Update github actions

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
golang (source)		minor	1.19.4 -> 1.22.1
golangci/golangci-lint		minor	v1.50.1 -> v1.57.2
goreleaser/goreleaser		minor	v1.13.1 -> v1.24.0
securego/gosec	action	minor	v2.14.0 -> v2.19.0

---

Release Notes

golang/go (golang)

v1.22.1

v1.22.0

v1.21.8

v1.21.7

v1.21.6

v1.21.5

v1.21.4

v1.21.3

v1.21.2

v1.21.1

v1.21.0

v1.20.14

v1.20.13

v1.20.12

v1.20.11

v1.20.10

v1.20.9

v1.20.8

v1.20.7

v1.20.6

v1.20.5

v1.20.4

v1.20.3

v1.20.2

v1.20.1

v1.20.0

v1.19.13

v1.19.12

v1.19.11

v1.19.10

v1.19.9

v1.19.8

v1.19.7

v1.19.6

v1.19.5

golangci/golangci-lint (golangci/golangci-lint)

v1.57.2

Compare Source

v1.57.1

Compare Source

Changelog

• 87b6bf1 build(deps): bump github.com/golangci/plugin-module-register from 0.1.0 to 0.1.1 (#​4549)
• 921d535 build(deps): bump github.com/pelletier/go-toml/v2 from 2.1.1 to 2.2.0 (#​4548)
• cd890db fix: filter invalid issues before other processors (#​4552)

v1.57.0

Compare Source

v1.56.2

Compare Source

1. updated linters
   • go-critic: from 0.11.0 to 0.11.1
   • gosec: from 2.18.2 to 2.19.0
   • testifylint: from 1.1.1 to 1.1.2
   • usestdlibvars: from 1.24.0 to 1.25.0
   • wsl: from 4.2.0 to 4.2.1
2. misc.
   • Fix missing version in Docker image
3. Documentation
   • Explain the limitation of new-from-rev and new-from-patch

v1.56.1

Compare Source

1. updated linters
   • errcheck: from 1.6.3 to 1.7.0
   • govet: disable loopclosure with go1.22
   • revive: from 1.3.6 to 1.3.7
   • testifylint: from 1.1.0 to 1.1.1

v1.56.0

Compare Source

1. new linters
   • feat: add spancheck linter https://github.com/jjti/go-spancheck
2. updated linters
   • depguard: from 2.1.0 to 2.2.0
   • exhaustive: from 0.11.0 to 0.12.0
   • exhaustruct: from 3.1.0 to 3.2.0
   • gci: from 0.11.2 to 0.12.1
   • ginkgolinter: from 0.14.1 to 0.15.2
   • go-check-sumtype: from 0.1.3 to 0.1.4
   • go-critic: from 0.9.0 to 0.11.0
   • go-errorlint: from 1.4.5 to 1.4.8
   • go-spancheck: from 0.4.2 to 0.5.2
   • goconst: from 1.6.0 to 1.7.0
   • godot: from 1.4.15 to 1.4.16
   • gofumpt: from 0.5.0 to 0.6.0
   • inamedparam: from 0.1.2 to 0.1.3
   • ineffassign: from 0.0.0-20230610083614-0e73809eb601 to 0.1.0
   • ireturn: from 0.2.2 to 0.3.0
   • misspell: add mode option
   • musttag: from v0.7.2 to v0.8.0
   • paralleltest: from 1.0.8 to 1.0.9
   • perfsprint: from 0.2.0 to 0.6.0
   • protogetter: from 0.2.3 to 0.3.4
   • revive: from 1.3.4 to 1.3.6
   • sloglint: add static-msg option
   • sloglint: from 0.1.2 to 0.4.0
   • testifylint: from 0.2.3 to 1.1.0
   • unparam: from 2022122-7455f1af531d to 2024010-c549a3470d14
   • whitespace: update after moving to the analysis package
   • wsl: from 3.4.0 to 4.2.0
   • zerologlint: from 0.1.3 to 0.1.5
3. misc.
   • 🎉 go1.22 support
   • Implement stats per linter with a flag
   • fix: make versioning inside Docker image consistent with binaries
   • fix: parse Go RC version
4. Documentation
   • Add missing fields to .golangci.reference.yml
   • Fix noctx description
   • Improve .golangci.reference.yml defaults
   • Improve typecheck FAQ
   • Note that exhaustruct struct regular expressions are expected to match the entire package/name/structname
   • Adjust wrapcheck ignoreSigs to new defaults

Important

testifylint has breaking changes about enabling/disabling checks:

• If you were using the option enable with a filtered list of checks, you should either add disable-all: true (1) or use disable field (2).

Example (1)

  testifylint:
    disable-all: true
    enable:
      - bool-compare
      - compares
      - empty
      - error-is-as
      - error-nil
      - expected-actual
      - go-require
      - float-compare
      - len
      - nil-compare
      - require-error

- suite-dont-use-pkg

      - suite-extra-assert-call
      - suite-thelper
```

```yml

Example (2)

  testifylint:
    disable:
      - suite-dont-use-pkg
```

v1.55.2

Compare Source

1. updated linters
   • ireturn: from 0.2.1 to 0.2.2
   • ginkgolinter: from 0.14.0 to 0.14.1

v1.55.1

Compare Source

1. updated linters
   • gosec: from 2.18.1 to 2.18.2
2. misc.
   • revgrep: from v0.5.0 to v0.5.2 (support git < 2.41.0)
   • output: convert backslashes to forward slashes for GitHub Action annotations printer

v1.55.0

Compare Source

1. new linters
   • gochecksumtype: https://github.com/alecthomas/go-check-sumtype
   • inamedparam: https://github.com/macabu/inamedparam
   • perfsprint: https://github.com/catenacyber/perfsprint
   • protogetter: https://github.com/ghostiam/protogetter
   • sloglint: https://github.com/go-simpler/sloglint
   • testifylint: https://github.com/Antonboom/testifylint
2. updated linters
   • bidichk: from 0.2.4 to 0.2.7
   • decorder: from 0.4.0 to 0.4.1
   • dupword: from 0.0.12 to 0.0.13
   • errchkjson: from 0.3.1 to 0.3.6
   • gci: from 0.11.0 to 0.11.2
   • ginkgolinter: from 0.13.5 to 0.14.0
   • go-errorlint: from 1.4.4 to 1.4.5
   • gocognit: from 1.0.7 to 1.1.0
   • goconst: from 1.5.1 to 1.6.0
   • godot: from 1.4.14 to 1.4.15
   • gofmt: update to HEAD
   • goimports: update to HEAD
   • gosec: from 2.17.0 to 2.18.1
   • gosmopolitan: from 1.2.1 to 1.2.2
   • govet: add appends analyzer
   • ireturn: from 0.2.0 to 0.2.1
   • protogetter: from 0.2.2 to 0.2.3
   • revgrep: from 745bb2f to v0.5.0
   • revive: from 1.3.2 to 1.3.4
   • sqlclosecheck: from 0.4.0 to 0.5.1
   • staticcheck: from 0.4.5 to 0.4.6
   • tagalign: from 1.3.2 to 1.3.3
   • unused: support passing in options
3. misc.
   • Add a pre-commit hook to check all files
4. Documentation
   • add source options to exclude-rules docs
   • gosec: add G602 to includes/excludes inside .golangci.reference.yml

v1.54.2

Compare Source

1. updated linters:
   • errname: from 0.1.10 to 0.1.12
   • ginkgolinter: from 0.13.3 to 0.13.5
   • go-errorlint: from 1.4.3 to 1.4.4
   • godot: from 1.4.11 to 1.4.14
   • gosec: from 2.16.0 to 2.17.0
   • musttag: from 0.7.1 to 0.7.2
   • nilnil: from 0.1.5 to 0.1.7
   • staticcheck: from 0.4.3 to 0.4.5
   • usestdlibvars: from 1.23.0 to 1.24.0
   • govet: add missing directive and slog passes

v1.54.1

Compare Source

1. updated linters:
   • go-critic: from 0.8.2 to 0.9.0
2. misc.
   • plugin: temporarily hide warning about using plugins using the old API

v1.54.0

Compare Source

1. updated linters:
   • decorder: from 0.2.3 to 0.4.0
   • dupword: from 0.0.11 to 0.0.12
   • errorlint: from 1.4.2 to 1.4.3
   • exhaustruct: from 2.3.0 to 3.1.0
   • forbidigo: from 1.5.3 to 1.6.0
   • funlen: from 0.0.3 to 0.1.0
   • gci: from 0.10.1 to 0.11.0
   • ginkgolinter: from 0.12.1 to 0.13.3
   • go-critic: from 0.8.1 to 0.8.2
   • go-errorlint: from 1.4.2 to 1.4.3
   • go-exhaustruct: from 2.3.0 to 3.1.0
   • gocognit: from 1.0.6 to 1.0.7
   • gocritic: from 0.8.1 to 0.8.2
   • gofmt: autofix missing newline at EOF
   • misspell: 0.4.0 to 0.4.1
   • musttag: from 0.7.0 to 0.7.1
   • paralleltest: from 1.0.7 to 1.0.8
   • tagalign: from 1.2.2 to 1.3.2
   • typecheck: explain it and remove it from the linter list
   • zerologlint: from 0.1.2 to 0.1.3
2. misc.
   • 🎉 go1.21 support
   • plugin: include custom linters in enable-all
   • plugin: allow to use settings for plugins
3. Documentation
   • Add linter descriptions.

Important

ruleguard (a "rule" inside gocritic) was disabled in this release (v1.54.0) and was enabled again in the next release (v1.54.1).

exhaustruct has breaking changes with regular expressions, more details here.

v1.53.3

Compare Source

1. updated linters:
   • cyclop: from 1.2.0 to 1.2.1
   • exhaustive: from 0.10.0 to 0.11.0
   • forbidigo: from 1.5.1 to 1.5.3
   • ginkgolinter: from 0.12.2 to 0.12.1
   • ineffassign: bump to HEAD
   • nakedret: from 2.0.1 to 2.0.2
   • zerologlint: from 0.1.1 to 0.1.2
2. misc.
   • codeclimate: reduce memory allocation
   • support illumos/amd64

v1.53.2

Compare Source

1. updated linters
   • depguard: from v2.0.1 to 2.1.0
2. misc.
   • depguard: throw error only when the linter is called

v1.53.1

Compare Source

1. misc.
   • depguard: fix GOROOT detection
   • importas: fix duplication detection when aliases use regular expression replacement pattern

v1.53.0

Compare Source

1. new linters
   • gosmopolitan: https://github.com/xen0n/gosmopolitan
   • mirror: https://github.com/butuzov/mirror
   • tagalign: https://github.com/4meepo/tagalign
   • zerologlint: https://github.com/ykadowak/zerologlint
2. updated linters
   • bodyclose: bump to HEAD
   • containedctx: from 1.0.2 to 1.0.3
   • depguard: migrate to v2
   • errname: from 0.1.9 to 0.1.10
   • exhaustive: from 0.9.5 to 0.10.0
   • forbidigo: better support for configuring complex rules
   • gci: improve error message
   • ginkgolinter: add suppress-async-assertion option
   • ginkgolinter: from 0.9.0 to 0.12.0
   • go-critic: from 0.7.0 to 0.8.1
   • go-errorlint: from 1.4.0 to 1.4.2
   • gofumpt: from 0.4.0 to 0.5.0
   • gosec: convert global settings as map with proper key type
   • gosec: from 2.15.0 to 2.16.0
   • importas: detect duplicate alias or package in the configuration
   • importas: fix typo in logs
   • ireturn: from 0.1.1 to 0.2.0
   • musttag: from 0.5.0 to 0.7.0
   • nakedret: to 2.0.1
   • nilnil: from 0.1.3 to 0.1.5
   • paralleltest: from 1.0.6 to 1.0.7
   • revive: from 1.3.1 to 1.3.2
   • tagliatelle: from 0.4.0 to 0.5.0
   • usestdlibvars: fix configuration
3. misc.
   • golang.org/x/tools: from 0.7.0 to 0.9.2
   • add loongarch64 to the install script
   • output: add colored-tab
   • remove warning when the config file is explicitly stdin
   • rules: support inverted path match
4. Documentation
   • mnd: clarify ignore usage examples to be regexps
   • tagliatelle: update documentation
   • improve features section
   • update supported Go versions FAQ

v1.52.2

Compare Source

1. updated linters
   • tparallel: from 0.3.0 to 0.3.1
2. misc.
   • fix: pre-commit require_serial and pass_filenames

v1.52.1

Compare Source

1. misc.
   • fix: improve panic management
   • fix: the combination of --fix and --path-prefix

v1.52.0

Compare Source

1. updated linters
   • asciicheck: from 0.1.1 to 0.2.0
   • bidichk: from 0.2.3 to 0.2.4
   • contextcheck: from 1.1.3 to 1.1.4
   • dupword: from 0.0.9 to 0.0.11
   • durationcheck: from 0.0.9 to 0.0.10
   • errchkjson: from 0.3.0 to 0.3.1
   • errname: from 0.1.7 to 0.1.9
   • forbidigo: from 1.4.0 to 1.5.1
   • gci: from 0.9.1 to 0.10.1
   • ginkgolinter: from 0.8.1 to 0.9.0
   • go-critic: from 0.6.7 to 0.7.0
   • go-errorlint: from 1.1.0 to 1.4.0
   • godox: bump to HEAD
   • lll: skip go command
   • loggercheck: from 0.9.3 to 0.9.4
   • musttag: from 0.4.5 to 0.5.0
   • nilnil: from 0.1.1 to 0.1.3
   • noctx: from 0.0.1 to 0.0.2
   • revive: from 1.2.5 to 1.3.1
   • rowserrcheck: remove limitation related to generics support
   • staticcheck: from 0.4.2 to 0.4.3
   • testpackage: from 1.1.0 to 1.1.1
   • tparallel: from 0.2.1 to 0.3.0
   • wastedassign: remove limitation related to generics support
   • wrapcheck: from 2.8.0 to 2.8.1
2. misc.
   • Add TeamCity output format
   • Consider path prefix when matching path patterns
   • Add Go version to version information
3. Documentation
   • Add Tekton in Trusted By page
   • Clarify that custom linters are not enabled by default
   • Remove description for deprecated "go" option

v1.51.2

Compare Source

1. updated linters
   • forbidigo: from 1.3.0 to 1.4.0
   • gci: from 0.9.0 to 0.9.1
   • go-critic: from 0.6.5 to 0.6.7
   • go-errorlint: from 1.0.6 to 1.1.0
   • gosec: from 2.14.0 to 2.15.0
   • musttag: from 0.4.4 to 0.4.5
   • staticcheck: from 0.4.0 to 0.4.2
   • tools: from 0.5.0 to 0.6.0
   • usestdlibvars: from 1.21.1 to 1.23.0
   • wsl: from 3.3.0 to 3.4.0
   • govet: enable timeformat by default
2. misc.
   • fix: cache status size calculation
   • add new source archive
3. Documentation
   • Improve installation section
   • Replace links to godoc.org with pkg.go.dev

v1.51.1

Compare Source

1. updated linters
   • ginkgolinter: from 0.7.1 to 0.8.1
   • ineffassign: bump to HEAD
   • musttag: from 0.4.3 to 0.4.4
   • sqlclosecheck: from 0.3.0 to 0.4.0
   • staticcheck: bump to v0.4.0
   • wastedassign: from 2.0.6 to 2.0.7
   • wrapcheck: from 2.7.0 to 2.8.0

v1.51.0

Compare Source

1. new linters
   • ginkgolinter: https://github.com/nunnatsa/ginkgolinter
   • musttag: https://github.com/tmzane/musttag
   • gocheckcompilerdirectives: https://github.com/leighmcculloch/gocheckcompilerdirectives
2. updated linters
   • bodyclose: to HEAD
   • dupword: from 0.0.7 to 0.0.9
   • errcheck: from 1.6.2 to 1.6.3
   • exhaustive: from 0.8.3 to 0.9.5
   • exportloopref: from 0.1.8 to 0.1.11
   • gci: from 0.8.1 to 0.9.0
   • ginkgolinter: from 0.6.0 to 0.7.1
   • go-errorlint: from 1.0.5 to 1.0.6
