chore(deps): bump github.com/gofrs/uuid/v5 from 5.3.0 to 5.3.1 by dependabot[bot] · Pull Request #723 · flant/shell-operator

dependabot · 2025-03-03T17:13:08Z

Bumps github.com/gofrs/uuid/v5 from 5.3.0 to 5.3.1.

Release notes

Sourced from github.com/gofrs/uuid/v5's releases.

v5.3.1

Summary

This release fixes the calculation of times from version 7 UUIDs (discovered by @nathanmcgarvey-modopayments in #195). There was previously an int64 overflow that caused the wrong results for any time after the year 2262 (because that is when time.Time's UnixNano() method overflows).

This release also contains updated documentation to clarify the returned time format when converting our internal Timestamp to a standard time.Time.

What's Changed

Bump the all group with 2 updates by @dependabot in gofrs/uuid#172

Bump github/codeql-action from 3.26.0 to 3.26.5 in the all group across 1 directory by @dependabot in gofrs/uuid#175

Bump the all group with 2 updates by @dependabot in gofrs/uuid#176

Bump github/codeql-action from 3.26.6 to 3.26.7 in the all group by @dependabot in gofrs/uuid#178

Bump the all group across 1 directory with 2 updates by @dependabot in gofrs/uuid#180

Bump the all group with 2 updates by @dependabot in gofrs/uuid#181

Bump the all group with 3 updates by @dependabot in gofrs/uuid#182

Bump the all group with 4 updates by @dependabot in gofrs/uuid#183

Bump actions/dependency-review-action from 4.3.5 to 4.4.0 in the all group by @dependabot in gofrs/uuid#184

Bump github/codeql-action from 3.27.0 to 3.27.1 in the all group by @dependabot in gofrs/uuid#185

Bump the all group across 1 directory with 3 updates by @dependabot in gofrs/uuid#187

Bump the all group across 1 directory with 3 updates by @dependabot in gofrs/uuid#189

Bump the all group with 3 updates by @dependabot in gofrs/uuid#190

Bump the all group with 2 updates by @dependabot in gofrs/uuid#192

Bump the all group with 3 updates by @dependabot in gofrs/uuid#193

Bump github/codeql-action from 3.28.5 to 3.28.8 in the all group by @dependabot in gofrs/uuid#194

Fix Comment on the the Timestamp.Time() method by @nathanmcgarvey-modopayments in gofrs/uuid#197

Proper timestamp calculation for UUID v7 by @kohenkatz in gofrs/uuid#199

New Contributors

@nathanmcgarvey-modopayments made their first contribution in gofrs/uuid#197

Full Changelog: gofrs/uuid@v5.3.0...v5.3.1

Commits

142fcab Merge pull request #199 from kohenkatz/fixes_195
240f296 use magic number instead of one-time-use constant
950e40e fix typo
b6353ae added more detail to comment
893c323 Accept suggestions from @dylan-bourque
63d633e fix: put back incorrectly-removed test, and add another
619065c add benchmarks for TimestampFrom and Timestamp.Time (#1)
cbd1ae5 test: other minor test fixes
d344c6a test: add test (based on gofrs/uuid#195...
3c2c7a6 doc: update description of Timestamp type alias
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/gofrs/uuid/v5](https://github.com/gofrs/uuid) from 5.3.0 to 5.3.1. - [Release notes](https://github.com/gofrs/uuid/releases) - [Commits](gofrs/uuid@v5.3.0...v5.3.1) --- updated-dependencies: - dependency-name: github.com/gofrs/uuid/v5 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 3, 2025

ldmonster approved these changes Mar 13, 2025

View reviewed changes

ldmonster merged commit 6b53172 into main Mar 13, 2025
17 checks passed

dependabot bot deleted the dependabot/go_modules/github.com/gofrs/uuid/v5-5.3.1 branch March 13, 2025 14:13

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump github.com/gofrs/uuid/v5 from 5.3.0 to 5.3.1#723

chore(deps): bump github.com/gofrs/uuid/v5 from 5.3.0 to 5.3.1#723
ldmonster merged 1 commit intomainfrom
dependabot/go_modules/github.com/gofrs/uuid/v5-5.3.1

dependabot bot commented on behalf of github Mar 3, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot bot commented on behalf of github Mar 3, 2025

v5.3.1

Summary

What's Changed

New Contributors

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant