{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":52034309,"defaultBranch":"master","name":"zap","ownerLogin":"uber-go","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2016-02-18T19:52:56.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/19262598?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1714405583.0","currentOid":""},"activityList":{"items":[{"before":"5dc76fd5cd425a3e8e435a3907d97aa28b97ddf8","after":null,"ref":"refs/heads/dependabot/github_actions/golangci/golangci-lint-action-5","pushedAt":"2024-04-29T15:46:23.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mway","name":"Matt Way","path":"/mway","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/61755?s=80&v=4"}},{"before":"ed52ec03fc86806389deaf551500e7a48214ca62","after":"1a8ea366decc8407dda6f1db198425455e697b4b","ref":"refs/heads/master","pushedAt":"2024-04-29T15:46:22.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mway","name":"Matt Way","path":"/mway","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/61755?s=80&v=4"},"commit":{"message":"build(deps): bump golangci/golangci-lint-action from 4 to 5 (#1433)\n\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump golangci/golangci-lint-action from 4 to 5 (#1433)"}},{"before":null,"after":"5dc76fd5cd425a3e8e435a3907d97aa28b97ddf8","ref":"refs/heads/dependabot/github_actions/golangci/golangci-lint-action-5","pushedAt":"2024-04-29T15:32:38.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump golangci/golangci-lint-action from 4 to 5\n\nBumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 4 to 5.\n- [Release notes](https://github.com/golangci/golangci-lint-action/releases)\n- [Commits](https://github.com/golangci/golangci-lint-action/compare/v4...v5)\n\n---\nupdated-dependencies:\n- dependency-name: golangci/golangci-lint-action\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump golangci/golangci-lint-action from 4 to 5"}},{"before":"9f73a0287797f8c983140c651c30068fd2a3c64f","after":null,"ref":"refs/heads/dependabot/go_modules/tools/golang.org/x/vuln-1.1.0","pushedAt":"2024-04-23T18:12:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"sywhang","name":"Sung Yoon Whang","path":"/sywhang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/30421794?s=80&v=4"}},{"before":"3ffa0c00594205c2c623aa9493847217982b558d","after":"ed52ec03fc86806389deaf551500e7a48214ca62","ref":"refs/heads/master","pushedAt":"2024-04-23T18:12:04.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"sywhang","name":"Sung Yoon Whang","path":"/sywhang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/30421794?s=80&v=4"},"commit":{"message":"build(deps): bump golang.org/x/vuln from 1.0.1 to 1.1.0 in /tools (#1432)\n\nBumps [golang.org/x/vuln](https://github.com/golang/vuln) from 1.0.1 to\r\n1.1.0.\r\n
\r\nRelease notes\r\n

Sourced from golang.org/x/vuln's\r\nreleases.

\r\n
\r\n

v1.1.0

\r\n

This release brings minor improvements to govulncheck inner workings\r\nand a few bug fixes (#66139, #65590).

\r\n

Integration

\r\n

Govulncheck JSON now also contains scan mode as part of the Config\r\nmessage.

\r\n

Further, the Position\r\nin trace frames now contains only paths relative to their enclosing\r\nmodule. This could potentially break some existing clients, hence the\r\nbump of the minor version.

\r\n

Note that this change is made to allow for easier preservation of\r\nprivacy by the clients as now the file positions do not contain\r\ninformation about the local machine. This is also a portable solution.\r\nClients can reconstruct full paths for their local machine by joining\r\nthe Position relative paths with paths of the enclosing\r\nmodules on the local machine.

\r\n

v1.0.4

\r\n

This release brings an improved overhaul of the govulncheck textual\r\noutput. Findings at each detected level of precision (symbol,\r\npackage, or module) are communicated in their own section.

\r\n

By default, only the section with the user-specified precision mode\r\nis shown followed by a summary of other sections. A detailed description\r\nwith all of the sections can be obtained using a newly introduced\r\n-show verbose option.

\r\n

This release also brings improvements and fixes for error messages\r\nand binaries (#59731).

\r\n

Integration

\r\n

govulncheck (streaming) JSON now includes the code position of the\r\nvulnerable symbol. Where applicable, the .Position of the\r\nlast entry of a finding's trace is the code location defining the\r\n.Function.

\r\n

v1.0.3

\r\n

The major feature brought by this release is govulncheck -mode\r\nextract option. It enables users to extract a blob abstraction of\r\na binary whose size is typically much smaller than the binary itself.\r\nThe blob can be passed to govulncheck for analysis with the -mode\r\nbinary option. The users should not rely on the contents or the\r\nrepresentation of the blob.

