Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Dependabot](deps): Bump github.com/hashicorp/hcl/v2 from 2.15.0 to 2.17.0 #610

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jul 24, 2023

Bumps github.com/hashicorp/hcl/v2 from 2.15.0 to 2.17.0.

Release notes

Sourced from github.com/hashicorp/hcl/v2's releases.

v2.17.0

Enhancements

  • HCL now uses a newer version of the upstream cty library which has improved treatment of unknown values: it can now track additional optional information that reduces the range of an unknown value, which allows some operations against unknown values to return known or partially-known results. (#590)

    Note: This change effectively passes on cty's notion of backward compatibility whereby unknown values can become "more known" in later releases. In particular, if your caller is using cty.Value.RawEquals in its tests against the results of operations with unknown values then you may see those tests begin failing after upgrading, due to the values now being more "refined".

    If so, you should review the refinements with consideration to the cty refinements docs and update your expected results to match only if the reported refinements seem correct for the given situation. The RawEquals method is intended only for making exact value comparisons in test cases, so main application code should not use it; use Equals instead for real logic, which will take refinements into account automatically.

v2.16.2

Bugs Fixed

  • ext/typeexpr: Verify type assumptions when applying default values, and ignore input values that do not match type assumptions. (#594)

v2.16.1

Bugs Fixed

  • hclsyntax: Report correct Range.End for FunctionCall with incomplete argument (#588)

v2.16.0

Enhancements

  • ext/typeexpr: Modify the Defaults functionality to implement additional flexibility. HCL will now upcast lists and sets into tuples, and maps into objects, when applying default values if the applied defaults cause the elements within a target collection to have differing types. Previously, this would have resulted in a panic, now HCL will return a modified overall type. (hashicorp/hcl#574)

    Users should return to the advice provided by v2.14.0, and apply the go-cty convert functionality after setting defaults on a given cty.Value, rather than before.

  • hclfmt: Avoid rewriting unchanged files. (hashicorp/hcl#576)

  • hclsyntax: Simplify the AST for certain string expressions. (hashicorp/hcl#584)

Bugs Fixed

Changelog

Sourced from github.com/hashicorp/hcl/v2's changelog.

v2.17.0 (May 31, 2023)

Enhancements

  • HCL now uses a newer version of the upstream cty library which has improved treatment of unknown values: it can now track additional optional information that reduces the range of an unknown value, which allows some operations against unknown values to return known or partially-known results. (#590)

    Note: This change effectively passes on cty's notion of backward compatibility whereby unknown values can become "more known" in later releases. In particular, if your caller is using cty.Value.RawEquals in its tests against the results of operations with unknown values then you may see those tests begin failing after upgrading, due to the values now being more "refined".

    If so, you should review the refinements with consideration to the cty refinements docs and update your expected results to match only if the reported refinements seem correct for the given situation. The RawEquals method is intended only for making exact value comparisons in test cases, so main application code should not use it; use Equals instead for real logic, which will take refinements into account automatically.

v2.16.2 (March 9, 2023)

Bugs Fixed

  • ext/typeexpr: Verify type assumptions when applying default values, and ignore input values that do not match type assumptions. (#594)

v2.16.1 (February 13, 2023)

Bugs Fixed

  • hclsyntax: Report correct Range.End for FunctionCall with incomplete argument (#588)

v2.16.0 (January 30, 2023)

Enhancements

  • ext/typeexpr: Modify the Defaults functionality to implement additional flexibility. HCL will now upcast lists and sets into tuples, and maps into objects, when applying default values if the applied defaults cause the elements within a target collection to have differing types. Previously, this would have resulted in a panic, now HCL will return a modified overall type. (#574)

    Users should return to the advice provided by v2.14.0, and apply the go-cty convert functionality after setting defaults on a given cty.Value, rather than before.

  • hclfmt: Avoid rewriting unchanged files. (#576)

  • hclsyntax: Simplify the AST for certain string expressions. (#584)

Bugs Fixed

  • hclwrite: Fix data race in formatSpaces. (#511)
Commits
  • 7208bce v2.17.0 release
  • 58cc29f Update CHANGELOG.md
  • e4bd3b4 hcldec: RefineValueSpec
  • 333389d hclsyntax: Refinements to unknown splat expression results
  • ea69807 ext/typeexpr: Refinements when applying defaults with unknown values
  • 628da05 hclsyntax: ConditionalExpr can refine its unknown results
  • e0058a2 hclsyntax: TemplateExpr can refine its unknown results
  • adb8823 go.mod: Use cty v1.13.0, with support for refined unknown values
  • e54a196 Update CHANGELOG.md
  • ec21494 Update CHANGELOG.md
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 24, 2023
@dependabot dependabot bot force-pushed the dependabot-go_modules-github.com-hashicorp-hcl-v2-2.17.0 branch 5 times, most recently from 7f9e1d9 to 1fa1b71 Compare July 26, 2023 13:36
Bumps [github.com/hashicorp/hcl/v2](https://github.com/hashicorp/hcl) from 2.15.0 to 2.17.0.
- [Release notes](https://github.com/hashicorp/hcl/releases)
- [Changelog](https://github.com/hashicorp/hcl/blob/main/CHANGELOG.md)
- [Commits](hashicorp/hcl@v2.15.0...v2.17.0)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/hcl/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot-go_modules-github.com-hashicorp-hcl-v2-2.17.0 branch from 1fa1b71 to 78612a7 Compare August 7, 2023 11:45
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Sep 4, 2023

Superseded by #625.

@dependabot dependabot bot closed this Sep 4, 2023
@dependabot dependabot bot deleted the dependabot-go_modules-github.com-hashicorp-hcl-v2-2.17.0 branch September 4, 2023 02:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants