Skip to content
Release Drafter

chore: Update module github.com/lestrrat-go/jwx to v2 #12

Sign in to view logs

chore: Update module github.com/lestrrat-go/jwx to v2

chore: Update module github.com/lestrrat-go/jwx to v2 #12

Triggered via pull request January 24, 2024 17:03
@renovaterenovate[bot]
edited #47
renovate_github.com-lestrrat-go-jwx-2.x
Status Success
Total duration 47s
Artifacts

release-drafter.yml

on: pull_request
update_release_draft
37s
update_release_draft
Fit to window
Zoom out
Zoom in

Annotations

2 errors
update_release_draft
Validation Failed: {"resource":"Release","code":"invalid","field":"target_commitish"} { name: 'HttpError', id: '7643644208', status: 422, response: { url: 'https://api.github.com/repos/nobl9/nobl9-go/releases/138374698', status: 422, headers: { 'access-control-allow-origin': '*', 'access-control-expose-headers': 'ETag, Link, Location, Retry-After, X-GitHub-OTP, X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Used, X-RateLimit-Resource, X-RateLimit-Reset, X-OAuth-Scopes, X-Accepted-OAuth-Scopes, X-Poll-Interval, X-GitHub-Media-Type, X-GitHub-SSO, X-GitHub-Request-Id, Deprecation, Sunset', connection: 'close', 'content-length': '195', 'content-security-policy': "default-src 'none'", 'content-type': 'application/json; charset=utf-8', date: 'Wed, 24 Jan 2024 17:04:29 GMT', 'github-authentication-token-expiration': '2025-01-16 00:00:00 +0100', 'referrer-policy': 'origin-when-cross-origin, strict-origin-when-cross-origin', server: 'GitHub.com', 'strict-transport-security': 'max-age=31536000; includeSubdomains; preload', vary: 'Accept-Encoding, Accept, X-Requested-With', 'x-accepted-github-permissions': 'contents=write', 'x-content-type-options': 'nosniff', 'x-frame-options': 'deny', 'x-github-api-version-selected': '2022-11-28', 'x-github-media-type': 'github.v3; format=json', 'x-github-request-id': 'F80F:6056:182D0DC:191054B:65B1431D', 'x-ratelimit-limit': '5000', 'x-ratelimit-remaining': '4927', 'x-ratelimit-reset': '1706118920', 'x-ratelimit-resource': 'core', 'x-ratelimit-used': '73', 'x-xss-protection': '0' }, data: { message: 'Validation Failed', errors: [ { resource: 'Release', code: 'invalid', field: 'target_commitish' } ], documentation_url: 'https://docs.github.com/rest/releases/releases#update-a-release' } }, request: { method: 'PATCH', url: 'https://api.github.com/repos/nobl9/nobl9-go/releases/138374698', headers: { accept: 'application/vnd.github.v3+json', 'user-agent': 'probot/12.2.5 octokit-core.js/3.5.1 Node.js/16.20.2 (linux; x64)', authorization: 'token [REDACTED]', 'content-type': 'application/json; charset=utf-8' }, body: `{"body":"# What's Changed\\n\\n## 🧰 Maintenance\\n\\n- chore: Update pull\\\\_request\\\\_template.md (#239) @nieomylnieja\\n\\n## 🤖 Dependency Updates\\n\\n- Update minor and patch golang dependencies (#233) @renovate\\n- Update golang.org/x/exp digest to db7319d (#236) @renovate\\n- Update module golang.org/x/tools/cmd/goimports to v0.17.0 (#237) @renovate\\n","draft":true,"prerelease":false,"make_latest":"true","name":"v0.77.3","tag_name":"v0.77.3","target_commitish":"refs/pull/47/merge"}`, request: {} }, event: { id: '7643644208', name: 'pull_request', payload: { action: 'edited', changes: { body: { from: '[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)\n' + '\n' + 'This PR contains the following updates:\n' + '\n' + '| Package | Change | Age | Adoption | Passing | Confidence |\n' + '|---|---|---|---|---|---|\n' + '| [github.com/lestrrat-go/jwx](https://togithub.com/lestrrat-go/jwx) | `v1.2.28` -> `v2.0.19` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2flestrrat-go%2fjwx/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2flestrrat-go%2fjwx/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2flestrrat-go%2fjwx/v1.2.28/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2flestrrat-go%2fjwx/v1.2.28/v2.0.19?slim=true)](h
update_release_draft
HttpError: Validation Failed: {"resource":"Release","code":"invalid","field":"target_commitish"} at /home/runner/work/_actions/release-drafter/release-drafter/v5/dist/index.js:8462:21 at processTicksAndRejections (node:internal/process/task_queues:96:5) at async Job.doExecute (/home/runner/work/_actions/release-drafter/release-drafter/v5/dist/index.js:30793:18) { name: 'AggregateError', event: { id: '7643644208', name: 'pull_request', payload: { action: 'edited', changes: { body: { from: '[![Mend Renovate](https://app.renovatebot.com/images/banner.svg)](https://renovatebot.com)\n' + '\n' + 'This PR contains the following updates:\n' + '\n' + '| Package | Change | Age | Adoption | Passing | Confidence |\n' + '|---|---|---|---|---|---|\n' + '| [github.com/lestrrat-go/jwx](https://togithub.com/lestrrat-go/jwx) | `v1.2.28` -> `v2.0.19` | [![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2flestrrat-go%2fjwx/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/go/github.com%2flestrrat-go%2fjwx/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![passing](https://developer.mend.io/api/mc/badges/compatibility/go/github.com%2flestrrat-go%2fjwx/v1.2.28/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2flestrrat-go%2fjwx/v1.2.28/v2.0.19?slim=true)](https://docs.renovatebot.com/merge-confidence/) |\n' + '\n' + '---\n' + '\n' + '### Release Notes\n' + '\n' + '<details>\n' + '<summary>lestrrat-go/jwx (github.com/lestrrat-go/jwx)</summary>\n' + '\n' + '### [`v2.0.19`](https://togithub.com/lestrrat-go/jwx/releases/tag/v2.0.19)\n' + '\n' + '[Compare Source](https://togithub.com/lestrrat-go/jwx/compare/v2.0.18...v2.0.19)\n' + '\n' + ' v2.0.19 09 Jan 2024\n' + ' [New Features]\n' + ' * [jws] Added jws.IsVerificationError to check if the error returned by `jws.Verify`\n' + ' was caused by actual verification step or something else, for example, while fetching\n' + ' a key from datasource\n' + '\n' + ' [Security Fixes]\n' + ' * [jws] JWS messages formated in full JSON format (i.e. not the compact format, which\n' + ` consists of three base64 strings concatenated with a '.') with missing "protected"\n` + ' headers could cause a panic, thereby introducing a possiblity of a DoS.\n' + '\n' + ' This has been fixed so that the `jws.Parse` function succeeds in parsing a JWS message\n' + ' lacking a protected header. Calling `jws.Verify` on this same JWS message will result\n' + ' in a failed verification attempt. Note that this behavior will differ slightly when\n' + ' parsing JWS messages in compact form, which result in an error.\n' + '\n' + '### [`v2.0.18`](https://togithub.com/lestrrat-go/jwx/releases/tag/v2.0.18)\n' + '\n' + '[Compare Source](https://togithub.com/lestrrat-go/jwx/compare/v2.0.17...v2.0.18)\n' + '\n' + ' v2.0.18 03 Dec 2023\n' + ' [Security Fixes]\n' + ' * [jwe] A large number in p2c parameter for PBKDF2 based encryptions could cause a DoS attack,\n' + ' similar to https://nvd.nist.gov/vuln/detail/CVE-2022-36083. All users who use JWE via this\n' + ' package should upgrade. While the JOSE spec allows for encryption using JWE on JWTs, users of\n' + ' the `jwt` package are not immediately susceptible unless they explicitly try