\r\n

This release also brings several bug fixes (#65124, #65155,\r\nand #65130).

\r\n

v1.0.2

\r\n

This release brings minor improvements to the govulncheck textual\r\noutput and fixes for error messages (#59623, #64681),\r\nfixed version suggestion (#62276),\r\ndocumentation (e.g., #60166),\r\nand issues in dependencies (e.g., #64112).

\r\n

Support for analyzing stripped darwin binaries in govulncheck is\r\nadded as well (#61051).

\r\n

Integration

\r\n

govulncheck (streaming) JSON now emits an OSV message for each\r\nvulnerability associated with user modules and its transitive\r\ndependencies, regardless of the module version.

\r\n

As usual, govulncheck emits a module-level Finding if a vulnerability\r\nfor a module applies to the current module version.

\r\n
\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • a7188c6\r\ninternal/openvex: add vex types
    • \r\n
  • 4b737a9\r\ninternal/sarif: compute relative paths for findings
    • \r\n
  • 7bf0c05\r\ninternal/sarif: remove unused field
    • \r\n
  • 7b0e650\r\ngo.mod: update golang.org/x dependencies
    • \r\n
  • f1b1098\r\ninternal/sarif,internal/scan,internal/traces: clean up tests
    • \r\n
  • 33791bc\r\ninternal/sarif: add region part of the physical location
    • \r\n
  • d00c170\r\ninternal/sarif: add code flows
    • \r\n
  • 9fbf042\r\ncmd/govulncheck: clean up test
    • \r\n
  • efaa3ce\r\ncmd/govulncheck: make test case config data
    • \r\n
  • 7838670\r\ncmd/govulncheck: add comment capability to fixups
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=golang.org/x/vuln&package-manager=go_modules&previous-version=1.0.1&new-version=1.1.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"build(deps): bump golang.org/x/vuln from 1.0.1 to 1.1.0 in /tools (#1432"}},{"before":null,"after":"9f73a0287797f8c983140c651c30068fd2a3c64f","ref":"refs/heads/dependabot/go_modules/tools/golang.org/x/vuln-1.1.0","pushedAt":"2024-04-22T15:34:42.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump golang.org/x/vuln from 1.0.1 to 1.1.0 in /tools\n\nBumps [golang.org/x/vuln](https://github.com/golang/vuln) from 1.0.1 to 1.1.0.\n- [Release notes](https://github.com/golang/vuln/releases)\n- [Commits](https://github.com/golang/vuln/compare/v1.0.1...v1.1.0)\n\n---\nupdated-dependencies:\n- dependency-name: golang.org/x/vuln\n dependency-type: direct:production\n update-type: version-update:semver-minor\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump golang.org/x/vuln from 1.0.1 to 1.1.0 in /tools"}},{"before":"3909ad738fc158a1d7cdf32075cddb8363a5e87e","after":null,"ref":"refs/heads/prashant/stop-flush-race-deadlock","pushedAt":"2024-04-13T02:59:01.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"prashantv","name":"Prashant Varanasi","path":"/prashantv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/140159?s=80&v=4"}},{"before":"b15585bc7a2b383592004f75df35fa2088db5481","after":"3ffa0c00594205c2c623aa9493847217982b558d","ref":"refs/heads/master","pushedAt":"2024-04-13T02:59:00.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"prashantv","name":"Prashant Varanasi","path":"/prashantv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/140159?s=80&v=4"},"commit":{"message":"Fix deadlock when Stop and flush race (#1430)\n\nFixes #1428.\r\n\r\nStop signals the flush loop to end, but if the flush ticker has fired\r\nafter we took the lock, then it tries to `Sync`, and waits for the same\r\nlock that `Stop` is holding. This causes a deadlock, as `Stop` holds the\r\nlock waiting for flush to end.