Skip to content

build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.4 to 3.5.5#2666

Merged
dependabot[bot] merged 1 commit into
masterfrom
dependabot/go_modules/go.etcd.io/etcd/client/v3-3.5.5
Sep 28, 2022
Merged

build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.4 to 3.5.5#2666
dependabot[bot] merged 1 commit into
masterfrom
dependabot/go_modules/go.etcd.io/etcd/client/v3-3.5.5

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Sep 16, 2022
edited
Loading

Bumps go.etcd.io/etcd/client/v3 from 3.5.4 to 3.5.5.

Release notes

Sourced from go.etcd.io/etcd/client/v3's releases.

v3.5.5

Please check out CHANGELOG for a full list of changes. And make sure to read upgrade guide before upgrading etcd (there may be breaking changes).

For installation guides, please check out play.etcd.io and operating etcd. Latest support status for common architectures and operating systems can be found at supported platforms.

Linux
ETCD_VER=v3.5.5
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-linux-amd64.tar.gz -o /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
tar xzvf /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz -C /tmp/etcd-download-test --strip-components=1
rm -f /tmp/etcd-${ETCD_VER}-linux-amd64.tar.gz
/tmp/etcd-download-test/etcd --version
/tmp/etcd-download-test/etcdctl version

# start a local etcd server
/tmp/etcd-download-test/etcd
write,read to etcd
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 put foo bar
/tmp/etcd-download-test/etcdctl --endpoints=localhost:2379 get foo

macOS (Darwin)
ETCD_VER=v3.5.5
choose either URL
GOOGLE_URL=https://storage.googleapis.com/etcd
GITHUB_URL=https://github.com/etcd-io/etcd/releases/download
DOWNLOAD_URL=${GOOGLE_URL}
rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
rm -rf /tmp/etcd-download-test && mkdir -p /tmp/etcd-download-test
curl -L ${DOWNLOAD_URL}/${ETCD_VER}/etcd-${ETCD_VER}-darwin-amd64.zip -o /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
unzip /tmp/etcd-${ETCD_VER}-darwin-amd64.zip -d /tmp && rm -f /tmp/etcd-${ETCD_VER}-darwin-amd64.zip
</tr></table>

... (truncated)

Commits
  • 19002cf version: bump up to 3.5.5
  • 2ba1bab Merge pull request #14454 from ahrtr/fix_TestV3AuthRestartMember_20220913_3.5
  • 2f1171f fix the flaky test fix_TestV3AuthRestartMember_20220913 for 3.5
  • 6c26693 Merge pull request #14178 from lavacat/release-3.5-txn-panic
  • 646ba66 Merge pull request #14434 from tjungblu/bz_1918413_3.5
  • 243b7a1 etcdctl: fix move-leader for multiple endpoints
  • 16d72c0 Merge pull request #14440 from vsvastey/usr/vsvastey/open-with-max-index-test...
  • eef5e22 testing: fix TestOpenWithMaxIndex cleanup
  • a5a33cb Merge pull request #14436 from serathius/arm64
  • bb3fae4 Merge pull request #14409 from vivekpatani/release-3.5
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.4 to 3.5.5
97d3766 
Bumps [go.etcd.io/etcd/client/v3](https://github.com/etcd-io/etcd) from 3.5.4 to 3.5.5.
- [Release notes](https://github.com/etcd-io/etcd/releases)
- [Changelog](https://github.com/etcd-io/etcd/blob/main/Dockerfile-release.amd64)
- [Commits](etcd-io/etcd@v3.5.4...v3.5.5)

---
updated-dependencies:
- dependency-name: go.etcd.io/etcd/client/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/go.etcd.io/etcd/client/v3-3.5.5 branch from 980ff69 to 97d3766 Compare September 23, 2022 21:05
sagikazarmark
sagikazarmark approved these changes Sep 28, 2022
View reviewed changes
Copy link
Copy Markdown
Member

@sagikazarmark sagikazarmark left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dependabot merge

@dependabot dependabot Bot merged commit 2a8c7d7 into master Sep 28, 2022
@dependabot dependabot Bot deleted the dependabot/go_modules/go.etcd.io/etcd/client/v3-3.5.5 branch September 28, 2022 14:14
@sagikazarmark sagikazarmark added this to the v2.35.0 milestone Sep 28, 2022
xtremerui pushed a commit to concourse/dex that referenced this pull request Oct 3, 2022
upstream dex release: v2.35.0
4712fe9 
**⚠️ This release fixes a [major vulnerability](GHSA-vh7g-p26c-j2cw) in Dex. We advise everyone to upgrade as soon as possible! ⚠️**

The official container image for this release can be pulled from
```
ghcr.io/dexidp/dex:v2.35.0
```

<!-- Release notes generated using configuration in .github/release.yml at v2.35.0 -->

## What's Changed
### Enhancements 🚀
* Reduce HTTP client creations in the Keystone connector by @erwinvaneyk in dexidp#2659
### Bug Fixes 🐛
* fix for issue 2670; check for no serviceAccountFilePath and no email by @bobcallaway in dexidp#2679
* supply HMACKey in test case by @bobcallaway in dexidp#2683
* fix: refresh token only once for all concurrent requests by @nabokihms in dexidp#2692
### Dependency Updates ⬆️
* build(deps): bump google.golang.org/api from 0.95.0 to 0.97.0 by @dependabot in dexidp#2677
* build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.4 to 3.5.5 by @dependabot in dexidp#2666
* build(deps): bump google.golang.org/api from 0.97.0 to 0.98.0 by @dependabot in dexidp#2682
* build(deps): bump helm/kind-action from 1.3.0 to 1.4.0 by @dependabot in dexidp#2681
* build(deps): bump entgo.io/ent from 0.11.2 to 0.11.3 by @dependabot in dexidp#2684
* Update golang.org/x packages by @sagikazarmark in dexidp#2688

## New Contributors
* @jannfis made their first contribution in dexidp#2691

**Full Changelog**: dexidp/dex@v2.34.0...v2.35.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sagikazarmark sagikazarmark sagikazarmark approved these changes

Assignees

No one assigned

Labels

area/dependencies

Projects

None yet

Milestone

v2.35.0

Development

Successfully merging this pull request may close these issues.

1 participant

@sagikazarmark