tobru
/
gitops-zurrli
1
1
Fork 0
Code Issues 1 Pull Requests 10 Activity

Update ghcr.io/dexidp/dex Docker tag to v2.39.0 #593

Closed
renovate-bot wants to merge 1 commits from renovate/ghcr.io-dexidp-dex-2.x into main
pull from: renovate/ghcr.io-dexidp-dex-2.x
merge into: tobru:main
Conversation 1 Commits 1 Files Changed 1 +1 -1
renovate-bot commented 2024-03-23 18:45:34 +00:00
Collaborator
Copy Link

This PR contains the following updates:

Package Update Change
ghcr.io/dexidp/dex minor v2.37.0 -> v2.39.0

Release Notes

dexidp/dex (ghcr.io/dexidp/dex)

v2.39.0

Compare Source

The official container image for this release can be pulled from

ghcr.io/dexidp/dex:v2.39.0

Know before update

!WARNING]
The validation of username and password in the LDAP connector is much more strict now.
As of today, Dex uses the [`EscapeFilter`](https://pkg.go.dev/gopkg.in/ldap.v1#EscapeFilter) function to check for special characters in credentials and prevent injections by denying such requests.

the special characters in the set ()*\ and those out of the range 0 < c < 0x80, as defined in RFC4515

What's Changed

Enhancements 🚀
Bug Fixes 🐛
Dependency Updates ⬆️

New Contributors

Full Changelog: https://github.com/dexidp/dex/compare/v2.38.0...v2.39.0

v2.38.0

Compare Source

The official container image for this release can be pulled from

ghcr.io/dexidp/dex:v2.38.0

What's Changed

Exciting New Features 🎉
Enhancements 🚀
Bug Fixes 🐛
Dependency Updates ⬆️
Other Changes