\r\n\r\nFix by waiting for the flush loop to end outside of the critical section.\r\n\r\nWe only need to wait (and call Sync) if the write syncer has been\r\ninitialized and stopped.","shortMessageHtmlLink":"Fix deadlock when Stop and flush race (#1430)"}},{"before":null,"after":"3909ad738fc158a1d7cdf32075cddb8363a5e87e","ref":"refs/heads/prashant/stop-flush-race-deadlock","pushedAt":"2024-04-12T06:14:19.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"prashantv","name":"Prashant Varanasi","path":"/prashantv","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/140159?s=80&v=4"},"commit":{"message":"Fix deadlock when Stop and flush race\n\nFixes #1428.\n\nStop signals the flush loop to end, but if the flush ticker has fired\nafter we took the lock, then it tries to `Sync`, and waits for the same\nlock that `Stop` is holding. This causes a deadlock, as `Stop` holds the\nlock waiting for flush to end.\n\nFix by waiting for the flush loop to end outside of the critical\nsection.\n\nWe only need to wait (and call Sync) if the write syncer has been\ninitialized and stopped.","shortMessageHtmlLink":"Fix deadlock when Stop and flush race"}},{"before":"b39f8b6b6a44d8371a87610be50cce58eeeaabcb","after":"b15585bc7a2b383592004f75df35fa2088db5481","ref":"refs/heads/master","pushedAt":"2024-04-02T19:52:10.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"JacobOaks","name":"Jacob Oaks","path":"/JacobOaks","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/11602410?s=80&v=4"},"commit":{"message":"ci: Fix golangci-lint installation (#1424)\n\n`golangci-lint run` no longer accepts `--version`,\r\nso the hack we employ to install it using the official action\r\nno longer works.\r\n\r\nThis replaces the flag with `--help`, and fixes broken CI.\r\n\r\nResolves #1423\r\n\r\n---------\r\n\r\nSigned-off-by: junya koyama \r\nCo-authored-by: Abhinav Gupta ","shortMessageHtmlLink":"ci: Fix golangci-lint installation (#1424)"}},{"before":"8f5ee80ab2dbc713823341ce30334cd9c03a98e5","after":"b39f8b6b6a44d8371a87610be50cce58eeeaabcb","ref":"refs/heads/master","pushedAt":"2024-03-07T17:18:46.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"tchung1118","name":"Taiwon Chung","path":"/tchung1118","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/2008812?s=80&v=4"},"commit":{"message":"zapcore: Improve errors unit tests (#1414)\n\nUpdates and adds some unit tests for the zapcore/errors.go file.","shortMessageHtmlLink":"zapcore: Improve errors unit tests (#1414)"}},{"before":"a3ea3cb4337124f37777ca7f86e1c46adb5394ea","after":null,"ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4","pushedAt":"2024-02-20T21:27:14.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"JacobOaks","name":"Jacob Oaks","path":"/JacobOaks","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/11602410?s=80&v=4"}},{"before":"fcf8ee58669e358bbd6460bef5c2ee7a53c0803a","after":"8f5ee80ab2dbc713823341ce30334cd9c03a98e5","ref":"refs/heads/master","pushedAt":"2024-02-20T21:27:13.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"JacobOaks","name":"Jacob Oaks","path":"/JacobOaks","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/11602410?s=80&v=4"},"commit":{"message":"build(deps): bump codecov/codecov-action from 3 to 4 (#1410)\n\nBumps\r\n[codecov/codecov-action](https://github.com/codecov/codecov-action) from\r\n3 to 4.\r\n
\r\nRelease notes\r\n

