[PR #284] [CLOSED] fix(deps): bump docker/setup-buildx-action from 2.0.0 to 2.3.0 #322

New issue

Closed

opened 2026-03-04 00:25:14 +03:00 by kerem · 0 comments

kerem commented 2026-03-04 00:25:14 +03:00

Owner

Copy link

📋 Pull Request Information

Original PR: https://github.com/SignTools/SignTools/pull/284
Author: @dependabot[bot]
Created: 1/30/2023
Status: ❌ Closed

Base: master ← Head: dependabot/github_actions/docker/setup-buildx-action-2.3.0

---

📝 Commits (1)

• 35f3aff fix(deps): bump docker/setup-buildx-action from 2.0.0 to 2.3.0

📊 Changes

2 files changed (+2 additions, -2 deletions)

View changed files

📝 .github/workflows/release.yml (+1 -1)
📝 .github/workflows/test.yml (+1 -1)

📄 Description

Bumps docker/setup-buildx-action from 2.0.0 to 2.3.0.

Release notes

Sourced from docker/setup-buildx-action's releases.

v2.3.0

What's Changed

• Use Octokit to check Buildx release on GitHub by @​crazy-max (#191 #192)
• Add version pinning information to the README by @​jedevc (#189)
• Bump minimatch from 3.0.4 to 3.1.2 (#182)
• Bump csv-parse from 5.3.1 to 5.3.3 (#181)
• Bump json5 from 2.2.0 to 2.2.3 (#184)

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.2.1...v2.3.0

v2.2.1

What's Changed

• Preserve quotes surrounding fields in input list by @​crazy-max (#174)
• Escape surrounding quotes for platforms input by @​crazy-max (#175)

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.2.0...v2.2.1

v2.2.0

What's Changed

• Append nodes to builder support by @​crazy-max (#165)
• Bump csv-parse from 5.3.0 to 5.3.1 (#172)

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.1.0...v2.2.0

v2.1.0

What's Changed

• Auth support for tls endpoint by @​crazy-max (#164)
• Nodes metadata JSON ouput by @​crazy-max (#162)
  • endpoint, status and flags outputs are deprecated. Use nodes output instead.
• Skip setting buildkitd flags and config for remote driver by @​crazy-max (#161)
• Move args logic to context module and add tests by @​crazy-max (#169)
• Remove workaround for setOutput by @​crazy-max (#170)
• Fix deprecated fs.rmdir by @​crazy-max (#171)
• Docs: clarify install option by @​rodrigc in (#152)
• Bump @​actions/core from 1.6.0 to 1.10.0 (#151 #157 #167)
• Bump @​actions/tool-cache from 1.7.2 to 2.0.1 (#150)
• Bump @​actions/http-client from 1.0.11 to 2.0.1 (#149)
• Bump uuid from 8.3.2 to 9.0.0 (#159)

Full Changelog: https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.1.0

Commits

• 5e716dc Merge pull request #192 from crazy-max/support-ghes
• a83788e update generated content
• d0d9a72 pass the token input through on GHES
• a8165e7 enforce baseUrl to api.github.com if action used on GHES
• a024221 Merge pull request #191 from crazy-max/fix-dl-release
• 4c3fce4 update generated content
• 7c965ae use Octokit client to download buildx
• 7932f62 Merge pull request #189 from docker/version-pinning-docs
• 70deadb docs: add version pinning information to the README
• 165fe68 Merge pull request #184 from docker/dependabot/npm_and_yarn/json5-2.2.3
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---