New Contributors

Full Changelog: https://github.com/dexidp/dex/compare/v2.37.0...v2.38.0

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [ghcr.io/dexidp/dex](https://github.com/dexidp/dex) | minor | `v2.37.0` -> `v2.39.0` | --- ### Release Notes <details> <summary>dexidp/dex (ghcr.io/dexidp/dex)</summary> ### [`v2.39.0`](https://github.com/dexidp/dex/releases/tag/v2.39.0) [Compare Source](https://github.com/dexidp/dex/compare/v2.38.0...v2.39.0) The official container image for this release can be pulled from ghcr.io/dexidp/dex:v2.39.0 #### Know before update > \[!WARNING] > The validation of username and password in the LDAP connector is much more strict now. > As of today, Dex uses the [`EscapeFilter`](https://pkg.go.dev/gopkg.in/ldap.v1#EscapeFilter) function to check for special characters in credentials and prevent injections by denying such requests. > the special characters in the set `()*\` and those out of the range 0 < c < 0x80, as defined in RFC4515 <!-- Release notes generated using configuration in .github/release.yml at master --> #### What's Changed ##### Enhancements 🚀 - Also set the username in authproxy connector by [@&#8203;ppacher](https://github.com/ppacher) in https://github.com/dexidp/dex/pull/3307 - Log failed login attempt by [@&#8203;i-amelia](https://github.com/i-amelia) in https://github.com/dexidp/dex/pull/2454 - Update ent by [@&#8203;sagikazarmark](https://github.com/sagikazarmark) in https://github.com/dexidp/dex/pull/3379 - Add sanitizer to LDAP account and password by [@&#8203;hsinhoyeh](https://github.com/hsinhoyeh) in https://github.com/dexidp/dex/pull/3372 - Add headers control to Dex web server by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3339 - OIDC connector: Allow specifying empty prompt type by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3373 - Set read-only permissions to the check job by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3415 ##### Bug Fixes 🐛 - Use the correct token type for userInfo requests while Token Exchange by [@&#8203;MrDeerly](https://github.com/MrDeerly) in https://github.com/dexidp/dex/pull/3336 - Do not evaluate skipApproval on the approval page by [@&#8203;MM53](https://github.com/MM53) in https://github.com/dexidp/dex/pull/3086 ##### Dependency Updates ⬆️ - build(deps): bump anchore/sbom-action from 0.15.5 to 0.15.6 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3314 - build(deps): bump github.com/mattn/go-sqlite3 from 1.14.19 to 1.14.22 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3328 - build(deps): bump github/codeql-action from 3.23.1 to 3.24.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3327 - build(deps): bump anchore/sbom-action from 0.15.6 to 0.15.8 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3325 - build(deps): bump go.etcd.io/etcd/client/pkg/v3 from 3.5.11 to 3.5.12 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3323 - build(deps): bump google.golang.org/api from 0.157.0 to 0.161.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3317 - build(deps): bump alpine from 3.19.0 to 3.19.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3311 - build(deps): bump golang from `3bd4475` to `3354c3a` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3310 - build(deps): bump mheap/github-action-required-labels from 5.1.0 to 5.2.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3308 - build(deps): bump sigstore/cosign-installer from 3.2.0 to 3.4.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3324 - build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.11 to 3.5.12 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3321 - build(deps): bump golang.org/x/oauth2 from 0.16.0 to 0.17.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3340 - build(deps): bump tonistiigi/xx from 1.3.0 to 1.4.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3333 - build(deps): bump golang.org/x/oauth2 from 0.16.0 to 0.17.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3341 - build(deps): bump google.golang.org/grpc from 1.61.0 to 1.61.1 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3352 - build(deps): bump distroless/static from `9be3fcc` to `a43abc8` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3350 - build(deps): bump aquasecurity/trivy-action from 0.16.1 to 0.17.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3332 - build(deps): bump docker/metadata-action from 5.5.0 to 5.5.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3330 - build(deps): bump mheap/github-action-required-labels from 5.2.0 to 5.3.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3347 - build(deps): bump helm/kind-action from 1.8.0 to 1.9.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3345 - build(deps): bump github/codeql-action from 3.24.0 to 3.24.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3360 - build(deps): bump google.golang.org/api from 0.161.0 to 0.165.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3355 - build(deps): bump actions/dependency-review-action from 4.0.0 to 4.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3359 - build(deps): bump golang.org/x/crypto from 0.19.0 to 0.20.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3377 - build(deps): bump google.golang.org/api from 0.165.0 to 0.167.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3376 - build(deps): bump github/codeql-action from 3.24.3 to 3.24.5 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3375 - build(deps): bump distroless/static from `a43abc8` to `072d78b` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3374 - build(deps): bump google.golang.org/grpc from 1.61.1 to 1.62.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3368 - build(deps): bump actions/dependency-review-action from 4.1.0 to 4.1.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3363 - build(deps): bump haya14busa/action-cond from 1.1.1 to 1.2.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3346 - build(deps): bump golang from 1.21.6-alpine3.18 to 1.22.0-alpine3.18 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3334 - build(deps): bump google.golang.org/grpc from 1.61.0 to 1.62.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3367 - build(deps): bump google.golang.org/grpc from 1.61.0 to 1.62.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3365 - build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3405 - build(deps): bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3380 - build(deps): bump golang from 1.22.0-alpine3.18 to 1.22.1-alpine3.18 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3398 - build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.1 to 3.0.3 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3406 - build(deps): bump google.golang.org/api from 0.167.0 to 0.169.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3407 - Update jose by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3409 - build(deps): bump distroless/static from `072d78b` to `9235ad9` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3381 - build(deps): bump docker/setup-buildx-action from 3.0.0 to 3.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3382 - build(deps): bump aquasecurity/trivy-action from 0.17.0 to 0.18.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3384 - build(deps): bump github/codeql-action from 3.24.5 to 3.24.6 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3386 - build(deps): bump anchore/sbom-action from 0.15.8 to 0.15.9 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3397 - build(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3393 - build(deps): bump golang.org/x/oauth2 from 0.17.0 to 0.18.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3394 - build(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3401 - build(deps): bump github.com/go-sql-driver/mysql from 1.7.1 to 1.8.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3414 - build(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3413 - build(deps): bump distroless/static from `9235ad9` to `7e5c6a2` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3410 - build(deps): bump docker/build-push-action from 5.1.0 to 5.2.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3411 - build(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3412 - build(deps): bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3389 - build(deps): bump actions/checkout from 4.1.1 to 4.1.2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3417 - build(deps): bump github/codeql-action from 3.24.6 to 3.24.8 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3422 - build(deps): bump google.golang.org/api from 0.169.0 to 0.171.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3426 - build(deps): bump docker/login-action from 3.0.0 to 3.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3418 - build(deps): bump github.com/coreos/go-oidc/v3 from 3.9.0 to 3.10.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3424 - build(deps): bump github.com/coreos/go-oidc/v3 from 3.9.0 to 3.10.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3425 - build(deps): bump docker/build-push-action from 5.2.0 to 5.3.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3420 - build(deps): bump golang from `010f3b3` to `ede158f` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3421 - build(deps): bump google.golang.org/grpc from 1.62.0 to 1.62.1 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3399 - build(deps): bump google.golang.org/protobuf from 1.32.0 to 1.33.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3400 #### New Contributors - [@&#8203;ppacher](https://github.com/ppacher) made their first contribution in https://github.com/dexidp/dex/pull/3307 - [@&#8203;MrDeerly](https://github.com/MrDeerly) made their first contribution in https://github.com/dexidp/dex/pull/3336 - [@&#8203;i-amelia](https://github.com/i-amelia) made their first contribution in https://github.com/dexidp/dex/pull/2454 - [@&#8203;hsinhoyeh](https://github.com/hsinhoyeh) made their first contribution in https://github.com/dexidp/dex/pull/3372 **Full Changelog**: https://github.com/dexidp/dex/compare/v2.38.0...v2.39.0 ### [`v2.38.0`](https://github.com/dexidp/dex/releases/tag/v2.38.0) [Compare Source](https://github.com/dexidp/dex/compare/v2.37.0...v2.38.0) The official container image for this release can be pulled from ghcr.io/dexidp/dex:v2.38.0 <!