Sourced from codecov/codecov-action's\r\nreleases.

\r\n
\r\n

v4.0.0

\r\n

v4 of the Codecov Action uses the CLI as the\r\nunderlying upload. The CLI has helped to power new features including\r\nlocal upload, the global upload token, and new upcoming features.

\r\n

Breaking Changes

\r\n
    \r\n
  • The Codecov Action runs as a node20 action due to\r\nnode16 deprecation. See this\r\npost from GitHub on how to migrate.
    • \r\n
  • Tokenless uploading is unsupported. However, PRs made from forks to\r\nthe upstream public repos will support tokenless (e.g. contributors to\r\nOS projects do not need the upstream repo's Codecov token). This doc\r\nshows instructions on how to add the Codecov token.
    • \r\n
  • OS platforms have been added, though some may not be automatically\r\ndetected. To see a list of platforms, see our CLI download page
    • \r\n
  • Various arguments to the Action have been changed. Please be aware\r\nthat the arguments match with the CLI's needs
    • \r\n
\r\n

v3 versions and below will not have access to CLI\r\nfeatures (e.g. global upload token, ATS).

\r\n

What's Changed

\r\n
    \r\n
  • build(deps): bump openpgp from 5.8.0 to 5.9.0 by @​dependabot in codecov/codecov-action#985
    • \r\n
  • build(deps): bump actions/checkout from 3.0.0 to 3.5.3 by @​dependabot in codecov/codecov-action#1000
    • \r\n
  • build(deps): bump ossf/scorecard-action from 2.1.3 to 2.2.0 by @​dependabot in codecov/codecov-action#1006
    • \r\n
  • build(deps): bump tough-cookie from 4.0.0 to 4.1.3 by @​dependabot in codecov/codecov-action#1013
    • \r\n
  • build(deps-dev): bump word-wrap from 1.2.3 to 1.2.4 by @​dependabot in codecov/codecov-action#1024
    • \r\n
  • build(deps): bump node-fetch from 3.3.1 to 3.3.2 by @​dependabot in codecov/codecov-action#1031
    • \r\n
  • build(deps-dev): bump @​types/node from 20.1.4 to\r\n20.4.5 by @​dependabot in codecov/codecov-action#1032
    • \r\n
  • build(deps): bump github/codeql-action from 1.0.26 to 2.21.2 by @​dependabot in codecov/codecov-action#1033
    • \r\n
  • build commit,report and upload args based on codecovcli by @​dana-yaish in codecov/codecov-action#943
    • \r\n
  • build(deps-dev): bump @​types/node from 20.4.5 to\r\n20.5.3 by @​dependabot in codecov/codecov-action#1055
    • \r\n
  • build(deps): bump github/codeql-action from 2.21.2 to 2.21.4 by @​dependabot in codecov/codecov-action#1051
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.3 to\r\n20.5.4 by @​dependabot in codecov/codecov-action#1058
    • \r\n
  • chore(deps): update outdated deps by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1059
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.4 to\r\n20.5.6 by @​dependabot in codecov/codecov-action#1060
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n6.4.1 to 6.5.0 by @​dependabot in codecov/codecov-action#1065
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.4.1 to 6.5.0 by @​dependabot in codecov/codecov-action#1064
    • \r\n
  • build(deps): bump actions/checkout from 3.5.3 to 3.6.0 by @​dependabot in codecov/codecov-action#1063
    • \r\n
  • build(deps-dev): bump eslint from 8.47.0 to 8.48.0 by @​dependabot in codecov/codecov-action#1061
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.6 to\r\n20.5.7 by @​dependabot in codecov/codecov-action#1062
    • \r\n
  • build(deps): bump openpgp from 5.9.0 to 5.10.1 by @​dependabot in codecov/codecov-action#1066
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.7 to\r\n20.5.9 by @​dependabot in codecov/codecov-action#1070
    • \r\n
  • build(deps): bump github/codeql-action from 2.21.4 to 2.21.5 by @​dependabot in codecov/codecov-action#1069
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.5.0 to 6.6.0 by @​dependabot in codecov/codecov-action#1072
    • \r\n
  • Update README.md by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1073
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n6.5.0 to 6.6.0 by @​dependabot in codecov/codecov-action#1071
    • \r\n
  • build(deps-dev): bump @​vercel/ncc from 0.36.1 to\r\n0.38.0 by @​dependabot in codecov/codecov-action#1074
    • \r\n
  • build(deps): bump @​actions/core from 1.10.0 to 1.10.1\r\nby @​dependabot\r\nin codecov/codecov-action#1081
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.6.0 to 6.7.0 by @​dependabot in codecov/codecov-action#1080
    • \r\n
  • build(deps): bump actions/checkout from 3.6.0 to 4.0.0 by @​dependabot in codecov/codecov-action#1078
    • \r\n
  • build(deps): bump actions/upload-artifact from 3.1.2 to 3.1.3 by @​dependabot in codecov/codecov-action#1077
    • \r\n
  • build(deps-dev): bump @​types/node from 20.5.9 to\r\n20.6.0 by @​dependabot in codecov/codecov-action#1075
    • \r\n
  • build(deps-dev): bump @​typescript-eslint/parser from\r\n6.6.0 to 6.7.0 by @​dependabot in codecov/codecov-action#1079
    • \r\n
  • build(deps-dev): bump eslint from 8.48.0 to 8.49.0 by @​dependabot in codecov/codecov-action#1076
    • \r\n
  • use cli instead of node uploader by @​dana-yaish in codecov/codecov-action#1068
    • \r\n
  • chore(release): 4.0.0-beta.1 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1084
    • \r\n
  • not adding -n if empty to do-upload command by @​dana-yaish in codecov/codecov-action#1085
    • \r\n
  • 4.0.0-beta.2 by @​thomasrockhu-codecov\r\nin codecov/codecov-action#1086
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nChangelog\r\n

Sourced from codecov/codecov-action's\r\nchangelog.

\r\n
\r\n

4.0.0-beta.2

\r\n

Fixes

\r\n
    \r\n
  • #1085\r\nnot adding -n if empty to do-upload command
    • \r\n
\r\n

4.0.0-beta.1

\r\n

v4 represents a move from the universal uploader to the\r\nCodecov CLI.\r\nAlthough this will unlock new features for our users, the CLI is not yet\r\nat feature parity with the universal uploader.

\r\n

Breaking Changes

\r\n
    \r\n
  • No current support for aarch64 and alpine\r\narchitectures.
    • \r\n
  • Tokenless uploading is unsuported
    • \r\n
  • Various arguments to the Action have been removed
    • \r\n
\r\n

3.1.4

\r\n

Fixes

\r\n
    \r\n
  • #967\r\nFix typo in README.md
    • \r\n
  • #971\r\nfix: add back in working dir
    • \r\n
  • #969\r\nfix: CLI option names for uploader
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • #970\r\nbuild(deps-dev): bump @​types/node from 18.15.12 to\r\n18.16.3
    • \r\n
  • #979\r\nbuild(deps-dev): bump @​types/node from 20.1.0 to\r\n20.1.2
    • \r\n
  • #981\r\nbuild(deps-dev): bump @​types/node from 20.1.2 to\r\n20.1.4
    • \r\n
\r\n

3.1.3

\r\n

Fixes

\r\n
    \r\n
  • #960\r\nfix: allow for aarch64 build
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • #957\r\nbuild(deps-dev): bump jest-junit from 15.0.0 to 16.0.0
    • \r\n
  • #958\r\nbuild(deps): bump openpgp from 5.7.0 to 5.8.0
    • \r\n
  • #959\r\nbuild(deps-dev): bump @​types/node from 18.15.10 to\r\n18.15.12
    • \r\n
\r\n

3.1.2

\r\n

Fixes

\r\n
    \r\n
  • #718\r\nUpdate README.md
    • \r\n
  • #851\r\nRemove unsupported path_to_write_report argument
    • \r\n
  • #898\r\ncodeql-analysis.yml
    • \r\n
  • #901\r\nUpdate README to contain correct information - inputs and negate\r\nfeature
    • \r\n
  • #955\r\nfix: add in all the extra arguments for uploader
    • \r\n
\r\n

Dependencies

\r\n
    \r\n
  • #819\r\nbuild(deps): bump openpgp from 5.4.0 to 5.5.0
    • \r\n
  • #835\r\nbuild(deps): bump node-fetch from 3.2.4 to 3.2.10
    • \r\n
  • #840\r\nbuild(deps): bump ossf/scorecard-action from 1.1.1 to 2.0.4
    • \r\n
  • #841\r\nbuild(deps): bump @​actions/core from 1.9.1 to 1.10.0
    • \r\n
  • #843\r\nbuild(deps): bump @​actions/github from 5.0.3 to 5.1.1
    • \r\n
  • #869\r\nbuild(deps): bump node-fetch from 3.2.10 to 3.3.0
    • \r\n
  • #872\r\nbuild(deps-dev): bump jest-junit from 13.2.0 to 15.0.0
    • \r\n
  • #879\r\nbuild(deps): bump decode-uri-component from 0.2.0 to 0.2.2
    • \r\n
\r\n\r\n
\r\n

... (truncated)

\r\n
\r\n
\r\nCommits\r\n
    \r\n
  • e0b68c6\r\nfix: show both token uses in readme (#1250)
    • \r\n
  • 1f9f557\r\nAdd all args (#1245)
    • \r\n
  • 09686fc\r\nUpdate README.md (#1243)
    • \r\n
  • f30e495\r\nfix: update action.yml (#1240)
    • \r\n
  • a7b945c\r\nfix: allow for other archs (#1239)
    • \r\n
  • 98ab2c5\r\nUpdate package.json (#1238)
    • \r\n
  • 43235cc\r\nUpdate README.md (#1237)
    • \r\n
  • 0cf8684\r\nchore(ci): bump to node20 (#1236)
    • \r\n
  • 8e1e730\r\nbuild(deps-dev): bump @​typescript-eslint/eslint-plugin\r\nfrom 6.19.1 to 6.20.0 ...
    • \r\n
  • 61293af\r\nbuild(deps-dev): bump @​typescript-eslint/parser from\r\n6.19.1 to 6.20.0 (#1235)
    • \r\n
  • Additional commits viewable in compare\r\nview
    • \r\n
\r\n
\r\n
\r\n\r\n\r\n[![Dependabot compatibility\r\nscore](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=codecov/codecov-action&package-manager=github_actions&previous-version=3&new-version=4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n
\r\nDependabot commands and options\r\n
\r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\n\r\n\r\n
\r\n\r\n---------\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>\r\nCo-authored-by: Jacob Oaks ","shortMessageHtmlLink":"build(deps): bump codecov/codecov-action from 3 to 4 (#1410)"}},{"before":"1ead6a2a2f90b081775ff7637d9bcd580cca0741","after":"a3ea3cb4337124f37777ca7f86e1c46adb5394ea","ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4","pushedAt":"2024-02-20T21:25:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"JacobOaks","name":"Jacob Oaks","path":"/JacobOaks","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/11602410?s=80&v=4"},"commit":{"message":"inject codecov secret into codecov action","shortMessageHtmlLink":"inject codecov secret into codecov action"}},{"before":"e5a56ee593d51f611de3a73cf3140f1c1927d68e","after":"fcf8ee58669e358bbd6460bef5c2ee7a53c0803a","ref":"refs/heads/master","pushedAt":"2024-02-20T20:55:06.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"sywhang","name":"Sung Yoon Whang","path":"/sywhang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/30421794?s=80&v=4"},"commit":{"message":"Release v1.27.0 (#1419)\n\nCo-authored-by: Abhinav Gupta ","shortMessageHtmlLink":"Release v1.27.0 (#1419)"}},{"before":"0e2aa4e0412dfb49d87f9ec96b47c8296189cfa3","after":"e5a56ee593d51f611de3a73cf3140f1c1927d68e","ref":"refs/heads/master","pushedAt":"2024-02-20T17:18:30.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"sywhang","name":"Sung Yoon Whang","path":"/sywhang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/30421794?s=80&v=4"},"commit":{"message":"Add WithPanicHook logger option for panic log tests (#1416)\n\nAdd a `WithPanicHook` logger option that allows callers to specify\r\ncustom behavior besides panicking on Panic/DPanic logs. This is similar\r\nto what we already have with the WithFatal hook implemented in\r\nhttps://github.com/uber-go/zap/pull/861.\r\n\r\nThis will make it possible to unit test Panic log cases like the one we\r\nhad with our periodic runner which was impossible because of\r\nunrecoverable panics in another go routine.\r\n\r\nAdded unit tests and they pass.\r\n\r\n```\r\n$ make test\r\n? go.uber.org/zap/internal [no test files]\r\n? go.uber.org/zap/internal/bufferpool [no test files]\r\nok go.uber.org/zap (cached)\r\n? go.uber.org/zap/internal/readme [no test files]\r\nok go.uber.org/zap/buffer (cached)\r\nok go.uber.org/zap/internal/color (cached)\r\nok go.uber.org/zap/internal/exit (cached)\r\nok go.uber.org/zap/internal/pool (cached)\r\nok go.uber.org/zap/internal/stacktrace (cached)\r\nok go.uber.org/zap/internal/ztest (cached)\r\nok go.uber.org/zap/zapcore (cached)\r\nok go.uber.org/zap/zapgrpc (cached)\r\nok go.uber.org/zap/zapio (cached)\r\nok go.uber.org/zap/zaptest (cached)\r\nok go.uber.org/zap/zaptest/observer (cached)\r\nok go.uber.org/zap/exp/zapfield (cached)\r\nok go.uber.org/zap/exp/zapslog (cached)\r\nok go.uber.org/zap/benchmarks (cached) [no tests to run]\r\nok go.uber.org/zap/zapgrpc/internal/test (cached)\r\n```\r\n\r\nCloses #1415","shortMessageHtmlLink":"Add WithPanicHook logger option for panic log tests (#1416)"}},{"before":"956a21c19cf77ea7a78f9f08ca44b6f77f95053a","after":"0e2aa4e0412dfb49d87f9ec96b47c8296189cfa3","ref":"refs/heads/master","pushedAt":"2024-02-17T20:44:55.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"abhinav","name":"Abhinav Gupta","path":"/abhinav","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/41730?s=80&v=4"},"commit":{"message":"assets: Fix logo color profile (#1418)\n\nThe image was created in the Color LCD color profile,\r\nbut exported as sRGB.\r\nThis resulted in washed out colors in the final image.