   • go-ruleguard: from 0.3.21 to 0.3.22
   • gocheckcompilerdirectives: from 1.1.0 to 1.2.1
   • gochecknoglobals: from 0.1.0 to 0.2.1
   • gomodguard: from 1.2.4 to 1.3.0
   • gosec: from 2.13.1 to 2.14.0
   • govet: Add timeformat to analysers
   • grouper: from 1.1.0 to 1.1.1
   • musttag: from 0.4.1 to 0.4.3
   • revive: from 1.2.4 to 1.2.5
   • tagliatelle: from 0.3.1 to 0.4.0
   • tenv: from 1.7.0 to 1.7.1
   • unparam: bump to HEAD
   • usestdlibvars: from 1.20.0 to 1.21.1
   • wsl: fix force-err-cuddling flag
3. misc.
   • go1.20 support
   • remove deprecated linters from presets
   • Build NetBSD binaries
   • Build loong64 binaries
4. Documentation
   • goimport: improve documentation for local-prefixes
   • gomnd: add missing always ignored functions
   • nolint: fix typo
   • tagliatelle usage typo
   • add note about binary requirement for plugin
   • cache preserving and colored output on docker runs
   • improve documentation about debugging.
   • improve Editor Integration section
   • More specific default cache directory
   • update output example to use valid checkstyle example; add json example

goreleaser/goreleaser (goreleaser/goreleaser)

v1.24.0

Compare Source

Changelog

New Features

• ee7a1e6: feat(artifactory): publish source archives too, log when no archives found (#​4586) (@​caarlos0)
• 189aa15: feat(blob): acl support for s3 (@​caarlos0)
• e800061: feat(blob): allow to customize whether to force path style (@​caarlos0)
• 88ebab0: feat(blob): cache_control (@​caarlos0)
• a342f02: feat(blob): content disposition (@​caarlos0)
• 5040227: feat(blob): deprecate disableSSL (@​caarlos0)
• 0f57398: feat(blob): deprecate kmskey (@​caarlos0)
• b294759: feat(nfpm): add .Format tmpl var (@​caarlos0)
• 765d534: feat(nfpm): support libraries (#​4587) (@​caarlos0)
• 1ba3138: feat(tmpl): .GitTreeState and .IsGitClean (@​caarlos0)
• 5d44ed1: feat(tmpl): contains (@​caarlos0)
• f724460: feat: --skip=chocolately (@​twpayne)
• 5e9f01e: feat: --skip=nfpm (@​caarlos0)
• 29f30b6: feat: deprecated changelog.skip in favor of changelog.disable (@​caarlos0)
• 12469c4: feat: store which action is being taken in the context (#​4508) (@​caarlos0)

Security updates

• e91a0f5: sec(deps): bump github.com/go-git/go-git/v5 from 5.7.0 to 5.11.0 (#​4505) (@​dependabot[bot])
• 5df54b7: sec: do not log env when --verbose (@​caarlos0)

Bug fixes

• ac398de: fix(brew): improve handling of single os (#​4562) (@​caarlos0)
• 917cae5: fix(config): handle relative git repos (#​4575) (@​aauren)
• 2ced7ac: fix(docker): remove --builder=default from default args when use=buildx (#​4566) (@​caarlos0)
• 7f95ff0: fix(nix): improve generated derivations (#​4582) (@​caarlos0)
• da30c39: fix(nix): prevent importing makeWrapper when it's not needed (@​caarlos0)
• 1e0d269: fix(nix): sourceRoot when using archives.wrap_in_directory (#​4550) (@​caarlos0)
• 003a881: fix(nix): use stdenvNoCC (@​caarlos0)
• 0becc41: fix(winget): schema (@​caarlos0)
• 2a71473: fix: Allow using double quotes for templates in Slack notifications (#​4555) (@​jamietanna)
• fe1bc52: fix: build does not run chocolatey (@​caarlos0)