-- Release notes generated using configuration in .github/release.yml at v2.38.0 --> #### What's Changed ##### Exciting New Features 🎉 - RFC 8693 OAuth 2.0 Token Exchange by [@&#8203;seankhliao](https://github.com/seankhliao) in https://github.com/dexidp/dex/pull/2806 ##### Enhancements 🚀 - include granttypes in example config by [@&#8203;seankhliao](https://github.com/seankhliao) in https://github.com/dexidp/dex/pull/3027 - Add GetClient grpc service by [@&#8203;marcofranssen](https://github.com/marcofranssen) in https://github.com/dexidp/dex/pull/2972 - feat: Update response_types_supported to allow multiple-valued response type combinations by [@&#8203;Cedric-Magnan](https://github.com/Cedric-Magnan) in https://github.com/dexidp/dex/pull/2521 - verify access tokens by checking getuserinfo during a token exchange by [@&#8203;seankhliao](https://github.com/seankhliao) in https://github.com/dexidp/dex/pull/3031 - Store offline sessions only if they were requested by the user by [@&#8203;MM53](https://github.com/MM53) in https://github.com/dexidp/dex/pull/3125 - Minimalistic support for group filtering in oidc connector by [@&#8203;mdpradeep](https://github.com/mdpradeep) in https://github.com/dexidp/dex/pull/3074 - feat(connector/microsoft): support custom api and graph URLs by [@&#8203;sagikazarmark](https://github.com/sagikazarmark) in https://github.com/dexidp/dex/pull/3084 - Composite claims in OIDC connector by [@&#8203;Oded-B](https://github.com/Oded-B) in https://github.com/dexidp/dex/pull/3056 - Add support for extra claims to authproxy connector by [@&#8203;mkjpryor](https://github.com/mkjpryor) in https://github.com/dexidp/dex/pull/2851 - Add support for linux/s390x by [@&#8203;lysliu](https://github.com/lysliu) in https://github.com/dexidp/dex/pull/3189 - Override OIDC provider discovered claims by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3267 - Bump gomplate to v3.11.7 by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3293 - Introduce a dedicated pkg for featureflags by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3278 - Sign container images by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3269 - Add context to storage's Create endpoints by [@&#8203;PumpkinSeed](https://github.com/PumpkinSeed) in https://github.com/dexidp/dex/pull/2935 - feat: add TLS versions configuration by [@&#8203;tuminoid](https://github.com/tuminoid) in https://github.com/dexidp/dex/pull/3303 ##### Bug Fixes 🐛 - Fix etcd device requests by [@&#8203;MM53](https://github.com/MM53) in https://github.com/dexidp/dex/pull/3119 - Fix lint errors after merging AllowedHeaders feature by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3247 - Propagate Dex version from build args by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3276 ##### Dependency Updates ⬆️ - build(deps): bump golang.org/x/net from 0.11.0 to 0.12.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3036 - build(deps): bump google.golang.org/api from 0.129.0 to 0.130.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3034 - build(deps): bump golang.org/x/crypto from 0.10.0 to 0.11.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3035 - build(deps): bump helm/kind-action from 1.7.0 to 1.8.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3041 - build(deps): bump google.golang.org/api from 0.130.0 to 0.134.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3054 - build(deps): bump docker/setup-buildx-action from 2.8.0 to 2.9.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3043 - build(deps): bump github/codeql-action from 2.20.1 to 2.21.2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3057 - build(deps): bump google.golang.org/grpc from 1.56.1 to 1.57.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3055 - build(deps): bump google.golang.org/protobuf from 1.30.0 to 1.31.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3021 - build(deps): bump google.golang.org/grpc from 1.55.0 to 1.57.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3053 - build(deps): bump golang.org/x/net from 0.12.0 to 0.13.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3060 - build(deps): bump google.golang.org/api from 0.134.0 to 0.138.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3079 - build(deps): bump actions/dependency-review-action from 3.0.6 to 3.0.8 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3078 - build(deps): bump github/codeql-action from 2.21.2 to 2.21.4 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3076 - build(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3071 - build(deps): bump alpine from 3.18.2 to 3.18.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3069 - build(deps): bump aquasecurity/trivy-action from 0.11.2 to 0.12.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3090 - build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3099 - build(deps): bump docker/setup-buildx-action from 2.9.1 to 3.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3104 - build(deps): bump actions/checkout from 3.5.3 to 4.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3117 - build(deps): bump alpine from 3.18.3 to 3.18.4 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3130 - build(deps): bump github/codeql-action from 2.21.4 to 2.21.9 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3127 - build(deps): bump google.golang.org/api from 0.138.0 to 0.143.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3121 - build(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3116 - build(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.2 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3115 - build(deps): bump github.com/prometheus/client_golang from 1.16.0 to 1.17.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3132 - build(deps): bump github.com/go-ldap/ldap/v3 from 3.4.5 to 3.4.6 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3133 - build(deps): bump docker/login-action from 2.2.0 to 3.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3134 - build(deps): bump docker/build-push-action from 4.1.1 to 5.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3135 - build(deps): bump docker/metadata-action from 4.6.0 to 5.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3136 - build(deps): bump actions/dependency-review-action from 3.0.8 to 3.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3137 - build(deps): bump docker/setup-qemu-action from 2.2.0 to 3.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3138 - build(deps): bump google.golang.org/api from 0.143.0 to 0.147.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3152 - build(deps): bump google.golang.org/grpc from 1.58.2 to 1.58.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3155 - build(deps): bump ossf/scorecard-action from 2.2.0 to 2.3.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3154 - build(deps): bump github/codeql-action from 2.21.9 to 2.22.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3153 - build(deps): bump tonistiigi/xx from 1.2.1 to 1.3.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3161 - build(deps): bump actions/checkout from 4.1.0 to 4.1.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3159 - build(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3157 - build(deps): bump golang.org/x/net from 0.7.0 to 0.17.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3151 - build(deps): bump google.golang.org/api from 0.147.0 to 0.148.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3163 - build(deps): bump golang.org/x/net from 0.12.0 to 0.17.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3150 - Bump Go 1.21 by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3165 - build(deps): bump google.golang.org/grpc from 1.58.2 to 1.59.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3158 - Bump ent (v0.12.4) and example app dependencies by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3166 - build(deps): bump github.com/fsnotify/fsnotify from 1.6.0 to 1.7.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3167 - build(deps): bump github/codeql-action from 2.22.3 to 2.22.4 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3168 - build(deps): bump ossf/scorecard-action from 2.3.0 to 2.3.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3169 - build(deps): bump go.etcd.io/etcd/client/v3 from 3.5.9 to 3.5.11 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3216 - build(deps): bump golang from 1.21.3-alpine3.18 to 1.21.5-alpine3.18 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3213 - build(deps): bump github.com/gorilla/handlers from 1.5.1 to 1.5.2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3181 - build(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3182 - build(deps): bump docker/build-push-action from 5.0.0 to 5.1.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3198 - build(deps): bump anchore/sbom-action from 0.14.3 to 0.15.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3210 - build(deps): bump aquasecurity/trivy-action from 0.12.0 to 0.16.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3219 - build(deps): bump actions/dependency-review-action from 3.1.0 to 3.1.4 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3206 - Bump golangci-lint 1.55.2 by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3232 - build(deps): bump github.com/mattn/go-sqlite3 from 1.14.17 to 1.14.19 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3226 - build(deps): bump golang.org/x/crypto from 0.14.0 to 0.17.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3228 - build(deps): bump alpine from 3.18.4 to 3.19.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3214 - build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3201 - build(deps): bump golang.org/x/crypto from 0.14.0 to 0.17.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3229 - build(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3202 - build(deps): bump github/codeql-action from 2.22.4 to 3.22.12 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3231 - build(deps): bump google.golang.org/api from 0.148.0 to 0.154.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3223 - Patch gomplate to v3.11.6 by [@&#8203;gburton1](https://github.com/gburton1) in https://github.com/dexidp/dex/pull/3234 - build(deps): bump docker/metadata-action from 5.0.0 to 5.4.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3235 - build(deps): bump google.golang.org/grpc from 1.59.0 to 1.60.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3241 - build(deps): bump actions/setup-go from 4.1.0 to 5.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3236 - build(deps): bump github.com/gorilla/mux from 1.8.0 to 1.8.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3239 - build(deps): bump github.com/coreos/go-oidc/v3 from 3.7.0 to 3.9.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3238 - build(deps): bump github.com/prometheus/client_golang from 1.17.0 to 1.18.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3246 - Bump dependencies ent v0.12.5, protobuf v1.32.0 by [@&#8203;nabokihms](https://github.com/nabokihms) in https://github.com/dexidp/dex/pull/3249 - build(deps): bump actions/dependency-review-action from 3.1.4 to 3.1.5 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3256 - build(deps): bump google.golang.org/api from 0.154.0 to 0.155.