\r\nThis fixes it by converting the color profile to sRGB before exporting,\r\nand adds a little more contrast to the image.","shortMessageHtmlLink":"assets: Fix logo color profile (#1418)"}},{"before":"2a893f61347ef844d78dcb4ad3b454ee11ae7641","after":"956a21c19cf77ea7a78f9f08ca44b6f77f95053a","ref":"refs/heads/master","pushedAt":"2024-02-13T18:36:33.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"r-hang","name":null,"path":"/r-hang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42982339?s=80&v=4"},"commit":{"message":"Add methods for logging with level as argument (#1406)\n\nAdding generic `Log`, `Logf`, `Logw` and `Logln` methods to Sugared\r\nlogger.\r\n\r\nWhen I need to do a wrapper around Zap logger to pass that into 3rd\r\nparty library for unifying logging, it might come handy to use\r\nzap.Log(level, ...) instead of switch or if-else if chain.\r\n\r\nHowever, now I need to do a same wrapper but with Sugared logger. And\r\nthat doesn't support general Log method.\r\n\r\nMore description in https://github.com/uber-go/zap/issues/1405","shortMessageHtmlLink":"Add methods for logging with level as argument (#1406)"}},{"before":"2705622d1b6f7f44a0e8a88c270055f0209c3a49","after":null,"ref":"refs/heads/dependabot/github_actions/golangci/golangci-lint-action-4","pushedAt":"2024-02-12T15:24:35.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"mway","name":"Matt Way","path":"/mway","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/61755?s=80&v=4"}},{"before":"e5745d6095ecc2497281569e8713835f2c4a029f","after":"2a893f61347ef844d78dcb4ad3b454ee11ae7641","ref":"refs/heads/master","pushedAt":"2024-02-12T15:24:34.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"mway","name":"Matt Way","path":"/mway","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/61755?s=80&v=4"},"commit":{"message":"build(deps): bump golangci/golangci-lint-action from 3 to 4 (#1417)","shortMessageHtmlLink":"build(deps): bump golangci/golangci-lint-action from 3 to 4 (#1417)"}},{"before":null,"after":"2705622d1b6f7f44a0e8a88c270055f0209c3a49","ref":"refs/heads/dependabot/github_actions/golangci/golangci-lint-action-4","pushedAt":"2024-02-12T15:04:07.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump golangci/golangci-lint-action from 3 to 4\n\nBumps [golangci/golangci-lint-action](https://github.com/golangci/golangci-lint-action) from 3 to 4.\n- [Release notes](https://github.com/golangci/golangci-lint-action/releases)\n- [Commits](https://github.com/golangci/golangci-lint-action/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: golangci/golangci-lint-action\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump golangci/golangci-lint-action from 3 to 4"}},{"before":"7db06bc9b095571d3dc3d4eebdfbe4dd9bd20405","after":"e5745d6095ecc2497281569e8713835f2c4a029f","ref":"refs/heads/master","pushedAt":"2024-02-07T14:39:27.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"JacobOaks","name":"Jacob Oaks","path":"/JacobOaks","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/11602410?s=80&v=4"},"commit":{"message":"ci: Test with Go 1.22 (#1409)\n\nWith the release of Go 1.22,\r\nCI should run against Go 1.21 and 1.22","shortMessageHtmlLink":"ci: Test with Go 1.22 (#1409)"}},{"before":"35ded09102db8ce0b2eba3e87f54ba6ce14f2359","after":"7db06bc9b095571d3dc3d4eebdfbe4dd9bd20405","ref":"refs/heads/master","pushedAt":"2024-02-06T18:26:17.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"abhinav","name":"Abhinav Gupta","path":"/abhinav","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/41730?s=80&v=4"},"commit":{"message":"zapslog: rename Option to HandlerOption (#1411)\n\nRefs #1333\r\n\r\nRename `Option` to `HandlerOption` to avoid future conflicts with\r\n[zap.Option](https://pkg.go.dev/go.uber.org/zap#Option).\r\nThere is no change in functionality.\r\n\r\nThis is a breaking change to zapslog,\r\nbut the package is currently marked experimental.\r\nThis will allow us to stabilize it.\r\n\r\n---------\r\n\r\nSigned-off-by: junya koyama ","shortMessageHtmlLink":"zapslog: rename Option to HandlerOption (#1411)"}},{"before":"2eb91072a702e63e066ab7e0d31d11caf96cd829","after":null,"ref":"refs/heads/mway/slog-attrs","pushedAt":"2024-02-05T18:00:31.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"abhinav","name":"Abhinav Gupta","path":"/abhinav","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/41730?s=80&v=4"}},{"before":"27b96e378909082d0bf2f0c5802a9f648150fe98","after":"35ded09102db8ce0b2eba3e87f54ba6ce14f2359","ref":"refs/heads/master","pushedAt":"2024-02-05T17:59:30.