build(deps): bump github.com/urfave/cli/v2 from 2.26.0 to 2.27.4 #223

dependabot · 2024-08-12T10:05:36Z

Bumps github.com/urfave/cli/v2 from 2.26.0 to 2.27.4.

Release notes

Sourced from github.com/urfave/cli/v2's releases.

v2.27.4

What's Changed

Fix:(issue_1962) Fix tests failing on 32 bit architectures by @dearchap in urfave/cli#1963

Full Changelog: urfave/cli@v2.27.3...v2.27.4

v2.27.3

What's Changed

v2 Docs: Mention value from env as default value by @sj14 in urfave/cli#1910

Bump github.com/xrash/smetrics dependency by @elezar in urfave/cli#1911

fix: disable bash completion if double dash is included in arguments (v2) by @suzuki-shunsuke in urfave/cli#1938

Fix improper whitespace formatting in usageTemplate, AppHelpTemplate … by @caeret in urfave/cli#1947

New Contributors

@sj14 made their first contribution in urfave/cli#1910

@elezar made their first contribution in urfave/cli#1911

@caeret made their first contribution in urfave/cli#1947

Full Changelog: urfave/cli@v2.27.2...v2.27.3

v2.27.2

What's Changed

Cleanup: Remove unnecessary intermediate variables by @1ambd4 in urfave/cli#1857

Docs:(issue_1866) Fix documentation on filepath vs env preference by @dearchap in urfave/cli#1867

Fix:(issue_1860) Remove hidden flags from flag categories by @dearchap in urfave/cli#1868

Fix repeated [arguments...] in usage template in v2 by @edeustua in urfave/cli#1872

Update dependencies, actions steps, and usage for v2-maint by @meatballhat in urfave/cli#1888

New Contributors

@1ambd4 made their first contribution in urfave/cli#1857

@edeustua made their first contribution in urfave/cli#1872

Full Changelog: urfave/cli@v2.27.1...v2.27.2

v2.27.1

What's Changed

v2: Add build tag urfave_cli_no_suggest by @dolmen in urfave/cli#1847

Full Changelog: urfave/cli@v2.27.0...v2.27.1

v2.27.0

What's Changed

v2 Add integration with golangci-lint by @skelouse in urfave/cli#1830

v2: GitHub Actions: upgrade Go, upgrade actions by @dolmen in urfave/cli#1848

Feat:(issue_1797) Add Args for app/cmd/subcmd to avoid argument... be… by @dearchap in urfave/cli#1829

Fix:(issue_1850) Add RunAction for uint/uint64 slice flags by @dearchap in urfave/cli#1851

... (truncated)

Commits

f21e902 Merge pull request #1963 from dearchap/issue_1962
2a37495 uintt64 -> unint64
bd87fe5 Fix:(issue_1962) Fix tests failing on 32 bit architectures
a4832fd Merge pull request #1947 from caeret/v2-maint
2400a85 Run make generate
a5546ad Fix improper whitespace formatting in usageTemplate, AppHelpTemplate and Subc...
84c536d Merge pull request #1938 from suzuki-shunsuke/v2-fix-shell-completion-with-do...
f72fa77 fix: disable bash completion if double dash is included in arguments
8e2384c Merge pull request #1911 from elezar/bump-github.com/xrash/smetrics
e6c679a Bump github.com/xrash/smetrics dependency
Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note
Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-5962466

[skip ci]

Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.16.0 to 0.19.0. - [Commits](golang/crypto@v0.16.0...v0.19.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

Bumps ethereum/client-go from v1.13.5 to v1.13.13. --- updated-dependencies: - dependency-name: ethereum/client-go dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

…g/x/crypto-0.19.0 build(deps): bump golang.org/x/crypto from 0.16.0 to 0.19.0

…f61dfc4967 [Snyk] Security upgrade hardhat from 2.9.6 to 2.9.8

…ethereum/client-go-v1.13.13 build(deps): bump ethereum/client-go from v1.13.5 to v1.13.13 in /ops-bedrock

Bumps [eslint](https://github.com/eslint/eslint) from 8.55.0 to 8.57.0. - [Release notes](https://github.com/eslint/eslint/releases) - [Changelog](https://github.com/eslint/eslint/blob/main/CHANGELOG.md) - [Commits](eslint/eslint@v8.55.0...v8.57.0) --- updated-dependencies: - dependency-name: eslint dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-ZLIB-6008961 - https://snyk.io/vuln/SNYK-UPSTREAM-NODE-6252335 - https://snyk.io/vuln/SNYK-UPSTREAM-NODE-6252332 - https://snyk.io/vuln/SNYK-UPSTREAM-NODE-6255385 - https://snyk.io/vuln/SNYK-UPSTREAM-NODE-6252334

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-7430173 - https://snyk.io/vuln/SNYK-PYTHON-IDNA-6597975 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133 - https://snyk.io/vuln/SNYK-DEBIAN11-ZLIB-6008961 - https://snyk.io/vuln/SNYK-DEBIAN11-DB53-2825168 - https://snyk.io/vuln/SNYK-DEBIAN11-TAR-523480

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-DEBIAN11-ZLIB-6008961 - https://snyk.io/vuln/SNYK-DEBIAN11-DB53-2825168 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-521063 - https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-521063 - https://snyk.io/vuln/SNYK-DEBIAN11-TAR-523480

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-ALPINE319-OPENSSL-7413523 - https://snyk.io/vuln/SNYK-ALPINE319-OPENSSL-7413523 - https://snyk.io/vuln/SNYK-ALPINE319-OPENSSL-7413527 - https://snyk.io/vuln/SNYK-ALPINE319-OPENSSL-7413527

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413525 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536 - https://snyk.io/vuln/SNYK-ALPINE318-OPENSSL-7413536

Bumps [github.com/urfave/cli/v2](https://github.com/urfave/cli) from 2.26.0 to 2.27.4. - [Release notes](https://github.com/urfave/cli/releases) - [Changelog](https://github.com/urfave/cli/blob/main/docs/CHANGELOG.md) - [Commits](urfave/cli@v2.26.0...v2.27.4) --- updated-dependencies: - dependency-name: github.com/urfave/cli/v2 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2024-08-12T10:05:37Z

The following labels could not be found: M-dependabot.

socket-security · 2024-08-12T10:06:23Z

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/[email protected]	network	`+6`	8.87 MB	jmoxey

🚮 Removed packages: npm/[email protected]

View full report↗︎

snyk-bot and others added 27 commits October 14, 2023 03:46

fix: packages/contracts-bedrock/package.json to reduce vulnerabilities

581776d

The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JS-UNDICI-5962466

Set up CI with Azure Pipelines

744e010

[skip ci]

Merge branch 'ethereum-optimism:develop' into develop

9628e43

build(deps): bump ethereum/client-go in /ops-bedrock

8382681

Bumps ethereum/client-go from v1.13.5 to v1.13.13. --- updated-dependencies: - dependency-name: ethereum/client-go dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]>

Merge pull request #96 from Abuchtela/dependabot/go_modules/golang.or…

1159b41

…g/x/crypto-0.19.0 build(deps): bump golang.org/x/crypto from 0.16.0 to 0.19.0

Merge branch 'develop' into snyk-fix-9148e5c36e46a6b0aafabff61dfc4967

3b62167

Merge pull request #39 from Abuchtela/snyk-fix-9148e5c36e46a6b0aafabf…

d8ec68a

…f61dfc4967 [Snyk] Security upgrade hardhat from 2.9.6 to 2.9.8

Merge pull request #109 from Abuchtela/dependabot/docker/ops-bedrock/…

204fd5d

…ethereum/client-go-v1.13.13 build(deps): bump ethereum/client-go from v1.13.5 to v1.13.13 in /ops-bedrock

Create snyk-security.yml

a8c497c

fix: ops/tag-service/requirements.txt to reduce vulnerabilities

c2c8f3c

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899

dependabot bot mentioned this pull request Aug 12, 2024

build(deps): bump github.com/urfave/cli/v2 from 2.26.0 to 2.27.3 #212

Closed

Abuchtela force-pushed the develop branch from d153e39 to f3b9f0c Compare December 30, 2024 01:06

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): bump github.com/urfave/cli/v2 from 2.26.0 to 2.27.4 #223

build(deps): bump github.com/urfave/cli/v2 from 2.26.0 to 2.27.4 #223

dependabot bot commented on behalf of github Aug 12, 2024 •

edited

Loading

dependabot bot commented on behalf of github Aug 12, 2024

socket-security bot commented Aug 12, 2024

build(deps): bump github.com/urfave/cli/v2 from 2.26.0 to 2.27.4 #223

Are you sure you want to change the base?

build(deps): bump github.com/urfave/cli/v2 from 2.26.0 to 2.27.4 #223

Conversation

dependabot bot commented on behalf of github Aug 12, 2024 • edited Loading

v2.27.4

What's Changed

v2.27.3

What's Changed

New Contributors

v2.27.2

What's Changed

New Contributors

v2.27.1

What's Changed

v2.27.0

What's Changed

dependabot bot commented on behalf of github Aug 12, 2024

socket-security bot commented Aug 12, 2024

dependabot bot commented on behalf of github Aug 12, 2024 •

edited

Loading