/cometbft/security/advisories/GHSA-g5xx-c4hv-9ccc ">#ASA-2024-009</a>)</li>
<li><code>[privval]</code> Ignore duplicate privval listen when already
connected (<a
href="https://redirect.github.com/cometbft/cometbft/issues/3828 ">#3828</a></li>
</ul>
<h3>DEPENDENCIES</h3>
<ul>
<li><code>[crypto/secp256k1]</code> Adjust to breaking interface changes
in
<code>btcec/v2</code> latest release, while avoiding breaking changes to
local CometBFT functions
(<a
href="https://redirect.github.com/cometbft/cometbft/pull/3728 ">#3728</a>)</li>
</ul>
<h3>IMPROVEMENTS</h3>
<ul>
<li><code>[types]</code> Check that proposer is one of the validators in
<code>ValidateBasic</code>
(<a
href="https://github.com/cometbft/cometbft/security/advisories/GHSA-g5xx-c4hv-9ccc ">#ASA-2024-009</a>)</li>
<li><code>[e2e]</code> Add <code>log_level</code> option to manifest
file
(<a
href="https://redirect.github.com/cometbft/cometbft/pull/3819 ">#3819</a>).</li>
<li><code>[e2e]</code> Add <code>log_format</code> option to manifest
file
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3836 ">#3836</a>).</li>
</ul>
<h2>v0.38.11</h2>
<p><em>August 12, 2024</em></p>
<p>This release fixes a panic in consensus where CometBFT would
previously panic
if there's no extension signature in non-nil Precommit EVEN IF vote
extensions
themselves are disabled.</p>
<p>It also includes a few other bug fixes and performance
improvements.</p>
<h3>BUG FIXES</h3>
<ul>
<li><code>[types]</code> Only check IFF vote is a non-nil Precommit if
extensionsEnabled
types (<a
href="https://redirect.github.com/cometbft/cometbft/issues/3565 ">#3565</a>)</li>
</ul>
<h3>IMPROVEMENTS</h3>
<ul>
<li><code>[indexer]</code> Fixed ineffective select break statements;
they now
point to their enclosing for loop label to exit
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3544 ">#3544</a>)</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="9722b6dfa1https://redirect.github.com/cometbft/cometbft/issues/3982 ">#3982</a>)</li>
<li><a
href="52c00a537ff2ae0f4d1ehttps://redirect.github.com/cometbft/cometbft/issues/3912 ">#3912</a>)</li>
<li><a
href="cbedf6d7f2https://redirect.github.com/cometbft/cometbft/issues/3908 ">#3908</a>)</li>
<li><a
href="1013c80759https://redirect.github.com/cometbft/cometbft/issues/3873 ">#3873</a>)
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3892 ">#3892</a>)</li>
<li><a
href="2fb0cdd429https://redirect.github.com/cometbft/cometbft/issues/3907 ">#3907</a>)</li>
<li><a
href="dcbf35967fhttps://redirect.github.com/cometbft/cometbft/issues/3906 ">#3906</a>)</li>
<li><a
href="8de81d5e39https://redirect.github.com/cometbft/cometbft/issues/3905 ">#3905</a>)</li>
<li><a
href="221c7445aehttps://redirect.github.com/cometbft/cometbft/issues/38 ">#38</a>...</li>
<li><a
href="969c8d1d92https://redirect.github.com/cometbft/cometbft/issues/934 ">#934</a>)
(<a
href="https://redirect.github.com/cometbft/cometbft/issues/3893 ">#3893</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/cometbft/cometbft/compare/v0.38.8...v0.38.12 ">compare
view</a></li>
</ul>
</details>
<br />
Updates `google.golang.org/grpc` from 1.64.0 to 1.64.1
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/grpc/grpc-go/releases ">google.golang.org/grpc's
releases</a>.</em></p>
<blockquote>
<h2>Release 1.64.1</h2>
<h1>Dependencies</h1>
<ul>
<li>Update x/net/http2 to address <a
href="https://nvd.nist.gov/vuln/detail/CVE-2023-45288 ">CVE-2023-45288</a>
(<a
href="https://redirect.github.com/grpc/grpc-go/issues/7352 ">#7352</a>)</li>
<li>metadata: remove String method from MD to make printing consistent
(<a
href="https://redirect.github.com/grpc/grpc-go/issues/7374 ">#7374</a>)</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="4d833de0e0https://redirect.github.com/grpc/grpc-go/issues/7381 ">#7381</a>)</li>
<li><a
href="e9193a4298https://redirect.github.com/grpc/grpc-go/issues/7375 ">#7375</a>)</li>
<li><a
href="ab292411ddhttps://redirect.github.com/grpc/grpc-go/issues/7374 ">#7374</a>)</li>
<li><a
href="355b9a557bhttps://redirect.github.com/grpc/grpc-go/issues/7219 ">#7219</a>)</li>
<li>See full diff in <a
href="https://github.com/grpc/grpc-go/compare/v1.64.0...v1.64.1 ">compare
view</a></li>
</ul>
</details>
<br />
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions
You can disable automated security fix PRs for this repo from the
[Security Alerts page](https://github.com/onsonr/sonr/network/alerts ).