_{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

## 📋 Pull Request Information **Original PR:** https://github.com/SignTools/SignTools/pull/284 **Author:** [@dependabot[bot]](https://github.com/apps/dependabot) **Created:** 1/30/2023 **Status:** ❌ Closed **Base:** `master` ← **Head:** `dependabot/github_actions/docker/setup-buildx-action-2.3.0` --- ### 📝 Commits (1) - [`35f3aff`](https://github.com/SignTools/SignTools/commit/35f3aff375b6078f3c838b701149f2e42961ea0b) fix(deps): bump docker/setup-buildx-action from 2.0.0 to 2.3.0 ### 📊 Changes **2 files changed** (+2 additions, -2 deletions) <details> <summary>View changed files</summary> 📝 `.github/workflows/release.yml` (+1 -1) 📝 `.github/workflows/test.yml` (+1 -1) </details> ### 📄 Description Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 2.0.0 to 2.3.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/docker/setup-buildx-action/releases">docker/setup-buildx-action's releases</a>.</em></p> <blockquote> <h2>v2.3.0</h2> <h2>What's Changed</h2> <ul> <li>Use Octokit to check Buildx release on GitHub by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/191">#191</a> <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/192">#192</a>)</li> <li>Add version pinning information to the README by <a href="https://github.com/jedevc"><code>@​jedevc</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/189">#189</a>)</li> <li>Bump minimatch from 3.0.4 to 3.1.2 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/182">#182</a>)</li> <li>Bump csv-parse from 5.3.1 to 5.3.3 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/181">#181</a>)</li> <li>Bump json5 from 2.2.0 to 2.2.3 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/184">#184</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v2.2.1...v2.3.0">https://github.com/docker/setup-buildx-action/compare/v2.2.1...v2.3.0</a></p> <h2>v2.2.1</h2> <h2>What's Changed</h2> <ul> <li>Preserve quotes surrounding fields in input list by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/174">#174</a>)</li> <li>Escape surrounding quotes for <code>platforms</code> input by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/175">#175</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v2.2.0...v2.2.1">https://github.com/docker/setup-buildx-action/compare/v2.2.0...v2.2.1</a></p> <h2>v2.2.0</h2> <h2>What's Changed</h2> <ul> <li>Append nodes to builder support by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/165">#165</a>)</li> <li>Bump csv-parse from 5.3.0 to 5.3.1 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/172">#172</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v2.1.0...v2.2.0">https://github.com/docker/setup-buildx-action/compare/v2.1.0...v2.2.0</a></p> <h2>v2.1.0</h2> <h2>What's Changed</h2> <ul> <li>Auth support for tls endpoint by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/164">#164</a>)</li> <li>Nodes metadata JSON ouput by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/162">#162</a>) <ul> <li><code>endpoint</code>, <code>status</code> and <code>flags</code> outputs are deprecated. Use <code>nodes</code> output instead.</li> </ul> </li> <li>Skip setting buildkitd flags and config for remote driver by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/161">#161</a>)</li> <li>Move args logic to context module and add tests by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/169">#169</a>)</li> <li>Remove workaround for <code>setOutput</code> by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/170">#170</a>)</li> <li>Fix deprecated <code>fs.rmdir</code> by <a href="https://github.com/crazy-max"><code>@​crazy-max</code></a> (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/171">#171</a>)</li> <li>Docs: clarify install option by <a href="https://github.com/rodrigc"><code>@​rodrigc</code></a> in (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/152">#152</a>)</li> <li>Bump <code>@​actions/core</code> from 1.6.0 to 1.10.0 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/151">#151</a> <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/157">#157</a> <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/167">#167</a>)</li> <li>Bump <code>@​actions/tool-cache</code> from 1.7.2 to 2.0.1 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/150">#150</a>)</li> <li>Bump <code>@​actions/http-client</code> from 1.0.11 to 2.0.1 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/149">#149</a>)</li> <li>Bump uuid from 8.3.2 to 9.0.0 (<a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/159">#159</a>)</li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.1.0">https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.1.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/docker/setup-buildx-action/commit/5e716dcfd653738c2d1db099bfba194a84158be4"><code>5e716dc</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/192">#192</a> from crazy-max/support-ghes</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/a83788eef05bbb496ba68f5e561f3f66653fd9a3"><code>a83788e</code></a> update generated content</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/d0d9a7219538b0a2f1444e8ac32682583ce7ebce"><code>d0d9a72</code></a> pass the token input through on GHES</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/a8165e7b70928041b960d14b5754033e2a8d2525"><code>a8165e7</code></a> enforce baseUrl to api.github.com if action used on GHES</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/a024221c6058476635d42c4083d4e65a69e1a770"><code>a024221</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/191">#191</a> from crazy-max/fix-dl-release</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/4c3fce4ab2314c19a18d0d1e852d98db5110549f"><code>4c3fce4</code></a> update generated content</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/7c965aebec9a47c70ed361e8f0d1dcfca53b5b15"><code>7c965ae</code></a> use Octokit client to download buildx</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/7932f6210d7d60bffb2f9bcfa60e9e2c4800d96d"><code>7932f62</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/189">#189</a> from docker/version-pinning-docs</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/70deadb37a55f1756a277581a118bc9e0464ea93"><code>70deadb</code></a> docs: add version pinning information to the README</li> <li><a href="https://github.com/docker/setup-buildx-action/commit/165fe681b849eec43aaa64d786b9ec53e690475f"><code>165fe68</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/docker/setup-buildx-action/issues/184">#184</a> from docker/dependabot/npm_and_yarn/json5-2.2.3</li> <li>Additional commits viewable in <a href="https://github.com/docker/setup-buildx-action/compare/v2.0.0...v2.3.0">compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> --- _{🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.}

kerem 2026-03-04 00:25:14 +03:00

• closed this issue
• added the
  pull-request
  label

kerem referenced this issue 2026-03-04 00:25:23 +03:00

[PR #322] [MERGED] fix(deps): bump golang from 1.20.1-alpine to 1.20.5-alpine #352

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

dependabot/npm_and_yarn/prettier-3.8.2

dependabot/docker/golang-1.26.2-alpine

dependabot/github_actions/docker/build-push-action-7.1.0

dependabot/go_modules/golang.org/x/crypto-0.50.0

dependabot/github_actions/docker/login-action-4.1.0

dependabot/github_actions/actions/setup-go-6.4.0

dependabot/go_modules/github.com/rs/zerolog-1.35.0

dependabot/go_modules/golang.org/x/oauth2-0.36.0

dependabot/github_actions/docker/metadata-action-6.0.0

dependabot/github_actions/docker/setup-buildx-action-4.0.0

dependabot/github_actions/docker/setup-qemu-action-4.0.0

dependabot/go_modules/github.com/labstack/echo/v4-4.15.1

dependabot/github_actions/goreleaser/goreleaser-action-7.0.0

dependabot/docker/alpine-3.23.3

dependabot/github_actions/actions/checkout-6.0.2

develop

v3.0.11

v3.0.10

v3.0.9

v3.0.8

v3.0.7

v3.0.6

v3.0.5

v3.0.4

v3.0.3

v3.0.2

v3.0.1

v3.0.0

v2.6.2

v2.6.1

v2.6.0

v2.5.21

v2.5.20

v2.5.19

v2.5.18

v2.5.17

v2.5.16

v2.5.15

v2.5.14

v2.5.13

v2.5.12

v2.5.11

v2.5.10

v2.5.9

v2.5.8

v2.5.7

v2.5.6

v2.5.5

v2.5.4

v2.5.3

v2.5.2

v2.5.1

v2.5.0

v2.4.18

v2.4.17

v2.4.16

v2.4.15

v2.4.14

v2.4.13

v2.4.12

v2.4.11

v2.4.10

v2.4.9

v2.4.8

v2.4.7

v2.4.6

v2.4.5

v2.4.4

v2.4.3

v2.4.2

v2.4.1

v2.4.0

v2.3.15

v2.3.14

v2.3.13

v2.3.12

v2.3.11

v2.3.10

v2.3.9

v2.3.8

v2.3.7

v2.3.6

v2.3.5

v2.3.4

v2.3.3

v2.3.2

v2.3.1

v2.3.0

v2.2.6

v2.2.5

v2.2.4

v2.2.3

v2.2.2

v2.2.1

v2.2.0

v2.1.8

v2.1.7

v2.1.6

v2.1.5

v2.1.4

v2.1.3

v2.1.2

v2.1.1

v2.1.0

v2.0.1

v2.0.0

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.8.5

v1.8.4

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.6.0

v1.5.4

v1.5.3

v1.5.2

v1.5.1

v1.5.0

v1.4.5

v1.4.4

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.3.3

v1.3.2

v1.3.1

v1.3.0

v1.2.0

v1.1.0

v1.0.1

v1.0.0

Labels

Clear labels   

bug

  

enhancement

  

enhancement

  

good first issue

  

help wanted

  

pull-request

Mirrored from GitHub Pull Request

  

question

No labels

bug

enhancement

enhancement

good first issue

help wanted

pull-request

question

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/SignTools#322

No description provided.