chore(deps): update all

[renovate]

This PR contains the following updates:

Package	Type	Update	Change	Age	Adoption	Passing	Confidence
actions/cache	action	patch	v2.1.6 -> v2.1.8
actions/checkout	action	minor	v2.3.4 -> v2.7.0
alex (source)	dependencies	patch	9.1.0 -> 9.1.1
github.com/peterbourgon/ff/v3	require	minor	v3.0.0 -> v3.4.0
github.com/stretchr/testify	require	minor	v1.7.0 -> v1.9.0
goreleaser/goreleaser-action	action	minor	v2.6.1 -> v2.9.1
markdownlint-cli	dependencies	minor	0.27.1 -> 0.41.0
moul.io/u	require	minor	v1.25.1 -> v1.27.0

---

Release Notes

actions/cache (actions/cache)

v2.1.8: Updating actions/core to version 1.10.0

Compare Source

The ::save-state and ::set-output are deprecated. The newer version of actions/core >1.10.0 uses the new syntax for save and set output. After this change, customers using actions/cache@v2 won't see deprecation warning message.

v2.1.7

Compare Source

Support 10GB cache upload using the latest version 1.0.8 of @actions/cache

actions/checkout (actions/checkout)

v2.7.0

Compare Source

What's Changed

• Add new public key for known_hosts (#​1237) by @​TingluoHuang in https://github.com/actions/checkout/pull/1238

Full Changelog: actions/checkout@v2.6.0...v2.7.0

v2.6.0

Compare Source

What's Changed

• Add backports to v2 branch by @​cory-miller in https://github.com/actions/checkout/pull/1040
  • Includes backports from the following changes: https://github.com/actions/checkout/pull/964, https://github.com/actions/checkout/pull/1002, https://github.com/actions/checkout/pull/1029
  • Upgraded the licensed version to match what is used in v3.

Full Changelog: actions/checkout@v2.5.0...v2.6.0

v2.5.0

Compare Source

What's Changed

• Update @​actions/core to 1.10.0 by @​rentziass in https://github.com/actions/checkout/pull/962

Full Changelog: actions/checkout@v2...v2.5.0

v2.4.2

Compare Source

What's Changed

• Add set-safe-directory input to allow customers to take control. (#​770) by @​TingluoHuang in https://github.com/actions/checkout/pull/776
• Prepare changelog for v2.4.2. by @​TingluoHuang in https://github.com/actions/checkout/pull/778

Full Changelog: actions/checkout@v2...v2.4.2

v2.4.1

Compare Source

• Fixed an issue where checkout failed to run in container jobs due to the new git setting safe.directory

v2.4.0

Compare Source

• Convert SSH URLs like org-<ORG_ID>@&#8203;github.com: to https://github.com/ - pr

v2.3.5

Compare Source

Update dependencies

get-alex/alex (alex)

v9.1.1

Compare Source

• 223cde1 Add lock for remark-mdx

Full Changelog: get-alex/alex@9.1.0...9.1.1

peterbourgon/ff (github.com/peterbourgon/ff/v3)

v3.4.0

Compare Source

What's Changed

• JSON, TOML, YAML: support for nested config data by @​peterbourgon in https://github.com/peterbourgon/ff/pull/112
• ffcli: add DESCRIPTION with ShortHelp to DefaultUsageFunc by @​peterbourgon in https://github.com/peterbourgon/ff/pull/111

Full Changelog: peterbourgon/ff@v3.3.2...v3.4.0

v3.3.2

Compare Source

This release adds the WithFilesystem option, allowing users to specify a filesystem other than the default host FS for e.g. config files. Thanks to @​piotrkowalczuk and #​103 for the inspiration.

v3.3.1

Compare Source

@​abhinav sent in #​106 which just improves the DefaultUsageFunc a bit, thanks bud!

v3.3.0

Compare Source

Changes!