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Signed-off-by: Prad Nukala <prad@sonr.io>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Prad Nukala <prad@sonr.io>
2024-10-21 12:01:26 -04:00
dependabot[bot]
d6b6c05640
build(deps): bump github.com/ipfs/kubo from 0.29.0 to 0.31.0 ( #1148 )
...
Bumps [github.com/ipfs/kubo](https://github.com/ipfs/kubo ) from 0.29.0
to 0.31.0.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/ipfs/kubo/releases ">github.com/ipfs/kubo's
releases</a>.</em></p>
<blockquote>
<h2>v0.31.0</h2>
<ul>
<li><a
href="https://github.com/ipfs/kubo/blob/HEAD/#overview ">Overview</a></li>
<li><a href="https://github.com/ipfs/kubo/blob/HEAD/#-discuss ">🗣
Discuss</a></li>
<li><a href="https://github.com/ipfs/kubo/blob/HEAD/#-highlights ">🔦
Highlights</a>
<ul>
<li><a
href="https://github.com/ipfs/kubo/blob/HEAD/#experimental-pebble-datastore ">Experimental
Pebble Datastore</a></li>
<li><a href="https://github.com/ipfs/kubo/blob/HEAD/#new-metrics ">New
metrics</a></li>
<li><a
href="https://github.com/ipfs/kubo/blob/HEAD/#lowpower-profile-no-longer-breaks-dht-announcements "><code>lowpower</code>
profile no longer breaks DHT announcements</a></li>
<li><a
href="https://github.com/ipfs/kubo/blob/HEAD/#go-123-boxo-024-and-go-libp2p-0365 ">go
1.23, boxo 0.24 and go-libp2p 0.36.5</a></li>
</ul>
</li>
<li><a href="https://github.com/ipfs/kubo/blob/HEAD/#-changelog ">📝
Changelog</a></li>
<li><a
href="https://github.com/ipfs/kubo/blob/HEAD/#-contributors ">👨👩👧👦
Contributors</a></li>
</ul>
<p><!-- raw HTML omitted --><!-- raw HTML omitted --><!-- raw HTML
omitted --></p>
<p>This release was brought to you by the <a
href="http://ipshipyard.com/ ">Shipyard</a> team.</p>
<h3>Overview</h3>
<p>Release v0.31.0 issue <a
href="https://redirect.github.com/ipfs/kubo/issues/10499 ">#10499</a></p>
<h3>🗣 Discuss</h3>
<p>If you have comments, questions, or feedback on this release, please
post <a
href="https://discuss.ipfs.tech/t/kubo-v0-31-0-is-out/18611/1 ">here</a>.</p>
<p>If you experienced any bugs with the release, please <a
href="https://github.com/ipfs/kubo/issues/new/choose ">post an
issue</a>.</p>
<h3>🔦 Highlights</h3>
<h4>Experimental Pebble Datastore</h4>
<blockquote>
<!-- raw HTML omitted -->
<p><em>Pebble visits Kubo</em></p>
</blockquote>
<p><a
href="https://github.com/ipfs/kubo/blob/master/docs/config.md#pebbleds-profile ">Pebble</a>
provides a high-performance alternative to leveldb as the datastore, and
provides a modern replacement for <a
href="https://github.com/ipfs/kubo/blob/master/docs/config.md#badgerds-profile ">legacy
badgerv1</a>.</p>
<p>A fresh Kubo node can be initialized with <a
href="https://github.com/ipfs/kubo/blob/master/docs/config.md#pebbleds-profile "><code>pebbleds</code>
profile</a> via <code>ipfs init --profile pebbleds</code>.</p>
<p>There are a number of parameters available for tuning pebble's
performance to your specific needs. Default values are used for any
parameters that are not configured or are set to their zero-value.