• 6f72ac3: fix: improve linkedin error message (@​caarlos0)
• 6e0fc79: fix: improve skip details (#​4522) (@​caarlos0)
• 9ce21d3: fix: invalid jsonschema (@​caarlos0)
• 6097ea5: fix: possible nil pointers on logs (@​caarlos0)
• e7f4b10: fix: prevent having whitespaces in artifact names (#​4515) (@​caarlos0)
• 2ab840b: fix: remove disgo dependency (#​4521) (@​caarlos0)
• a0ead03: fix: typo in jsonschema (@​caarlos0)
• 1d44832: refactor(http): remove redundant nil check (#​4563) (@​Juneezee)
• bfa9e7f: refactor(winget): improve winget code (@​caarlos0)

Dependency updates

• 2de878e: feat(deps): bump github.com/aws/aws-sdk-go from 1.49.0 to 1.49.17 (@​dependabot[bot])
• 5c0c82a: feat(deps): bump github.com/aws/aws-sdk-go from 1.49.17 to 1.49.18 (@​dependabot[bot])
• f0bf2d7: feat(deps): bump github.com/cloudflare/circl from 1.3.5 to 1.3.7 (#​4525) (@​dependabot[bot])
• 8ac985b: feat(deps): bump golang from 1.21.5-alpine to 1.21.6-alpine (@​dependabot[bot])
• 835ee39: feat(deps): bump golang.org/x/oauth2 from 0.15.0 to 0.16.0 (#​4528) (@​dependabot[bot])
• 45d2152: fix(deps): bump code.gitea.io/sdk/gitea from 0.17.0 to 0.17.1 (#​4512) (@​dependabot[bot])
• 2a45266: fix(deps): bump github.com/goreleaser/nfpm/v2 from 2.35.1 to 2.35.2 (#​4519) (@​dependabot[bot])
• bbb6b5c: fix(deps): bump gocloud.dev from 0.35.0 to 0.36.0 (#​4506) (@​dependabot[bot])
• dcdd623: fix(deps): bump golang.org/x/sync from 0.5.0 to 0.6.0 (#​4518) (@​dependabot[bot])

Documentation updates

• afd8410: docs(blob): update (@​caarlos0)
• 87aa3b6: docs(blog): fixed backlinks, imported last post (@​caarlos0)
• 5bff616: docs(blog): import more posts (#​4544) (@​caarlos0)
• 29d55a7: docs(blog): import more posts (@​caarlos0)
• 75c23ab: docs: GitHub Actions code example (#​4516) (@​cafferata)
• aea2568: docs: add installation links for mkdocs and extensions (@​zimeg)
• e41178c: docs: add more details to the gon integration (@​caarlos0)
• 66b3daa: docs: announce v1.23.0 (@​caarlos0)
• 00c2ff7: docs: announce v1.24 (#​4602) (@​caarlos0)
• deaa221: docs: correct a typo in the apple notes (@​zimeg)
• 9e02a14: docs: document nightly oss install options (@​caarlos0)
• c8c7e3e: docs: fix description of AUR directory parameter (#​4581) (@​j178)
• 1feae08: docs: fix typo in link to nightly releases (@​zimeg)
• f62e945: docs: format (@​caarlos0)
• dd365c2: docs: github changeloger needs tags to be pushed (@​caarlos0)
• 368db21: docs: ignore medium.com in htmltest (@​caarlos0)
• 15e77cb: docs: include a section for running documentation (@​zimeg)
• d15dab3: docs: little formatting improvements (@​caarlos0)
• ea6910a: docs: udpate starcharts url (@​caarlos0)
• 325cea7: docs: update (@​caarlos0)
• 24722b0: docs: update (@​caarlos0)
• 87a2370: docs: update (@​caarlos0)
• 2489da3: docs: update continue --dist docs (@​caarlos0)
• be92144: docs: update deprecations page (@​caarlos0)
• e74c849: docs: update docs/readme.md (@​caarlos0)
• 46c639b: docs: update gitlab docs (@​caarlos0)
• 136b4d5: docs: update gon link (@​cfabianski)
• 1134f9b: docs: update run script (@​caarlos0)