What's Changed

• Add a naïve parser for .env files by @​peterbourgon in https://github.com/peterbourgon/ff/pull/89
• Fix example demonstrating usage of env vars by @​m90 in https://github.com/peterbourgon/ff/pull/95
• Update yaml.v2 and go-toml modules by @​decke in https://github.com/peterbourgon/ff/pull/94
• Fixes for go 1.19 by @​peterbourgon in https://github.com/peterbourgon/ff/pull/98

New Contributors

• @​m90 made their first contribution in https://github.com/peterbourgon/ff/pull/95
• @​decke made their first contribution in https://github.com/peterbourgon/ff/pull/94

Full Changelog: peterbourgon/ff@v3.1.2...v3.3.0

v3.1.2

Compare Source

The rehoming to major version 0 caused problems I was not able to quickly resolve. See #​86. This release restores everything to major version 3 until I can resolve those problems.

v3.1.1

Compare Source

v3.1.0

Compare Source

ffyaml now treats

key: 

as

-key=""

instead of an error.

stretchr/testify (github.com/stretchr/testify)

v1.9.0

Compare Source

What's Changed

• Fix Go modules version by @​SuperQ in https://github.com/stretchr/testify/pull/1394
• Document that require is not safe to call in created goroutines by @​programmer04 in https://github.com/stretchr/testify/pull/1392
• Remove myself from MAINTAINERS.md by @​mvdkleijn in https://github.com/stretchr/testify/pull/1367
• Correct spelling/grammar by @​echarrod in https://github.com/stretchr/testify/pull/1389
• docs: Update URLs in README by @​davidjb in https://github.com/stretchr/testify/pull/1349
• Update mockery link to Github Pages in README by @​LandonTClipp in https://github.com/stretchr/testify/pull/1346
• docs: Fix typos in tests and comments by @​alexandear in https://github.com/stretchr/testify/pull/1410
• CI: tests from go1.17 by @​SuperQ in https://github.com/stretchr/testify/pull/1409
• Fix adding ? when no values passed by @​lesichkovm in https://github.com/stretchr/testify/pull/1320
• codegen: use standard header for generated files by @​dolmen in https://github.com/stretchr/testify/pull/1406
• mock: AssertExpectations log reason only on failure by @​hikyaru-suzuki in https://github.com/stretchr/testify/pull/1360
• assert: fix flaky TestNeverTrue by @​dolmen in https://github.com/stretchr/testify/pull/1417
• README: fix typos "set up" vs "setup" by @​ossan-dev in https://github.com/stretchr/testify/pull/1428
• mock: move regexp compilation outside of Called by @​aud10slave in https://github.com/stretchr/testify/pull/631
• assert: refactor internal func getLen() by @​dolmen in https://github.com/stretchr/testify/pull/1445
• mock: deprecate type AnythingOfTypeArgument (#​1434) by @​dolmen in https://github.com/stretchr/testify/pull/1441
• Remove no longer needed assert.canConvert by @​alexandear in https://github.com/stretchr/testify/pull/1470
• assert: ObjectsAreEqual: use time.Equal for time.Time types by @​tscales in https://github.com/stretchr/testify/pull/1464
• Bump actions/checkout from 3 to 4 by @​dependabot in https://github.com/stretchr/testify/pull/1466
• Bump actions/setup-go from 3.2.0 to 4.1.0 by @​dependabot in https://github.com/stretchr/testify/pull/1451
• fix: make EventuallyWithT concurrency safe by @​czeslavo in https://github.com/stretchr/testify/pull/1395
• assert: fix httpCode and HTTPBody occur panic when http.Handler read Body by @​hidu in https://github.com/stretchr/testify/pull/1484
• assert.EqualExportedValues: fix handling of arrays by @​zrbecker in https://github.com/stretchr/testify/pull/1473
• .github: use latest Go versions by @​kevinburkesegment in https://github.com/stretchr/testify/pull/1489
• assert: Deprecate EqualExportedValues by @​HaraldNordgren in https://github.com/stretchr/testify/pull/1488
• suite: refactor test assertions by @​alexandear in https://github.com/stretchr/testify/pull/1474
• suite: fix SetupSubTest and TearDownSubTest execution order by @​linusbarth in https://github.com/stretchr/testify/pull/1471
• docs: Fix deprecation comments for http package by @​alexandear in https://github.com/stretchr/testify/pull/1335
• Add map support doc comments to Subset and NotSubset by @​jedevc in https://github.com/stretchr/testify/pull/1306
• TestErrorIs/TestNotErrorIs: check error message contents by @​craig65535 in https://github.com/stretchr/testify/pull/1435
• suite: fix subtest names (fix #​1501) by @​dolmen in https://github.com/stretchr/testify/pull/1504
• assert: improve unsafe.Pointer tests by @​dolmen in https://github.com/stretchr/testify/pull/1505
• assert: simplify isNil implementation by @​dolmen in https://github.com/stretchr/testify/pull/1506
• assert.InEpsilonSlice: fix expected/actual order and other improvements by @​dolmen in https://github.com/stretchr/testify/pull/1483
• Fix dependency cycle with objx #​1292 by @​dolmen in https://github.com/stretchr/testify/pull/1453
• mock: refactor TestIsArgsEqual by @​dolmen in https://github.com/stretchr/testify/pull/1444
• mock: optimize argument matching checks by @​dolmen in https://github.com/stretchr/testify/pull/1416
• assert: fix TestEventuallyTimeout by @​dolmen in https://github.com/stretchr/testify/pull/1412
• CI: add go 1.21 in GitHub Actions by @​dolmen in https://github.com/stretchr/testify/pull/1450
• suite: fix recoverAndFailOnPanic to report test failure at the right location by @​dolmen in https://github.com/stretchr/testify/pull/1502
• Update maintainers by @​brackendawson in https://github.com/stretchr/testify/pull/1533
• assert: Fix EqualValues to handle overflow/underflow by @​arjunmahishi in https://github.com/stretchr/testify/pull/1531
• assert: better formatting for Len() error by @​kevinburkesegment in https://github.com/stretchr/testify/pull/1485
• Ensure AssertExpectations does not fail in skipped tests by @​ianrose14 in https://github.com/stretchr/testify/pull/1331
• suite: fix deadlock in suite.Require()/Assert() by @​arjunmahishi in https://github.com/stretchr/testify/pull/1535
• Revert "assert: ObjectsAreEqual: use time.Equal for time.Time type" by @​brackendawson in https://github.com/stretchr/testify/pull/1537
• [chore] Add issue templates by @​arjunmahishi in https://github.com/stretchr/testify/pull/1538
• Update the build status badge by @​brackendawson in https://github.com/stretchr/testify/pull/1540
• Update Github workflows setup-go to V5 by @​hendrywiranto in https://github.com/stretchr/testify/pull/1545
• Support Pointer to Struct in EqualExportedValues by @​Lucaber in https://github.com/stretchr/testify/pull/1517
• README: drop link to gorc by @​guettli in https://github.com/stretchr/testify/pull/1248
• http_assertions: honour the msgAndArgs provided with each assertion by @​arjunmahishi in https://github.com/stretchr/testify/pull/1548
• fix typos in comments and tests by @​ccoVeille in https://github.com/stretchr/testify/pull/1247
• Include the auto-release notes in releases by @​brackendawson in https://github.com/stretchr/testify/pull/1550
• Add NotImplements and variants by @​hslatman in https://github.com/stretchr/testify/pull/1385
• Add support to compare uintptr by @​bogdandrutu in https://github.com/stretchr/testify/pull/1339
• build(deps): bump github.com/stretchr/objx from 0.5.1 to 0.5.2 by @​dependabot in https://github.com/stretchr/testify/pull/1552

New Contributors

• @​SuperQ made their first contribution in https://github.com/stretchr/testify/pull/1394
• @​programmer04 made their first contribution in https://github.com/stretchr/testify/pull/1392
• @​echarrod made their first contribution in https://github.com/stretchr/testify/pull/1389
• @​davidjb made their first contribution in https://github.com/stretchr/testify/pull/1349
• @​LandonTClipp made their first contribution in https://github.com/stretchr/testify/pull/1346
• @​alexandear made their first contribution in https://github.com/stretchr/testify/pull/1410
• @​lesichkovm made their first contribution in https://github.com/stretchr/testify/pull/1320
• @​dolmen made their first contribution in https://github.com/stretchr/testify/pull/1406
• @​hikyaru-suzuki made their first contribution in https://github.com/stretchr/testify/pull/1360
• @​ossan-dev made their first contribution in https://github.com/stretchr/testify/pull/1428
• @​aud10slave made their first contribution in https://github.com/stretchr/testify/pull/631
• @​tscales made their first contribution in https://github.com/stretchr/testify/pull/1464
• @​czeslavo made their first contribution in https://github.com/stretchr/testify/pull/1395
• @​hidu made their first contribution in https://github.com/stretchr/testify/pull/1484
• @​zrbecker made their first contribution in https://github.com/stretchr/testify/pull/1473
• @​kevinburkesegment made their first contribution in https://github.com/stretchr/testify/pull/1489
• @​linusbarth made their first contribution in https://github.com/stretchr/testify/pull/1471
• @​jedevc made their first contribution in https://github.com/stretchr/testify/pull/1306
• @​craig65535 made their first contribution in https://github.com/stretchr/testify/pull/1435
• @​arjunmahishi made their first contribution in https://github.com/stretchr/testify/pull/1531
• @​ianrose14 made their first contribution in https://github.com/stretchr/testify/pull/1331
• @​hendrywiranto made their first contribution in https://github.com/stretchr/testify/pull/1545
• @​Lucaber made their first contribution in https://github.com/stretchr/testify/pull/1517
• @​guettli made their first contribution in https://github.com/stretchr/testify/pull/1248
• @​ccoVeille made their first contribution in https://github.com/stretchr/testify/pull/1247
• @​hslatman made their first contribution in https://github.com/stretchr/testify/pull/1385
• @​bogdandrutu made their first contribution in https://github.com/stretchr/testify/pull/1339

Full Changelog: stretchr/testify@v1.8.4...v1.9.0

v1.8.4

Compare Source

v1.8.3

Compare Source

v1.8.2

Compare Source

v1.8.1

Compare Source

v1.8.0

Compare Source

v1.7.5

Compare Source

v1.7.4

Compare Source

v1.7.3

Compare Source

v1.7.2

Compare Source

v1.7.1

Compare Source

goreleaser/goreleaser-action (goreleaser/goreleaser-action)

v2.9.1

Compare Source

What's Changed

• fix: current tag not taken into account by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/329

Full Changelog: goreleaser/goreleaser-action@v2...v2.9.1

v2.9.0

Compare Source

What's Changed

• refactor: setup context by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/325
• chore: update community files by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/328
• feat: add artifacts and metadata outputs by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/327

Full Changelog: goreleaser/goreleaser-action@v2.8.1...v2.9.0

v2.8.1

Compare Source

What's Changed

• fix: should not force snapshot when nightly is set by @​caarlos0 in https://github.com/goreleaser/goreleaser-action/pull/321

Full Changelog: goreleaser/goreleaser-action@v2.8.0...v2.8.1

v2.8.0

Compare Source

What's Changed

• chore(deps): bump @​actions/tool-cache from 1.7.0 to 1.7.1 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/290
• chore(deps): bump @​actions/core from 1.3.0 to 1.4.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/289
• chore(deps): bump @​actions/exec from 1.0.4 to 1.1.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/291
• refactor: use built-in getExecOutput by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/292
• chore(deps): bump codecov/codecov-action from 1 to 2.0.1 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/293
• chore(deps): update dev deps by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/294
• chore(deps): bump @​actions/core from 1.4.0 to 1.5.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/296
• fix: platform detection by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/299
• fix: platform detection v2 by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/300
• chore(deps): bump ghaction-import-gpg to v4 by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/302
• chore(deps): bump tmpl from 1.0.4 to 1.0.5 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/305
• chore(deps): bump ansi-regex from 5.0.0 to 5.0.1 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/306
• chore(deps): bump @​actions/core from 1.5.0 to 1.6.0 by @​dependabot in https://github.com/goreleaser/goreleaser-action/pull/307
• fix: support arch variant to download GoReleaser by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/309
• chore: update generate content by @​crazy-max in https://github.com/goreleaser/goreleaser-action/pull/310
• fix: get darwin universal binary by @​caarlos0 in https://github.com/goreleaser/goreleaser-action/pull/312

Full Changelog: goreleaser/goreleaser-action@v2.6.1...v2.8.0

v2.7.0

Compare Source

• chore(deps): update dev deps (#​294)
• chore(deps): bump codecov/codecov-action from 1 to 2 (#​293)
• refactor: use built-in getExecOutput (#​292)
• chore(deps): bump @​actions/exec from 1.0.4 to 1.1.0 (#​291)
• chore(deps): bump @​actions/core from 1.3.0 to 1.4.0 (#​289)
• chore(deps): bump @​actions/tool-cache from 1.7.0 to 1.7.1 (#​290)

igorshubovych/markdownlint-cli (markdownlint-cli)

v0.41.0

Compare Source

v0.40.0: 0.40.0

Compare Source

• Update markdownlint dependency to 0.34.0
  • Use micromark in MD027/MD028/MD036/MD040/MD041/MD046/MD048
  • Improve MD013/MD034/MD049/MD050/MD051
• Add support for TOML configuration files via --config
• Add --configPointer argument for nested configuration
• Update --ignore for directories to ignore all files within
• Update all dependencies via Dependabot

v0.39.0: 0.39.0

Compare Source

• Update markdownlint dependency to 0.33.0
  • Add MD055/table-pipe-style, MD056/table-column-count
  • Improve MD005/MD007/MD024/MD026/MD038
  • Incorporate micromark-extension-directive
  • Improve JSON schema, document validation
• Handle trailing commas in JSONC configuration
• Update all dependencies via Dependabot

v0.38.0: 0.38.0

Compare Source

• Update markdownlint dependency to 0.32.1
  • Remove deprecated MD002/MD006
  • Remove rule aliases for "header"
  • Add MD054/link-image-style
  • Use micromark in MD005/MD007/MD030
  • Improve MD022/MD026/MD034/MD037/MD038/MD045/MD051
• Remove support for end-of-life Node version 16
• Update all dependencies via Dependabot

v0.37.0: 0.37.0

Compare Source

• Update markdownlint dependency to 0.31.1
  • Improve MD032/MD034/MD037/MD043/MD044/MD051/MD052
  • Improve performance
• Update all dependencies via Dependabot

v0.36.0: 0.36.0

Compare Source

• Update markdownlint dependency to 0.30.0
  • Use micromark in MD022/MD026/MD032/MD037/MD045/MD051
  • Incorporate micromark-extension-math for math syntax
  • Allow custom rules to override information URL
• Update all dependencies via Dependabot

v0.35.0: 0.35.0

Compare Source

• Update markdownlint dependency to 0.29.0
  • Update micromark parser dependencies for better performance
  • Use micromark in MD049/MD050
  • Improve MD034/MD037/MD044/MD049/MD050
• Update all dependencies via Dependabot

v0.34.0: 0.34.0

Compare Source

• Update markdownlint dependency to 0.28.2
  • Introduce micromark parser for better positional data (internal only)
  • Use micromark in MD013/MD033/MD034/MD035/MD038/MD044/MD052/MD053
• Update all dependencies via Dependabot

v0.33.0: 0.33.0

Compare Source

• Update markdownlint dependency to 0.27.0
  • Improve MD011/MD013/MD022/MD031/MD032/MD033/MD034/MD040/MD043/MD051/MD053
  • Generate/separate documentation
  • Improve documentation
• Publish Docker container images for both linux/amd64 and linux/arm64
• Support JSONC and YAML inside markdownlint-configure-file comments
• Update all dependencies via Dependabot

v0.32.2: 0.32.2

Compare Source

• Update markdownlint dependency to 0.26.2
  • Improve MD037/MD051/MD053
• Update all dependencies via Dependabot

v0.32.1: 0.32.1

Compare Source

• Update markdownlint dependency to 0.26.1
  • Improve MD051
• Update all dependencies via Dependabot

v0.32.0: 0.32.0

Compare Source

• Update markdownlint dependency to 0.26.0
  • Add MD051/link-fragments: Link fragments should be valid
  • Add MD052/reference-links-images: Reference links and images should use a label that is defined
  • Add MD053/link-image-reference-definitions: Link and image reference definitions should be needed (auto-fixable)
  • Improve MD010/MD031/MD035/MD039/MD042/MD044/MD049/MD050
  • Add markdownlint-disable-line inline comment
  • Support ~ paths in configuration files
  • Improve performance
• Add .markdownlint.jsonc to list of supported configuration files
• Remove support for end-of-life Node version 12
• Update all dependencies via Dependabot

v0.31.1: 0.31.1

Compare Source

• Automatically publish Docker container image to GitHub Packages
• Update all dependencies via Dependabot

v0.31.0: 0.31.0

Compare Source

• Update markdownlint dependency to 0.25.0
  • Add MD049/MD050 for consistent emphasis/strong style (both auto-fixable)
  • Improve MD007/MD010/MD032/MD033/MD035/MD037/MD039
  • Support asynchronous custom rules
  • Improve performance
• Update all dependencies via Dependabot

v0.30.0: 0.30.0

Compare Source

• Add --enable/--disable params
• Add --quiet param
• Throw for bad config file
• Update all dependencies via Dependabot

v0.29.0: 0.29.0

Compare Source

• Update markdownlint dependency to 0.24.0
  • Improve MD010/MD011/MD037/MD043/MD044
• Remove support for end-of-life Node version 10
• Update all dependencies via Dependabot

v0.28.1: 0.28.1

Compare Source

• Fix outdated reference to rc (thanks @​shhdgit!)

v0.28.0: 0.28.0

Compare Source

• Add --json option to output results in JSON format
• Switch rc dependency to run-con to address CVE-2020-7788
• Update all dependencies via Dependabot

moul/u (moul.io/u)

v1.27.0

Compare Source

Features

• add MutexMap.RLock (ee3f78d)

v1.26.0

Compare Source

Features

• add u.IsASCII (aa23d54)

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.

[codecov]

Welcome to Codecov 🎉

Once you merge this PR into your default branch, you're all set! Codecov will compare coverage reports and display results in all future pull requests.

Thanks for integrating Codecov - We've got you covered ☂️

[socket-security]

👍 Dependency issues cleared. Learn more about Socket for GitHub ↗︎

This PR previously contained dependency changes with security issues that have been resolved, removed, or ignored.

View full report↗︎

[socket-security]

New and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
npm/alex@9.1.1	Transitive: environment, eval, filesystem, network, shell, unsafe	+303	5.93 MB	wooorm
npm/markdownlint-cli@0.41.0	Transitive: environment, filesystem, shell	+47	6.97 MB	davidanson

🚮 Removed packages: npm/alex@9.1.0, npm/markdownlint-cli@0.27.1

View full report↗︎