Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

chore(deps): bump github.com/github/go-spdx/v2 from 2.3.1 to 2.3.2 #3254

Merged
merged 1 commit into from
Sep 20, 2024
Merged

chore(deps): bump github.com/github/go-spdx/v2 from 2.3.1 to 2.3.2 #3254

merged 1 commit into from
Sep 20, 2024

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 19, 2024

Bumps github.com/github/go-spdx/v2 from 2.3.1 to 2.3.2.

Release notes

Sourced from github.com/github/go-spdx/v2's releases.

Update SPDX identifiers as of 2024-09-18

The only shipped change in this release is an update to the known SPDX identifiers, current as of 2024-09-18.

Commits
  • e6a9114 Merge pull request #87 from github/dependabot/github_actions/peter-evans/crea...
  • ba72767 Bump peter-evans/create-pull-request from 6 to 7
  • 8272f7e Merge pull request #84 from github/dependabot/github_actions/golangci/golangc...
  • 1061b44 Merge branch 'main' into dependabot/github_actions/golangci/golangci-lint-act...
  • 07351af Merge pull request #83 from github/auto-update-licenses
  • 7a62faa Add updated license files
  • 36bbc9c Bump golangci/golangci-lint-action from 6.0.1 to 6.1.0
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump github.com/github/go-spdx/v2 from 2.3.1 to 2.3.2
52ae3f7 
Bumps [github.com/github/go-spdx/v2](https://github.com/github/go-spdx) from 2.3.1 to 2.3.2.
- [Release notes](https://github.com/github/go-spdx/releases)
- [Commits](github/go-spdx@v2.3.1...v2.3.2)

---
updated-dependencies:
- dependency-name: github.com/github/go-spdx/v2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Involves changes to go.mod go.sum label Sep 19, 2024
@spiffcs spiffcs merged commit 60bbd24 into main Sep 20, 2024
12 checks passed
@spiffcs spiffcs deleted the dependabot/go_modules/github.com/github/go-spdx/v2-2.3.2 branch September 20, 2024 14:50
spiffcs added a commit that referenced this pull request Oct 2, 2024
@spiffcs
Merge branch 'main' into fix-cpe-validation
7a6ea44 
* main: (343 commits)
  feat: update haproxy classifier (#3277)
  chore(deps): update tools to latest versions (#3291)
  fix: don't use builtin scanner in licensecheck (#3290)
  chore(deps): update CPE dictionary index (#3288)
  chore(deps): bump github/codeql-action from 3.26.9 to 3.26.10 (#3289)
  update redis classifier (#3281)
  fix: improve node classifier version matching (#3284)
  fix: update ruby classifier for -rc, -dev, etc. versions (#3285)
  chore(deps): update CPE dictionary index (#3262)
  chore(deps): bump github.com/docker/docker (#3264)
  chore(deps): bump github/codeql-action from 3.26.8 to 3.26.9 (#3275)
  chore(deps): update stereoscope to dc10ea61fd18efa45b516eda4de8bc19d8322429 (#3280)
  chore(deps): bump actions/checkout from 4.1.7 to 4.2.0 (#3283)
  add awaiting response management (#3272)
  fix: correct excluded mount point comparison to file paths (#3269)
  Add JVM cataloger (#3217)
  feat: classifier for Dart lang binaries (#3265)
  Add compliance policy for empty name and version (#3257)
  chore(deps): bump github.com/github/go-spdx/v2 from 2.3.1 to 2.3.2 (#3254)
  chore(deps): bump peter-evans/create-pull-request from 7.0.3 to 7.0.5 (#3255)
  ...
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees
No one assigned
Labels
dependencies Involves changes to go.mod go.sum
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@spiffcs