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"abhinav","name":"Abhinav Gupta","path":"/abhinav","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/41730?s=80&v=4"},"commit":{"message":"zapslog: fix all with slogtest, support inline group, ignore empty group. (#1408)\n\nThis change adds a test based on testing/slogtest\r\nthat verifies compliance with the slog handler contract\r\n(a draft of this was available in #1335),\r\nand fixes all resulting issues.\r\n\r\nThe two remaining issues were:\r\n\r\n- `Group(\"\", attrs)` should inline the new fields\r\n instead of creating a group with an empty name.\r\n This was fixed with the use of `zap.Inline`.\r\n- Groups without any attributes should not be created.\r\n That is, `logger.WithGroup(\"foo\").Info(\"bar\")` should not\r\n create an empty \"foo\" namespace (`\"foo\": {}`).\r\n This was fixed by keeping track of unapplied groups\r\n and applying them the first time a field is serialized.\r\n\r\nFollowing this change, slogtest passes as expected.\r\n\r\nRefs #1333\r\nResolves #1334, #1401, #1402\r\nSupersedes #1263, #1335\r\n\r\n### TESTS\r\n\r\n- passed. https://github.com/arukiidou/zap/pull/1\r\n- This also works in Go 1.22\r\n\r\n---------\r\n\r\nSigned-off-by: junya koyama \r\nCo-authored-by: Abhinav Gupta ","shortMessageHtmlLink":"zapslog: fix all with slogtest, support inline group, ignore empty gr…"}},{"before":null,"after":"1ead6a2a2f90b081775ff7637d9bcd580cca0741","ref":"refs/heads/dependabot/github_actions/codecov/codecov-action-4","pushedAt":"2024-02-05T15:25:10.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"build(deps): bump codecov/codecov-action from 3 to 4\n\nBumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 3 to 4.\n- [Release notes](https://github.com/codecov/codecov-action/releases)\n- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/codecov/codecov-action/compare/v3...v4)\n\n---\nupdated-dependencies:\n- dependency-name: codecov/codecov-action\n dependency-type: direct:production\n update-type: version-update:semver-major\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"build(deps): bump codecov/codecov-action from 3 to 4"}},{"before":"70f61bb342203a50f8192b05f7faf40a0f809a91","after":"27b96e378909082d0bf2f0c5802a9f648150fe98","ref":"refs/heads/master","pushedAt":"2024-01-31T17:36:47.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"r-hang","name":null,"path":"/r-hang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42982339?s=80&v=4"},"commit":{"message":"Make zaptest.NewTestingWriter public (#1399)\n\n**Add more flexibility in configuring zap logger for tests.**\r\n\r\nThe default `zapcore.Core`, which is created in `zaptest.NewLogger()`\r\nmay not be suitable for all use-cases.\r\n\r\n```\r\nfunc NewLogger(t TestingT, opts ...LoggerOption) *zap.Logger {\r\n...\r\n\treturn zap.New(\r\n\t\tzapcore.NewCore(\r\n\t\t\tzapcore.NewConsoleEncoder(zap.NewDevelopmentEncoderConfig()),\r\n\t\t\twriter,\r\n\t\t\tcfg.Level,\r\n\t\t),\r\n\t\tzapOptions...,\r\n\t)\r\n```\r\n\r\nE.g., we may need custom encoder or encoder config.\r\n\r\nThis PR allows us to do such customization:\r\n```\r\nwriter := zaptest.NewTestingWriter(t)\r\ncore := zapcore.NewCore(encoder, writer, level)\r\nlogger := zap.New(core, zap.AddCaller())\r\n```","shortMessageHtmlLink":"Make zaptest.NewTestingWriter public (#1399)"}},{"before":"d27427d23f81dba1f048d6034d5f286572049e1e","after":"70f61bb342203a50f8192b05f7faf40a0f809a91","ref":"refs/heads/master","pushedAt":"2024-01-29T03:18:15.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"abhinav","name":"Abhinav Gupta","path":"/abhinav","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/41730?s=80&v=4"},"commit":{"message":"zapslog: Bump zap from v1.24.0 to v1.26.0 (#1404)\n\nChanges: https://github.com/uber-go/zap/compare/v1.24.0...v1.26.0","shortMessageHtmlLink":"zapslog: Bump zap from v1.24.0 to v1.26.0 (#1404)"}},{"before":"a5ce90738220f0928e720fca71cae9a46343241b","after":"582d335d10ded2d2d933aae5de9450fc36c1042b","ref":"refs/heads/rhang/sanitize-zap-open","pushedAt":"2023-12-22T02:49:28.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"r-hang","name":null,"path":"/r-hang","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/42982339?s=80&v=4"},"commit":{"message":"remove sanitization test","shortMessageHtmlLink":"remove sanitization test"}},{"before":"ba41f97162bfc4ecbc3670bb311011a52fdf7954","after":"a5ce90738220f0928e720fca71cae9a46343241b","ref":"refs/heads/rhang/sanitize-zap-open","pushedAt":"2023-12-20T13:50:12.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"abhinav","name":"Abhinav Gupta","path":"/abhinav","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/41730?s=80&v=4"},"commit":{"message":"Sanitize in newFileSinkFromURL","shortMessageHtmlLink":"Sanitize in newFileSinkFromURL"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAAEPSTcdgA","startCursor":null,"endCursor":null}},"title":"Activity · uber-go/zap"}