• a4ecc87: docs: update users.md (@​caarlos0)
• d245afc: docs: updated the GitHub Code Search syntax (#​4579) (@​cafferata)

Build process updates

• 4d82016: build(nix): shell dont need CC (@​caarlos0)
• 0c90fb4: build: fix generate workflow (@​caarlos0)
• 48f036b: build: nix devShell (#​4507) (@​caarlos0)
• 90a1bbe: build: publish :nightly docker images (@​caarlos0)
• 28ced1d: build: remove duplicated schema generation (@​caarlos0)
• cbb288b: ci: change dependabot commit prefix to chore (@​caarlos0)
• 8e3b7ef: ci: dependabot automerge (@​caarlos0)
• 75c6d1a: ci: improve changelog (@​caarlos0)
• f07af4c: ci: remove dependabot auto approve (@​caarlos0)

Full Changelog: goreleaser/goreleaser@v1.23.0...v1.24.0

Helping out

This release is only possible thanks to all the support of some awesome people!

Want to be one of them?
You can sponsor, get a Pro License or contribute with code.

Where to go next?

• Find examples and commented usage of all options in our website.
• Reach out on Discord and Twitter!

v1.23.0

Compare Source

Changelog

New Features

• b149223: feat(docs): Update command in SLSA verification blog post (#​4420) (@​laurentsimon)
• ee14837: feat(homebrew): add os to dependency (#​4481) (@​caarlos0)
• dda1c70: feat(nix): validate licenses (#​4497) (@​caarlos0)
• 1d34568: feat(sbom): update default command (@​caarlos0)
• 27f0e33: feat(winget): support installing .exe directly (#​4498) (@​caarlos0)
• 22fa994: feat: allow to template builds.gobinary (#​4454) (@​caarlos0)
• 711490d: feat: aur dir (#​4484) (@​caarlos0)
• 25a054c: feat: improve --single-target (#​4442) (@​caarlos0)
• bd7933d: feat: improve project and build hooks error handling (@​caarlos0)
• 8f6b16f: feat: validate ko's main path (#​4429) (@​gabrielcipriano)

Bug fixes

• 8586878: fix(aur): support wrap_in_directory (#​4502) (@​caarlos0)
• aa9986e: fix(github): do not fail branch creation if it already exists (#​4471) (@​caarlos0)
• a09a0d7: fix(ko): error finishing with . (@​caarlos0)
• 2b9e471: fix(nix): include unzip if any artifact is a zip (#​4495) (@​caarlos0)
• 103b54b: fix(sbom): warn/error on wrong configuration (@​caarlos0)
• a85d049: fix(winget): improve schema (#​4489) (@​caarlos0)
• e33d053: fix: --single-target when no match (@​caarlos0)
• 159211a: fix: add -c flags when building go test (#​4473) (@​fl0Lec)
• 74e7064: fix: allow homebrew to use tar.xz format (#​4441) (@​jftuga)
• c0b2be3: fix: handle configs with no explicit targets on --single-target (@​caarlos0)
• 142b94c: fix: improve chocolatey no archive error handling and docs (@​caarlos0)
• 59a3eeb: fix: linkedin announce api changes (#​4428) (@​gabrielcipriano)

Dependency updates

• 00ea9f9: feat(deps): bump code.gitea.io/sdk/gitea from 0.16.0 to 0.17.0 (#​4459) (@​dependabot[bot])
• a5ae5cd: feat(deps): bump github.com/disgoorg/disgo from 0.16.11 to 0.16.12 (#​4422) (@​dependabot[bot])
• f9203ba: feat(deps): bump github.com/disgoorg/disgo from 0.16.12 to 0.17.0 (#​4434) (@​dependabot[bot])
• 3458c7f: feat(deps): bump github.com/google/go-containerregistry from 0.16.1 to 0.17.0 (#​4452) (@​dependabot[bot])
