Skip to content

ci(deps): update pre-commit hooks

DeadNewsrequested to merge
renovate/pre-commit-hooks into main

This MR contains the following updates:

Package Type Update Change
crate-ci/typos repository minor v1.28.4 -> v1.31.1
gitleaks/gitleaks repository minor v8.22.0 -> v8.24.3
golangci/golangci-lint repository minor v2.0.2 -> v2.1.5
python-jsonschema/check-jsonschema repository minor 0.30.0 -> 0.33.0

⚠️ Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Note: The pre-commit manager in Renovate is not supported by the pre-commit maintainers or community. Please do not report any problems there, instead create a Discussion in the Renovate repository if you have any questions.

Release Notes

crate-ci/typos (crate-ci/typos)

v1.31.1

Compare Source

[1.31.1] - 2025-03-31

Fixes
  • (dict) Also correct typ to type

v1.31.0

Compare Source

[1.31.0] - 2025-03-28

Features
  • Updated the dictionary with the March 2025 changes

v1.30.3

Compare Source

[1.30.3] - 2025-03-24

Features
  • Support detecting go.work and go.work.sum files

v1.30.2

Compare Source

[1.30.2] - 2025-03-10

Features
  • Add --highlight-words and --highlight-identifiers for easier debugging of config

v1.30.1

Compare Source

[1.30.1] - 2025-03-04

Features
  • (action) Create v1 tag

v1.30.0

Compare Source

[1.30.0] - 2025-03-01

Features

v1.29.10

Compare Source

[1.29.10] - 2025-02-25

Fixes
  • Also correct contaminent as contaminant

v1.29.9

Compare Source

[1.29.9] - 2025-02-20

Fixes
  • (action) Correctly get binary for some aarch64 systems

v1.29.8

Compare Source

[1.29.8] - 2025-02-19

Features
  • Attempt to build Linux aarch64 binaries

v1.29.7

Compare Source

[1.29.7] - 2025-02-13

Fixes
  • Don't correct implementors

v1.29.6

Compare Source

[1.29.6] - 2025-02-13

Features

v1.29.5

Compare Source

[1.29.5] - 2025-01-30

Internal
  • Update a dependency

v1.29.4

Compare Source

[1.29.4] - 2025-01-03

v1.29.3

Compare Source

[1.29.3] - 2025-01-02

v1.29.2

Compare Source

v1.29.1

Compare Source

[1.29.1] - 2025-01-02

Fixes
  • Don't correct deriver

v1.29.0

Compare Source

[1.29.0] - 2024-12-31

Features
Performance
  • Sped up dictionary lookups
gitleaks/gitleaks (gitleaks/gitleaks)

v8.24.3

Compare Source

Changelog

v8.24.2

Compare Source

What's Changed

New Contributors

Full Changelog: https://github.com/gitleaks/gitleaks/compare/v8.24.0...v8.24.2

v8.24.1

Compare Source

v8.24.0

Compare Source

Changelog

v8.23.3

Compare Source

Changelog

v8.23.2

Compare Source

Changelog

v8.23.1

Compare Source

Changelog

v8.23.0

Compare Source

Changelog

READ THIS!!! The default gitleaks config now uses [[rules.allowlists]]


### ⚠️ In v8.21.0 `[rules.allowlist]` was replaced with `[[rules.allowlists]]`.
### This change was backwards-compatible: instances of `[rules.allowlist]` still  work.
    #

### You can define multiple allowlists for a rule to reduce false positives.
### A finding will be ignored if _ANY_ `[[rules.allowlists]]` matches.
    [[rules.allowlists]]
    description = "ignore commit A"

### When multiple criteria are defined the default condition is "OR".
### e.g., this can match on |commits| OR |paths| OR |stopwords|.
    condition = "OR"
    commits = [ "commit-A", "commit-B"]
    paths = [
      '''go\.mod''',
      '''go\.sum'''
    ]

### note: stopwords targets the extracted secret, not the entire regex match
### like 'regexes' does. (stopwords introduced in 8.8.0)
    stopwords = [
      '''client''',
      '''endpoint''',
    ]

    [[rules.allowlists]]

### The "AND" condition can be used to make sure all criteria match.
### e.g., this matches if |regexes| AND |paths| are satisfied.
    condition = "AND"

### note: |regexes| defaults to check the _Secret_ in the finding.
### Acceptable values for |regexTarget| are "secret" (default), "match", and "line".
    regexTarget = "match"
    regexes = [ '''(?i)parseur[il]''' ]
    paths = [ '''package-lock\.json''' ]

v8.22.1

Compare Source

Changelog

golangci/golangci-lint (golangci/golangci-lint)

v2.1.5

Compare Source

Due to an error related to Snapcraft, some artifacts of the v2.1.4 release have not been published.

This release contains the same things as v2.1.3.

v2.1.4

Compare Source

Due to an error related to Snapcraft, some artifacts of the v2.1.3 release have not been published.

This release contains the same things as v2.1.3.

v2.1.3

Compare Source

  1. Linters bug fixes
    • fatcontext: from 0.7.2 to 0.8.0
  2. Misc.
    • migration: fix nakedret.max-func-lines: 0
    • migration: fix order of staticcheck settings
    • fix: add go.mod hash to the cache salt
    • fix: use diagnostic position for related information position

v2.1.2

Compare Source

  1. Linters bug fixes
    • exptostd: from 0.4.2 to 0.4.3
    • gofumpt: from 0.7.0 to 0.8.0
    • protogetter: from 0.3.13 to 0.3.15
    • usetesting: from 0.4.2 to 0.4.3

v2.1.1

Compare Source

The release process of v2.1.0 failed due to a regression inside goreleaser.

The binaries of v2.1.0 have been published, but not the other artifacts (AUR, Docker, etc.).

v2.1.0

Compare Source

  1. Enhancements
    • Add an option to display absolute paths (--path-mode=abs)
    • Add configuration path placeholder (${config-path})
    • Add warn-unused option for fmt command
    • Colored diff for fmt command (golangci-lint fmt --diff-colored)
  2. New linters
  3. Linters new features or changes
    • go-errorlint: from 1.7.1 to 1.8.0 (automatic error comparison and type assertion fixes)
    • ⚠️ goconst: ignore-strings is deprecated and replaced by ignore-string-values
    • goconst: from 1.7.1 to 1.8.1 (new options: find-duplicates, eval-const-expressions)
    • govet: add httpmux analyzer
    • nilnesserr: from 0.1.2 to 0.2.0 (detect more cases)
    • paralleltest: from 1.0.10 to 1.0.14 (checks only _test.go files)
    • revive: from 1.7.0 to 1.9.0 (support kebab case for setting names)
    • sloglint: from 0.9.0 to 0.11.0 (autofix, new option msg-style, suggest slog.DiscardHandler)
    • wrapcheck: from 2.10.0 to 2.11.0 (new option report-internal-errors)
    • wsl: from 4.6.0 to 4.7.0 (cgo files are always excluded)
  4. Linters bug fixes
    • fatcontext: from 0.7.1 to 0.7.2
    • gocritic: fix importshadow checker
    • gosec: from 2.22.2 to 2.22.3
    • ireturn: from 0.3.1 to 0.4.0
    • loggercheck: from 0.10.1 to 0.11.0
    • nakedret: from 2.0.5 to 2.0.6
    • nonamedreturns: from 1.0.5 to 1.0.6
    • protogetter: from 0.3.12 to 0.3.13
    • testifylint: from 1.6.0 to 1.6.1
    • unconvert: update to HEAD
  5. Misc.
    • Fixes memory leaks when using go1.(N) with golangci-lint built with go1.(N-X)
    • Adds golangci-lint-fmt pre-commit hook
  6. Documentation
    • Improvements
    • Updates section about vscode integration
python-jsonschema/check-jsonschema (python-jsonschema/check-jsonschema)

v0.33.0

Compare Source

  • Update vendored schemas: bitbucket-pipelines, buildkite, circle-ci, compose-spec, github-workflows, mergify, renovate, taskfile, woodpecker-ci (2025-04-11)
  • A new option, --force-filetype, is now supported and allows users to explicitly specify which parser should be used for instance files. Thanks :user:mschoettle! (🇵🇷557, :issue:341)

v0.32.1

Compare Source

  • Fix the check-meltano hook to use types_or. Thanks :user:edgarrmondragon! (🇵🇷543)

v0.32.0

Compare Source

  • Update vendored schemas: circle-ci, compose-spec, dependabot, github-workflows, gitlab-ci, mergify, renovate, taskfile (2025-03-25)
  • Add Meltano schema and pre-commit hook. Thanks :user:edgarrmondragon! (:issue:540)
  • Add Snapcraft schema and pre-commit hook. Thanks :user:fabolhak! (:issue:535)

v0.31.3

Compare Source

  • Update vendored schemas: circle-ci, github-workflows, mergify, renovate, taskfile (2025-03-07)

v0.31.2

Compare Source

  • Update vendored schemas: dependabot, github-workflows, gitlab-ci, mergify, renovate, woodpecker-ci (2025-02-19)

v0.31.1

Compare Source

  • Update vendored schemas: buildkite, cloudbuild, compose-spec, mergify, renovate (2025-01-26)
  • Update the gitlab and renovate hooks to use --regex-variant nonunicode. Thanks :user:quentin-ag and :user:Callek for reporting! (:issue:516, :issue:518)
  • Update the required ruamel.yaml version to a range, >=0.18.10,<0.19.0.

v0.31.0

Compare Source

  • Update vendored schemas: azure-pipelines, bamboo-spec, buildkite, circle-ci, dependabot, gitlab-ci, mergify, readthedocs, renovate, taskfile (2025-01-07)

  • Drop support for Python 3.8

  • Rename --format-regex to --regex-variant and convert --format-regex to a deprecated alias. It will be removed in a future release.

  • Regular expression interpretation in "pattern", "patternProperties", and "format": "regex" usages now uses unicode-mode JS regular expressions by default. (:issue:353)

    • Use --regex-variant nonunicode to get non-unicode JS regular expressions, the default behavior from previous versions.
    • Custom validators may be impacted by the new regular expression features. Validators are now always modified with the jsonschema library's extend() API to control the pattern and patternProperties keywords.

Configuration

📅 Schedule: Branch creation - "before 6am on Saturday every 4 weeks of the year starting on the 2th week" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻️ Rebasing: Whenever MR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This MR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this MR, check this box

This MR has been generated by Renovate Bot.

Merge request reports