Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package melange for openSUSE:Factory checked
in at 2024-12-10 23:44:11
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/melange (Old)
and /work/SRC/openSUSE:Factory/.melange.new.29675 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "melange"
Tue Dec 10 23:44:11 2024 rev:52 rq:1229714 version:0.17.4
Changes:
--------
--- /work/SRC/openSUSE:Factory/melange/melange.changes 2024-12-09
21:12:47.664035512 +0100
+++ /work/SRC/openSUSE:Factory/.melange.new.29675/melange.changes
2024-12-10 23:46:08.415076870 +0100
@@ -1,0 +2,12 @@
+Tue Dec 10 08:48:22 UTC 2024 - opensuse_buildserv...@ojkastl.de
+
+- Update to version 0.17.4:
+ * build(deps): bump golang.org/x/crypto from 0.29.0 to 0.30.0
+ * build(deps): bump github.com/chainguard-dev/clog
+ * build(deps): bump github.com/chainguard-dev/yam in the gomod
+ group
+ * melange/update block: provide config option to indicate that
+ automated pull requests should be merged in order rather than
+ superseding and closing previous unmerged PRs
+
+-------------------------------------------------------------------
Old:
----
melange-0.17.3.obscpio
New:
----
melange-0.17.4.obscpio
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ melange.spec ++++++
--- /var/tmp/diff_new_pack.cdr07a/_old 2024-12-10 23:46:09.703130565 +0100
+++ /var/tmp/diff_new_pack.cdr07a/_new 2024-12-10 23:46:09.707130732 +0100
@@ -17,7 +17,7 @@
Name: melange
-Version: 0.17.3
+Version: 0.17.4
Release: 0
Summary: Build APKs from source code
License: Apache-2.0
++++++ _service ++++++
--- /var/tmp/diff_new_pack.cdr07a/_old 2024-12-10 23:46:09.739132066 +0100
+++ /var/tmp/diff_new_pack.cdr07a/_new 2024-12-10 23:46:09.743132233 +0100
@@ -3,7 +3,7 @@
<param name="url">https://github.com/chainguard-dev/melange</param>
<param name="scm">git</param>
<param name="exclude">.git</param>
- <param name="revision">v0.17.3</param>
+ <param name="revision">v0.17.4</param>
<param name="versionformat">@PARENT_TAG@</param>
<param name="versionrewrite-pattern">v(.*)</param>
<param name="changesgenerate">enable</param>
++++++ _servicedata ++++++
--- /var/tmp/diff_new_pack.cdr07a/_old 2024-12-10 23:46:09.763133067 +0100
+++ /var/tmp/diff_new_pack.cdr07a/_new 2024-12-10 23:46:09.767133233 +0100
@@ -1,6 +1,6 @@
<servicedata>
<service name="tar_scm">
<param
name="url">https://github.com/chainguard-dev/melange</param>
- <param
name="changesrevision">e788406063b83b86bef24ce16665e82495fc77ff</param></service></servicedata>
+ <param
name="changesrevision">ec0e9d228ae25a0704cfde4fea7d011b8f05a8b5</param></service></servicedata>
(No newline at EOF)
++++++ melange-0.17.3.obscpio -> melange-0.17.4.obscpio ++++++
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/melange-0.17.3/docs/UPDATE.md
new/melange-0.17.4/docs/UPDATE.md
--- old/melange-0.17.3/docs/UPDATE.md 2024-12-07 05:31:23.000000000 +0100
+++ new/melange-0.17.4/docs/UPDATE.md 2024-12-09 17:03:38.000000000 +0100
@@ -25,7 +25,8 @@
update:
enabled: true # provide a flag to easily prevent a package from receiving
auto update PRs
manual: true # indicates that this package should be manually updated,
usually taking care over special version numbers which can be hard to automate
- shared: false # indicate that an update to this package requires an epoch
bump of downstream dependencies, e.g. golang, java
+ shared: false # indicate that an update to this package requires an epoch
bump of downstream dependencies, e.g. golang, java
+ require-sequential: true # Default: false - indicates that automated pull
requests should be merged in order rather than superseding and closing previous
unmerged PRs
release-monitor:
identifier: 38 # Mandatory, ID number for release monitor
strip-prefix: v # Optional, if the version obtained from the update
service contains a prefix which should be ignored
@@ -50,6 +51,7 @@
enabled: true # provide a flag to easily toggle a package from receiving
auto update PRs
manual: true # indicates that this package should be manually updated,
usually taking care over special version numbers which can be hard to automate
shared: false # indicate that an update to this package requires an epoch
bump of downstream dependencies, e.g. golang, java
+ require-sequential: true # Default: false - indicates that automated pull
requests should be merged in order rather than superseding and closing previous
unmerged PRs
github: # alternative today is `release_monitor:`
identifier: sigstore/cosign # Mandatory, org/repo for github
strip-prefix: v # Optional, if the version obtained from the update
service contains a prefix which should be ignored
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/melange-0.17.3/go.mod new/melange-0.17.4/go.mod
--- old/melange-0.17.3/go.mod 2024-12-07 05:31:23.000000000 +0100
+++ new/melange-0.17.4/go.mod 2024-12-09 17:03:38.000000000 +0100
@@ -6,9 +6,9 @@
chainguard.dev/apko v0.20.1
cloud.google.com/go/storage v1.47.0
dagger.io/dagger v0.14.0
- github.com/chainguard-dev/clog v1.5.1-0.20240811185937-4c523ae4593f
+ github.com/chainguard-dev/clog v1.5.1
github.com/chainguard-dev/go-pkgconfig
v0.0.0-20240404163941-6351b37b2a10
- github.com/chainguard-dev/yam v0.2.3
+ github.com/chainguard-dev/yam v0.2.4
github.com/charmbracelet/log v0.4.0
github.com/docker/cli v27.3.1+incompatible
github.com/docker/docker v27.3.1+incompatible
@@ -38,11 +38,11 @@
go.opentelemetry.io/otel v1.32.0
go.opentelemetry.io/otel/exporters/stdout/stdouttrace v1.32.0
go.opentelemetry.io/otel/sdk v1.32.0
- golang.org/x/crypto v0.29.0
+ golang.org/x/crypto v0.30.0
golang.org/x/exp v0.0.0-20241108190413-2d47ceb2692f
- golang.org/x/sync v0.9.0
- golang.org/x/sys v0.27.0
- golang.org/x/text v0.20.0
+ golang.org/x/sync v0.10.0
+ golang.org/x/sys v0.28.0
+ golang.org/x/text v0.21.0
golang.org/x/time v0.8.0
google.golang.org/api v0.207.0
gopkg.in/ini.v1 v1.67.0
@@ -215,7 +215,7 @@
golang.org/x/mod v0.22.0 // indirect
golang.org/x/net v0.31.0 // indirect
golang.org/x/oauth2 v0.24.0 // indirect
- golang.org/x/term v0.26.0 // indirect
+ golang.org/x/term v0.27.0 // indirect
google.golang.org/genproto v0.0.0-20241113202542-65e8d215514f //
indirect
google.golang.org/genproto/googleapis/api
v0.0.0-20241113202542-65e8d215514f // indirect
google.golang.org/genproto/googleapis/rpc
v0.0.0-20241113202542-65e8d215514f // indirect
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/melange-0.17.3/go.sum new/melange-0.17.4/go.sum
--- old/melange-0.17.3/go.sum 2024-12-07 05:31:23.000000000 +0100
+++ new/melange-0.17.4/go.sum 2024-12-09 17:03:38.000000000 +0100
@@ -85,14 +85,14 @@
github.com/census-instrumentation/opencensus-proto v0.4.1/go.mod
h1:4T9NM4+4Vw91VeyqjLS6ao50K5bOcLKN6Q42XnYaRYw=
github.com/cespare/xxhash/v2 v2.3.0
h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs=
github.com/cespare/xxhash/v2 v2.3.0/go.mod
h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
-github.com/chainguard-dev/clog v1.5.1-0.20240811185937-4c523ae4593f
h1:xRgn6phdh0RY1neJcftPVEcmb2AbvMvPZF44bFkxi+0=
-github.com/chainguard-dev/clog v1.5.1-0.20240811185937-4c523ae4593f/go.mod
h1:4+WFhRMsGH79etYXY3plYdp+tCz/KCkU8fAr0HoaPvs=
+github.com/chainguard-dev/clog v1.5.1
h1:LeFeVlxiicswuTevtaXc0MXH1zV1iWkbg+H8iUuBTtQ=
+github.com/chainguard-dev/clog v1.5.1/go.mod
h1:4+WFhRMsGH79etYXY3plYdp+tCz/KCkU8fAr0HoaPvs=
github.com/chainguard-dev/git-urls v1.0.2
h1:pSpT7ifrpc5X55n4aTTm7FFUE+ZQHKiqpiwNkJrVcKQ=
github.com/chainguard-dev/git-urls v1.0.2/go.mod
h1:rbGgj10OS7UgZlbzdUQIQpT0k/D4+An04HJY7Ol+Y/o=
github.com/chainguard-dev/go-pkgconfig v0.0.0-20240404163941-6351b37b2a10
h1:XR2vgQC024I9/boh9r1ihVv8Z14+pbvWqXeYMCnZJpc=
github.com/chainguard-dev/go-pkgconfig
v0.0.0-20240404163941-6351b37b2a10/go.mod
h1:1p6+MesLcjKeON5BRWa7I87mvAY0QmKjgginIM3w6BI=
-github.com/chainguard-dev/yam v0.2.3
h1:6CGnYngNDC+xfJb6LtNdBHhdEEyo63aMuDY1z9tgEuQ=
-github.com/chainguard-dev/yam v0.2.3/go.mod
h1:4iLVguWfrVj3HWyNoed3B5l1GhoctDRwdLbav/Upe/U=
+github.com/chainguard-dev/yam v0.2.4
h1://jh+1dbKkatmR7HESkIGOvZarA4/Tayu9WK/RrKSuY=
+github.com/chainguard-dev/yam v0.2.4/go.mod
h1:ON4NuAkA+DKjDul+AleGBxJ9ga04udJhuFLnVXwiyU0=
github.com/charmbracelet/lipgloss v1.0.0
h1:O7VkGDvqEdGi93X+DeqsQ7PKHDgtQfF8j8/O2qFMQNg=
github.com/charmbracelet/lipgloss v1.0.0/go.mod
h1:U5fy9Z+C38obMs+T+tJqst9VGzlOYGj4ri9reL3qUlo=
github.com/charmbracelet/log v0.4.0
h1:G9bQAcx8rWA2T3pWvx7YtPTPwgqpk7D68BX21IRW8ZM=
@@ -559,8 +559,8 @@
golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod
h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc=
golang.org/x/crypto v0.0.0-20220622213112-05595931fe9d/go.mod
h1:IxCIyHEi3zRg3s0A5j5BB6A9Jmi73HwBIUl50j+osU4=
golang.org/x/crypto v0.19.0/go.mod
h1:Iy9bg/ha4yyC70EfRS8jz+B6ybOBKMaSxLj6P6oBDfU=
-golang.org/x/crypto v0.29.0 h1:L5SG1JTTXupVV3n6sUqMTeWbjAyfPwoda2DLX8J8FrQ=
-golang.org/x/crypto v0.29.0/go.mod
h1:+F4F4N5hv6v38hfeYwTdx20oUvLLc+QfrE9Ax9HtgRg=
+golang.org/x/crypto v0.30.0 h1:RwoQn3GkWiMkzlX562cLB7OxWvjH1L8xutO2WoJcRoY=
+golang.org/x/crypto v0.30.0/go.mod
h1:kDsLvtWBEx7MV9tJOj9bnXsPbxwJQ6csT/x4KIN4Ssk=
golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod
h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
golang.org/x/exp v0.0.0-20241108190413-2d47ceb2692f
h1:XdNn9LlyWAhLVp6P/i8QYBW+hlyhrhei9uErw2B5GJo=
golang.org/x/exp v0.0.0-20241108190413-2d47ceb2692f/go.mod
h1:D5SMRVC3C2/4+F/DB1wZsLRnSNimn2Sp/NPsCrsv8ak=
@@ -605,8 +605,8 @@
golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod
h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod
h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM=
-golang.org/x/sync v0.9.0 h1:fEo0HyrW1GIgZdpbhCRO0PkJajUS5H9IFUztCgEo2jQ=
-golang.org/x/sync v0.9.0/go.mod h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
+golang.org/x/sync v0.10.0 h1:3NQrjDixjgGwUOCaF8w2+VYHv0Ve/vGYSbdkTa98gmQ=
+golang.org/x/sync v0.10.0/go.mod
h1:Czt+wKu1gCyEFDUtn0jG5QVvpJ6rzVqr5aXyt9drQfk=
golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod
h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
golang.org/x/sys v0.0.0-20180909124046-d0be0721c37e/go.mod
h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod
h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY=
@@ -634,15 +634,15 @@
golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
golang.org/x/sys v0.17.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
-golang.org/x/sys v0.27.0 h1:wBqf8DvsY9Y/2P8gAfPDEYNuS30J4lPHJxXSb/nJZ+s=
-golang.org/x/sys v0.27.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
+golang.org/x/sys v0.28.0 h1:Fksou7UEQUWlKvIdsqzJmUmCX3cZuD2+P3XyyzwMhlA=
+golang.org/x/sys v0.28.0/go.mod h1:/VUhepiaJMQUp4+oa/7Zr1D23ma6VTLIYjOOTFZPUcA=
golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod
h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod
h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k=
golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo=
golang.org/x/term v0.17.0/go.mod
h1:lLRBjIVuehSbZlaOtGMbcMncT+aqLLLmKrsjNrUguwk=
-golang.org/x/term v0.26.0 h1:WEQa6V3Gja/BhNxg540hBip/kkaYtRg3cxg4oXSw4AU=
-golang.org/x/term v0.26.0/go.mod
h1:Si5m1o57C5nBNQo5z1iq+XDijt21BDBDp2bK0QI8e3E=
+golang.org/x/term v0.27.0 h1:WP60Sv1nlK1T6SupCHbXzSaN0b9wUmsPoRS9b61A23Q=
+golang.org/x/term v0.27.0/go.mod
h1:iMsnZpn0cago0GOrHO2+Y7u7JPn5AylBrcoWkElMTSM=
golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
golang.org/x/text v0.3.6/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ=
@@ -650,8 +650,8 @@
golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8=
golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8=
golang.org/x/text v0.14.0/go.mod
h1:18ZOQIKpY8NJVqYksKHtTdi31H5itFRjB5/qKTNYzSU=
-golang.org/x/text v0.20.0 h1:gK/Kv2otX8gz+wn7Rmb3vT96ZwuoxnQlY+HlJVj7Qug=
-golang.org/x/text v0.20.0/go.mod
h1:D4IsuqiFMhST5bX19pQ9ikHC2GsaKyk/oF+pn3ducp4=
+golang.org/x/text v0.21.0 h1:zyQAAkrwaneQ066sspRyJaG9VNi/YJ1NfzcGB3hZ/qo=
+golang.org/x/text v0.21.0/go.mod
h1:4IBbMaMmOPCJ8SecivzSH54+73PCFmPWxNTLm+vZkEQ=
golang.org/x/time v0.8.0 h1:9i3RxcPv3PZnitoVGMPDKZSq1xW1gK1Xy3ArNOGZfEg=
golang.org/x/time v0.8.0/go.mod h1:3BpzKBy/shNhVucY/MWOyx10tF3SFh9QdLuxbVysPQM=
golang.org/x/tools v0.0.0-20180828015842-6cd1fcedba52/go.mod
h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ=
diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn'
'--exclude=.svnignore' old/melange-0.17.3/pkg/config/config.go
new/melange-0.17.4/pkg/config/config.go
--- old/melange-0.17.3/pkg/config/config.go 2024-12-07 05:31:23.000000000
+0100
+++ new/melange-0.17.4/pkg/config/config.go 2024-12-09 17:03:38.000000000
+0100
@@ -681,6 +681,8 @@
// Indicates that this package should be manually updated, usually
taking
// care over special version numbers
Manual bool `json:"manual,omitempty" yaml:"manual"`
+ // Indicates that automated pull requests should be merged in order
rather than superseding and closing previous unmerged PRs
+ RequireSequential bool `json:"require-sequential,omitempty"
yaml:"require-sequential"`
// Indicate that an update to this package requires an epoch bump of
// downstream dependencies, e.g. golang, java
Shared bool `json:"shared,omitempty" yaml:"shared,omitempty"`
++++++ melange.obsinfo ++++++
--- /var/tmp/diff_new_pack.cdr07a/_old 2024-12-10 23:46:10.135148575 +0100
+++ /var/tmp/diff_new_pack.cdr07a/_new 2024-12-10 23:46:10.139148742 +0100
@@ -1,5 +1,5 @@
name: melange
-version: 0.17.3
-mtime: 1733545883
-commit: e788406063b83b86bef24ce16665e82495fc77ff
+version: 0.17.4
+mtime: 1733760218
+commit: ec0e9d228ae25a0704cfde4fea7d011b8f05a8b5
++++++ vendor.tar.gz ++++++
/work/SRC/openSUSE:Factory/melange/vendor.tar.gz
/work/SRC/openSUSE:Factory/.melange.new.29675/vendor.tar.gz differ: char 5,
line 1