For a description of the available tuning parameters, see <a
href="https://github.com/ipfs/kubo/blob/master/docs/datastores.md#pebbleds ">kubo/docs/datastores.md#pebbleds</a>.</p>
<h4>New metrics</h4>
<ul>
<li>Added 3 new go metrics: <code>go_gc_gogc_percent</code>,
<code>go_gc_gomemlimit_bytes</code> and
<code>go_sched_gomaxprocs_threads</code> as those are <a
href="https://redirect.github.com/prometheus/client_golang/pull/1559 ">recommended
by the Go team</a></li>
<li>Added <a
href="https://redirect.github.com/prometheus/client_golang/pull/1555 ">network
usage metrics</a>: <code>process_network_receive_bytes_total</code> and
<code>process_network_transmit_bytes_total</code></li>
<li>Removed <code>go_memstat_lookups_total</code> metric <a
href="https://redirect.github.com/prometheus/client_golang/pull/1577 ">which
was always 0</a></li>
</ul>
<h4><code>lowpower</code> profile no longer breaks DHT
announcements</h4>
<p>We've notices users were applying <code>lowpower</code> profile, and
then reporting content routing issues. This was because
<code>lowpower</code> disabled reprovider system and locally hosted data
was no longer announced on Amino DHT.</p>
<p>This release changes <a
href="https://github.com/ipfs/kubo/blob/master/docs/config.md#lowpower-profile "><code>lowpower</code>
profile</a> to not change reprovider settings, ensuring the new users
are not sabotaging themselves. It also adds <a
href="https://github.com/ipfs/kubo/blob/master/docs/config.md#announce-on-profile "><code>annouce-on</code></a>
and <a
href="https://github.com/ipfs/kubo/blob/master/docs/config.md#announce-off-profile "><code>announce-off</code></a>
profiles for controlling announcement settings separately.</p>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="5a32936f78https://redirect.github.com/ipfs/kubo/issues/10535 ">#10535</a>
from ipfs/release-v0.31.0</li>
<li><a
href="4aebe7f27b8135adc853bd9e154818598545171chttps://redirect.github.com/ipfs/kubo/issues/10540 ">#10540</a>)</li>
<li><a
href="6b3cd0d14f38ae2e73b2https://redirect.github.com/ipfs/kubo/issues/10538 ">#10538</a>)</li>
<li><a
href="a55215c5c152ca370759https://redirect.github.com/ipfs/kubo/issues/10534 ">#10534</a>)</li>
<li><a
href="6305932b4ehttps://redirect.github.com/ipfs/kubo/issues/10520 ">#10520</a>)</li>
<li>Additional commits viewable in <a
href="https://github.com/ipfs/kubo/compare/v0.29.0...v0.31.0 ">compare
view</a></li>
</ul>
</details>
<br />
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores )
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
<details>
<summary>Dependabot commands and options</summary>
<br />
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
</details>
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-21 12:00:00 -04:00
github-actions[bot]
c89d3dd542
bump: version 0.5.12 → 0.5.13
2024-10-21 15:35:28 +00:00
a9caac47d7
Merge branch 'develop' into feature/1110-implement-dwn-wallet-abstraction
2024-10-21 11:31:28 -04:00
311b957550
feature/1118 formatter interface creation ( #1147 )
...
- **refactor: improve query service code structure**
- **chore(deps): update protoc-gen-go-grpc to v1.5.1**
- **refactor: replace package with**
- **chore(deps): update dependencies**
- **fix(deps): update webauthn to v0.11.2**
- **refactor: remove onsonr.sonr from package names**
- **refactor: improve code readability in vault querier**
- **refactor: simplify controller initialization**
- **fix: remove unnecessary function for counter data**
- **refactor: update button component file paths**
- **refactor(authentication): simplify register page**
- **fix: update error filenames in marketing section templates**
2024-10-21 11:30:52 -04:00
3ad6036eb8
refactor: update gRPC client to use new request types
2024-10-18 15:10:09 -04:00
a0a5f0c7e0
refactor: use RawPublicKey instead of PublicKey in macaroon issuer
2024-10-18 14:09:16 -04:00
6da6f2b97b
feat: add custom secp256k1 pubkey
2024-10-18 13:45:57 -04:00
a7df1415d2
refactor: improve error handling in DID module
2024-10-18 13:36:29 -04:00
381a09d87e
Merge branch 'develop' into feature/1110-implement-dwn-wallet-abstraction
2024-10-18 13:18:32 -04:00
github-actions[bot]
c4aebe4ac3
bump: version 0.5.11 → 0.5.12
2024-10-18 17:18:09 +00:00
08e28b0a5f
docs: Add README for protobuf directory
2024-10-18 13:18:00 -04:00
cc6f4e6931
fix(version): revert version bump to 0.5.11
2024-10-18 13:17:04 -04:00
08c946547e
refactor: remove dependency on proto change detection
2024-10-18 13:14:48 -04:00
64297772e4
fix(version): update version to 0.5.12
2024-10-18 13:12:55 -04:00
e1ad117473
refactor: update asset publishing configuration
2024-10-18 13:08:53 -04:00
2cd44c0b66
feature/1125 offload sync service worker ( #1144 )
...
