Highlights
A new provider is available for generating MVT tiles from a Postgis geometry table. Health checking is available on a secondary port for monitoring and orchestration/load balancer readiness/liveness probes. Security improvements to code to avoid possible exploit vectors (no known exploits).
What's Changed
Features
- Postgis MVT provider for #189 by @Michad in #240 #253 #257 #271 #286
- Add Health monitoring endpoint for #199 by @Michad in #229 #270
Fixes
- Tweak metrics actions to comment results in PR for #192 by @Michad in #256
- Change context canceled to be logged as debug instead of error by @Michad in #296
- Moved placeholder index.html to index_default.html by @Michad in #222
- Fix security issues reported by new version of gosec by @Michad in #254 #297 #298
- Use NPM CI to install antora to ensure hash check is applied by @Michad in #223 #255
Dependencies
- bump go from 1.22.5 to 1.22.7 by @Michad in #243
- bump actions/checkout from 4.1.7 to 4.2.1 by @dependabot in #250 #280
- bump actions/setup-node from 4.0.3 to 4.0.4 by @dependabot in #241
- bump actions/upload-artifact from 4.3.6 to 4.4.3 by @dependabot in #210 #284
- bump alpine from 3.20 to 3.20.3 by @dependabot in #227 #247 #249
- bump docker/build-push-action from 6.7.0 to 6.9.0 by @dependabot in #265
- bump docker/setup-buildx-action from 3.6.1 to 3.7.1 by @dependabot in #276
- bump github/codeql-action from 3.26.6 to 3.26.12 by @dependabot in #231 #242 #278
- bump github.com/aws/aws-sdk-go-v2/config from 1.27.39 to 1.27.43 by @dependabot in #287
- bump github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.17.14 to 1.17.25 by @dependabot in #224 #262
- bump github.com/aws/aws-sdk-go-v2 from 1.30.5 to 1.32.0 by @dependabot in #244 #273
- bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.60.1 to 1.61.2 by @dependabot in #226
- bump github.com/aws/aws-sdk-go-v2/service/secretsmanager from 1.32.5 to 1.34.0 by @dependabot in #275
- bump github.com/testcontainers/testcontainers-go from 0.32.0 to 0.33.0 by @dependabot in #212
- bump go.etcd.io/etcd/client/v3 from 3.5.15 to 3.5.16 by @dependabot in #246
- bump golang from 1.22.6-alpine3.20 to 1.22.8-alpine3.20 by @dependabot in #221 #266
- bump golang from
fd4d0e4to48eab5eby @dependabot in #237 - bump golang/govulncheck-action from 1.0.3 to 1.0.4 by @dependabot in #267
- bump golang.org/x/crypto from 0.26.0 to 0.27.0 by @dependabot in #232
- bump go.opentelemetry.io/contrib/bridges/otelslog from 0.3.0 to 0.5.0 by @dependabot in #233
- bump go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp from 0.54.0 to 0.55.0 by @dependabot in #272
- bump go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp from 0.5.0 to 0.6.0 by @dependabot in #245
- bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.30.0 by @dependabot in #259
- bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.28.0 to 1.30.0 by @dependabot in #213 #261
- bump go.opentelemetry.io/otel/metric from 1.30.0 to 1.31.0 by @dependabot in #288
- bump node from 20-alpine3.20 to 22-alpine3.20 by @dependabot in #228
- bump reviewdog/action-suggester from 1.17.0 to 1.18.0 by @dependabot in #238
- bump s3-actions/s3cmd from 1.7.0 to 1.8.1 by @dependabot in #251 #285
- bump securego/gosec from 2.20.0 to 2.21.4 by @dependabot in #252
- bump sigstore/cosign-installer from 3.6.0 to 3.7.0 by @dependabot in #277
- bump umbrelladocs/action-linkspector from 1.2.1 to 1.2.2 by @dependabot in #268
Full Changelog: v0.7.0...v0.8.0
Contributors
Michad and dependabot