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3257 - build(deps): bump anchore/sbom-action from 0.15.1 to 0.15.3 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3265 - build(deps): bump github.com/beevik/etree from 1.2.0 to 1.3.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3252 - build(deps): bump aquasecurity/trivy-action from 0.16.0 to 0.16.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3253 - build(deps): bump golang.org/x/crypto from 0.17.0 to 0.18.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3262 - build(deps): bump docker/metadata-action from 5.4.0 to 5.5.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3259 - build(deps): bump github/codeql-action from 3.22.12 to 3.23.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3264 - build(deps): bump golang.org/x/oauth2 from 0.15.0 to 0.16.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3263 - build(deps): bump golang from 1.21.5-alpine3.18 to 1.21.6-alpine3.18 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3266 - build(deps): bump google.golang.org/api from 0.155.0 to 0.156.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3270 - build(deps): bump github/codeql-action from 3.23.0 to 3.23.1 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3282 - build(deps): bump google.golang.org/api from 0.156.0 to 0.157.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3285 - build(deps): bump anchore/sbom-action from 0.15.3 to 0.15.4 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3286 - build(deps): bump actions/dependency-review-action from 3.1.5 to 4.0.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3287 - build(deps): bump anchore/sbom-action from 0.15.4 to 0.15.5 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3291 - build(deps): bump google.golang.org/grpc from 1.60.1 to 1.61.0 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3296 - build(deps): bump google.golang.org/grpc from 1.60.1 to 1.61.0 in /api/v2 by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3294 - build(deps): bump github.com/coreos/go-oidc/v3 from 3.7.0 to 3.9.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3298 - build(deps): bump google.golang.org/grpc from 1.59.0 to 1.61.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3300 - build(deps): bump golang from `869193e` to `3bd4475` by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3301 - build(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3299 - build(deps): bump golang.org/x/oauth2 from 0.13.0 to 0.16.0 in /examples by [@&#8203;dependabot](https://github.com/dependabot) in https://github.com/dexidp/dex/pull/3297 ##### Other Changes - feat: Add configurable CORS Headers by [@&#8203;josiah-lunit](https://github.com/josiah-lunit) in https://github.com/dexidp/dex/pull/3114 #### New Contributors - [@&#8203;Cedric-Magnan](https://github.com/Cedric-Magnan) made their first contribution in https://github.com/dexidp/dex/pull/2521 - [@&#8203;uucloud](https://github.com/uucloud) made their first contribution in https://github.com/dexidp/dex/pull/3087 - [@&#8203;MM53](https://github.com/MM53) made their first contribution in https://github.com/dexidp/dex/pull/3125 - [@&#8203;mdpradeep](https://github.com/mdpradeep) made their first contribution in https://github.com/dexidp/dex/pull/3074 - [@&#8203;Oded-B](https://github.com/Oded-B) made their first contribution in https://github.com/dexidp/dex/pull/3056 - [@&#8203;gburton1](https://github.com/gburton1) made their first contribution in https://github.com/dexidp/dex/pull/3234 - [@&#8203;josiah-lunit](https://github.com/josiah-lunit) made their first contribution in https://github.com/dexidp/dex/pull/3114 - [@&#8203;mkjpryor](https://github.com/mkjpryor) made their first contribution in https://github.com/dexidp/dex/pull/2851 - [@&#8203;lysliu](https://github.com/lysliu) made their first contribution in https://github.com/dexidp/dex/pull/3189 - [@&#8203;PumpkinSeed](https://github.com/PumpkinSeed) made their first contribution in https://github.com/dexidp/dex/pull/2935 - [@&#8203;tuminoid](https://github.com/tuminoid) made their first contribution in https://github.com/dexidp/dex/pull/3303 **Full Changelog**: https://github.com/dexidp/dex/compare/v2.37.0...v2.38.0 </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzNy4yNjUuMCIsInVwZGF0ZWRJblZlciI6IjM3LjI2Ny4xIiwidGFyZ2V0QnJhbmNoIjoibWFpbiJ9-->
renovate-bot added 1 commit 2024-03-23 18:45:35 +00:00
tobru closed this pull request 2024-04-02 18:56:54 +00:00
renovate-bot commented 2024-04-03 18:44:16 +00:00
Author
Collaborator
Copy Link

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update (v2.39.0). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the ignoreDeps array of your Renovate config.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

### Renovate Ignore Notification Because you closed this PR without merging, Renovate will ignore this update (`v2.39.0`). You will get a PR once a newer version is released. To ignore this dependency forever, add it to the `ignoreDeps` array of your Renovate config. If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.

Pull request closed

Please reopen this pull request to perform a merge.
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: tobru/gitops-zurrli#593
No description provided.
Delete Branch "renovate/ghcr.io-dexidp-dex-2.x"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?