- **feat: provide access to block time**
- **refactor: move block expiry calculation to helper function**
- **feat: register decentralized web node HTMX views**
- **feat: Reorganize methods in layout.templ file alphabetically**
- **feat: add support for layout variants**
- **feat: update Allocate RPC to use GET request with path parameters**
- **feat: add gRPC Gateway endpoint for Allocate**
- **refactor: rename SyncCurrent to Sync**
- **feat: improve code organization by making vault assembly private**
- **feat: add a new method for syncing DID documents**
2024-10-18 13:07:52 -04:00
github-actions[bot]
c2f7a53017
bump: version 0.5.12 → 0.6.0
2024-10-15 18:36:09 +00:00
b6c49828ed
feature/1111 sync chain dwn endpoint ( #1143 )
...
- **feat(did): add assertion type to DID spec**
- **refactor: update build process to include assets generation**
- **refactor: update import paths for to**
- **feat: introduce new authentication state management**
- **feat: add current account route**
- **feat: implement global toasts with custom HTML**
- **refactor: remove unused session code**
- **feat: add config.json to embedded assets**
- **refactor: remove unused dependency on gorilla/sessions**
- **refactor: simplify session management and remove unnecessary
fields**
- **fix: remove unnecessary import for unused protobuf types**
- **feat: introduce separate HTTP contexts for Highway and DWN**
- **fix(keeper): Handle missing controller during initial sync**
- **refactor: extract DWN configuration from DWNContext**
- **feat: add view route**
- **fix: update configuration file name in embed.go**
- **feat: improve vaultindex page loading experience**
- **feat(hway): add highway context to echo context**
- **chore(deps): bump onsonr/crypto from 1.32.0 to 1.33.0**
- **refactor: rename DWNSessionMiddleware to WebNodeSessionMiddleware**
- **feat: rename client API to web node API**
- **refactor: separate API and view routes**
- **refactor: remove unused build targets in Makefile**
- **feat: add Devbox integration to container**
- **feat: add wasm support for dwn**
- **refactor: update module proto import**
- **feat: add default first and third party caveats**
- **feat: Add target vault allocation mechanism**
- **refactor: introduce standardized session cookie handling**
- **fix: update service worker installation and ready states**
- **feat: add worker handlers**
- **feat: Enable SSH access to devcontainer**
- **refactor: rename HighwayContext to HwayContext**
- **feat: add block expiration calculation to sonr context**
- **feat: remove config from cookie and header**
- **feat(gen): Remove generated code for IPFS, Motr and Sonr**
- **refactor: remove unused createMotrConfig function**
- **feat: add project analytics with Repobeats**
- **docs: Remove component details from README**
- **refactor: rename SetConfig to injectConfig**
2024-10-15 14:31:19 -04:00
104df074e9
feat: add User-Agent and Platform to session
2024-10-12 12:52:20 -04:00
58aa71997d
feat: introduce AuthState enum for authentication state
2024-10-11 19:03:14 -04:00
github-actions[bot]
9a3c8e000b
bump: version 0.5.11 → 0.5.12
2024-10-11 20:55:30 +00:00
3790e926de
feature/1109 grpc session model ( #1141 )
...
- **feat: remove Hway deployment**
- **feat: introduce session middleware for requests**
- **refactor: update path imports to use new pkg folder**
- **feat: add gRPC client for interacting with services**
- **feat: remove grpc client and use REST api**
- **refactor: move from to**
- **feat: add client views endpoint**
- **feat: add webauthn support**
- **closes: #1124**
- **refactor: Improve PR labeler configuration**
- **feat: add milestone discussion template**
- **feat: remove OKR tracking issue template**
- **feat: use gorilla sessions for session management**
- **refactor: move pubkey related code to**
- **<no value>**
- **refactor: remove unused identifier type**
- **feat: integrate Macaroon Keeper with Service Module**
- **refactor: rename worker routes for clarity**
2024-10-11 16:47:52 -04:00
github-actions[bot]
1d569d35b4
bump: version 0.5.10 → 0.5.11
2024-10-10 17:52:37 +00:00
4e8db8d3d4
refactor: remove unnecessary branch configuration from scheduled release workflow
2024-10-10 13:47:52 -04:00
02f161f76c
fix: Correct source directory for asset publishing
2024-10-10 13:47:31 -04:00
c17bdebffd
Merge branch 'develop'
2024-10-10 13:45:50 -04:00
279ab6e5e3
feature/1129 integrate webauthn controller ( #1135 )
...
