Skip to content
This repository has been archived by the owner on Feb 20, 2025. It is now read-only.

chore(deps): bump github.com/distribution/distribution/v3 from 3.0.0-20230327091844-0c958010ace2 to 3.0.0-rc.2 #188

Closed
wants to merge 2 commits into from
Closed

chore(deps): bump github.com/distribution/distribution/v3 from 3.0.0-20230327091844-0c958010ace2 to 3.0.0-rc.2 #188

wants to merge 2 commits into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 2, 2025

Bumps github.com/distribution/distribution/v3 from 3.0.0-20230327091844-0c958010ace2 to 3.0.0-rc.2.

Release notes

Sourced from github.com/distribution/distribution/v3's releases.

v3.0.0-rc.2

Welcome to the v3.0.0-rc.2 release of registry!

This is the second release candidate of registry!

See the changelog below for a full list of changes.

Notable changes

What's Changed

New Contributors

Full Changelog: distribution/distribution@v3.0.0-rc.1...v3.0.0-rc.2

v3.0.0-rc.1

Welcome to the v3.0.0-rc.1 release of registry!

This is the the first release candidate of registry!

See the changelog below for full list of changes.

Deprecated

  • ManifestBuilder interface 3886
  • Versioned in favor of oci.Versioned 3887

Notable Changes

  • Attempt HeadObject on Stat call first before failing over to List in S3 driver 4401
  • Use a consistent multipart chunk size in S3 driver 4424
  • Build artifacts and images for linux/riscv64 4444
  • Fix token verification chain in auth 4415
  • Support custom exec-based credential helper in proxy mode distribution/distribution#4438

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump github.com/distribution/distribution/v3
366220b 
Bumps [github.com/distribution/distribution/v3](https://github.com/distribution/distribution) from 3.0.0-20230327091844-0c958010ace2 to 3.0.0-rc.2.
- [Release notes](https://github.com/distribution/distribution/releases)
- [Commits](https://github.com/distribution/distribution/commits/v3.0.0-rc.2)

---
updated-dependencies:
- dependency-name: github.com/distribution/distribution/v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot requested a review from a team as a code owner February 2, 2025 16:57
@dependabot dependabot bot added kind/chore chore, maintenance, etc. kind/dependency dependency update, etc. labels Feb 2, 2025
@github-actions GitHub Actions
Copy link

github-actions bot commented Feb 2, 2025
edited
Loading

Mend Scan Summary: ❌

Repository: open-component-model/replication-controller

VIOLATION DESCRIPTION NUMBER OF VIOLATIONS
HIGH/CRITICAL SECURITY VULNERABILITIES 7
MAJOR UPDATES AVAILABLE 0
LICENSE REQUIRES REVIEW 1
LICENSE RISK HIGH 7
RESTRICTIED LICENSE FOR ON-PREMISE DELIVERY 0

Detailed Logs: mend-scan-> Generate Report
Mend UI

@hilmarf hilmarf enabled auto-merge (squash) February 6, 2025 14:40
@hilmarf hilmarf closed this Feb 10, 2025
auto-merge was automatically disabled February 10, 2025 15:19

Pull request was closed

@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 10, 2025

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

@dependabot dependabot bot deleted the dependabot/go_modules/github.com/distribution/distribution/v3-3.0.0-rc.2 branch February 10, 2025 15:19
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@hilmarf hilmarf hilmarf approved these changes

Assignees
No one assigned
Labels
kind/chore chore, maintenance, etc. kind/dependency dependency update, etc.
Projects
OCM Backlog Board
Status: 🍺 Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@hilmarf