• 334cb89: feat(deps): bump github.com/google/ko from 0.15.0 to 0.15.1 (#​4435) (@​dependabot[bot])
• e39548d: feat(deps): bump github.com/google/uuid from 1.4.0 to 1.5.0 (#​4476) (@​dependabot[bot])
• 782dd54: feat(deps): bump github.com/goreleaser/nfpm/v2 from 2.34.0 to 2.35.0 (#​4492) (@​dependabot[bot])
• 3c6dcd8: feat(deps): bump github.com/sigstore/cosign/v2 from 2.1.1 to 2.2.1 (#​4419) (@​dependabot[bot])
• 182e103: feat(deps): bump github.com/xanzy/go-gitlab from 0.93.2 to 0.94.0 (#​4433) (@​dependabot[bot])
• 48d4d04: feat(deps): bump github.com/xanzy/go-gitlab from 0.94.0 to 0.95.1 (#​4468) (@​dependabot[bot])
• a096097: feat(deps): bump github.com/xanzy/go-gitlab from 0.95.1 to 0.95.2 (#​4477) (@​dependabot[bot])
• 52de4ac: feat(deps): bump gocloud.dev from 0.34.0 to 0.35.0 (#​4467) (@​dependabot[bot])
• c6b68aa: feat(deps): bump golang from 1.21.4-alpine to 1.21.5-alpine (#​4463) (@​dependabot[bot])
• fdf73bd: feat(deps): bump golang from 110b07a to 30a46e7 (#​4455) (@​dependabot[bot])
• 0222430: feat(deps): bump golang from 30a46e7 to 70afe55 (#​4457) (@​dependabot[bot])
• f0c4d71: feat(deps): bump golang from 5c1cabd to feceecc (#​4466) (@​dependabot[bot])
• d616c38: feat(deps): bump golang from feceecc to 4db4aac (#​4491) (@​dependabot[bot])
• 3bae110: feat(deps): bump golang.org/x/crypto from 0.16.0 to 0.17.0 (#​4485) (@​dependabot[bot])
• a73fcfc: feat(deps): bump golang.org/x/oauth2 from 0.13.0 to 0.14.0 (#​4416) (@​dependabot[bot])
• 5587cb2: feat(deps): bump golang.org/x/oauth2 from 0.14.0 to 0.15.0 (#​4445) (@​dependabot[bot])
• 5c2cbb3: feat(deps): bump golang.org/x/tools from 0.14.0 to 0.15.0 (#​4417) (@​dependabot[bot])
• 2f1162a: feat(deps): bump golang.org/x/tools from 0.15.0 to 0.16.0 (#​4444) (@​dependabot[bot])
• 7b5a858: feat(deps): bump golang.org/x/tools from 0.16.0 to 0.16.1 (#​4478) (@​dependabot[bot])
• 853275f: feat(deps): update go-github to v57 (@​caarlos0)
• 6e9ed05: feat(deps): update nfpm to latest (@​caarlos0)
• 7d29385: fix(deps): bump golang from 1.21.3-alpine to 1.21.4-alpine (#​4414) (@​dependabot[bot])

Build process updates

• 4f17fba: build: fix setup-task rate limit (@​caarlos0)
• 5a74601: build: fix typo (@​caarlos0)
• b0bf4eb: build: golangci config (@​caarlos0)
• 9d2162b: build: report only new lint problems (@​caarlos0)
• 18c109a: build: simplify changelog on nightly builds (@​caarlos0)
• be9ad4d: build: update workflow (@​caarlos0)

Other work

• a5f7678: SBOM improvements (#​4430) (@​caarlos0)
• 6bce81c: docs(azblob): correct auth to Azure storage service (#​4439) (@​librucha)
• d83243c: docs(sbom): improve sbom alternative example (@​caarlos0)
• 532879e: docs: Removed the duplicate GoReleaser Pro entry (#​4456) (@​cafferata)
• b7be447: docs: add flipt to USERS (@​caarlos0)
• 522ab11: docs: fix broken link (@​caarlos0)
• 3ec68fb: docs: fix broken link (@​caarlos0)
• 233c4bc: docs: fix changelog subgroups docs (@​caarlos0)
• d2c0e4c: docs: fix typo (#​4447) (@​EverythingSuckz)

---

Configuration

📅 Schedule: Branch creation - "before 4am" in timezone Etc/UTC, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.