* **refactor: remove nebula static file serving**
* **feat: Add login, register, and authorize sections**
* **feat: implement registration form UI**
* **refactor: abstract template rendering to ctx module**
* **feat: add deployment target for Highway gateway**
* **feat: migrate Highway gateway to Cloudflare Workers**
* **feat: refactor nebula routes to components**
* **chore(deps): remove unused dependencies**
* **chore(deps): remove unused dependencies**
* **feat: add user and relaying party entities**
* **refactor: remove unused imports**
*
* **feat: add motion scale-in and opacity-in animations**
* **refactor: move dwn and orm packages to internal**
* **refactor: update imports to use relative paths**
* **refactor: rename build targets for clarity**
* **feat: add RelayingPartyEntity model**
* **refactor: rename creds templates to credentials**
* **refactor: remove unused entity model**
* **refactor: move models to internal package**
* **refactor: move models package to internal/orm**
* **feat: implement broadcast channel context**
* **feat: remove config upload step**
* **feat: remove unused configuration files**
* **feat: migrate authentication logic to workers**
* **feat: remove cloudflared dependency**
* **refactor: move client related routes to 'routes/client.go'**
* **feat: implement macaroon middleware**
* **refactor: move fetch package to cmd/motr**
* **feat: remove auth and grant endpoints**
* **docs: add conceptual descriptions to did module**
<sub><a
href="https://huly.app/guest/sonrhq?token=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJsaW5rSWQiOiI2NzA4MTIyNmM3ZDZhNTZhOGY4ZGFjOTciLCJndWVzdCI6InRydWUiLCJlbWFpbCI6IiNndWVzdEBoYy5lbmdpbmVlcmluZyIsIndvcmtzcGFjZSI6InctcHJhZC1zb25yaHEtNjVlZjcyZDQtY2UyOGQ0ODJjNi00ZWY4ZDAifQ.j-w5jk5Ji-0vCkaxVaK8pDMIOhRsXmG7o6oZictoHYE ">Huly®:
<b>ENG-1057</b></a></sub>
2024-10-10 13:44:17 -04:00
0a16e41c78
refactor: update dwn configuration generation import path
2024-10-09 14:20:02 -04:00
45c4e0c850
refactor: use nebula/routes instead of nebula/global
2024-10-09 14:19:41 -04:00
32563a551d
refactor: move index template to routes package
2024-10-09 14:18:50 -04:00
a824c23022
refactor: remove cdn package and move assets to global styles
2024-10-09 14:16:53 -04:00
58a02be5cf
feat: nebula assets served from CDN
2024-10-09 14:15:05 -04:00
5df9d4a3e5
refactor: move nebula assets to hway build directory
2024-10-09 00:37:50 -04:00
a3edb65613
feat: use CDN for nebula frontend assets
2024-10-08 21:55:01 -04:00
3637f27369
feat: add static hero section content to homepage
2024-10-08 21:06:24 -04:00
8811f56559
feat: add wrangler scripts for development, build, and deployment
2024-10-08 19:22:44 -04:00
e1db07cc25
feat: remove build configuration
2024-10-08 18:15:37 -04:00
e928ce22b4
refactor: remove docker build and deployment
2024-10-08 17:32:49 -04:00
2970497683
feat: move gateway web code to dedicated directory
2024-10-08 17:26:01 -04:00
25cddbada6
refactor: rename internal/session package to internal/ctx
2024-10-08 17:22:14 -04:00
35348fef6a
refactor: remove unused fields from
2024-10-08 17:13:22 -04:00
f6879f1c12
feat: add PubKey fast reflection
2024-10-08 16:43:59 -04:00
c3e8fcc3d3
feat(macaroon): add transaction allowlist/denylist caveats
2024-10-08 16:26:21 -04:00
8ac1ccaa34
feat: add PR labeler
2024-10-08 13:17:41 -04:00
a7d604555a
refactor: rename PR_TEMPLATE to PULL_REQUEST_TEMPLATE
2024-10-08 12:27:05 -04:00
8bc356774a
docs: remove unnecessary information from PR template
2024-10-08 12:25:30 -04:00
1dfba6ffbb
docs: add PR templates for closed issues and community contributions
2024-10-08 11:59:48 -04:00
e4c8997bf3
Merge branch 'develop' into feature/1129-integrate-webauthn-controller
2024-10-08 11:53:35 -04:00
