build(deps): Bump github.com/lima-vm/lima from 0.16.0 to 0.17.2 by dependabot[bot] · Pull Request #531 · runfinch/finch

dependabot · 2023-08-14T16:29:31Z

Bumps github.com/lima-vm/lima from 0.16.0 to 0.17.2.

Release notes

Sourced from github.com/lima-vm/lima's releases.

v0.17.2

On macOS hosts, Lima now asks the user to sign the QEMU binary with the com.apple.security.hypervisor entitlement if the binary is not properly signed:
$ limactl start
INFO[0000] Using the existing instance "default"        
WARN[0000] QEMU binary "/usr/local/bin/qemu-system-x86_64" is not properly signed with the "com.apple.security.hypervisor" entitlement  error="failed to run [codesign --verify /usr/local/bin/qemu-system-x86_64]: exit status 1 (out=\"/usr/local/bin/qemu-system-x86_64: invalid signature (code or signature have been modified)\\nIn architecture: x86_64\\n\")"
? Try to sign "/usr/local/bin/qemu-system-x86_64" with the "com.apple.security.hypervisor" entitlement? (Y/n)
...
Choose Y to sign the binary.

This signing is usually not needed on users' side. However, the Homebrew bottle of QEMU v8.0.4 needs this signing due to a temporary issue of Homebrew's build infrastructure:

lima-vm/lima#1742

The Homebrew bottle of QEMU v8.0.3 is not affected by this issue.

Changes

QEMU:

Ask to sign QEMU binary when the binary is not properly signed (#1743)

Full changes: https://github.com/lima-vm/lima/milestone/37?closed=1 Thanks to @afbjorklund

Usage
[macOS]$ limactl create
[macOS]$ limactl start
...
INFO[0029] READY. Run `lima` to open the shell.
[macOS]$ lima uname
Linux
The binaries were built automatically on GitHub Actions. The build log is available for 90 days: https://github.com/lima-vm/lima/actions/runs/5851291166

The sha256sum of the SHA256SUMS file itself is 006f022e19d2b03869c33ee30be694217937d8c774af7b9714e2d7659da31aa5 .

v0.17.1

This release fixes incompatibility with Go 1.21 (#1729).

Changes

Misc:

Support Go 1.21 (#1729)

... (truncated)

Commits

bee0502 Merge pull request #1743 from AkihiroSuda/sign-qemu-binary
c0b48a9 qemu: ask to sign QEMU binary when the binary is not properly signed
18c029b Merge pull request #1745 from afbjorklund/kernel-arch
46d0e82 Validate arch against image not default
495271c Merge pull request #1740 from AkihiroSuda/dns-descriptive-debug-log
fa053a3 Merge pull request #1735 from afbjorklund/limayaml-os-linux
9cc6044 dns: make a debug message more descriptive
d41c316 Merge pull request #1733 from AkihiroSuda/go-mod-20230812
31e8bbc go.mod: k8s.io/* v0.27.4
27b4e78 Merge pull request #1725 from afbjorklund/reverse-remove
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [github.com/lima-vm/lima](https://github.com/lima-vm/lima) from 0.16.0 to 0.17.2. - [Release notes](https://github.com/lima-vm/lima/releases) - [Commits](lima-vm/lima@v0.16.0...v0.17.2) --- updated-dependencies: - dependency-name: github.com/lima-vm/lima dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

🤖 I have created a release *beep* *boop* --- ## [0.8.0](v0.7.0...v0.8.0) (2023-08-16) ### Features * adding config option for SOCI installation on VM ([#506](#506)) ([a2e077b](a2e077b)) ### Bug Fixes * configure aws creds in sync submodules/deps action ([#518](#518)) ([b67452e](b67452e)) * give pull request write permissions to sync job ([#520](#520)) ([55b5235](55b5235)) * give token write perms to sync-submodules ([#519](#519)) ([8b639ea](8b639ea)) * Mount /var/folders to finch vm ([#525](#525)) ([c97d2e9](c97d2e9)) * option to use installed lima for SOCI e2e tests ([#533](#533)) ([8b66659](8b66659)) * quote recursive calls to make ([#515](#515)) ([d603096](d603096)) * Restart buildkit after containerd when provisioning ([#461](#461)) ([fca1828](fca1828)) ### Build System or External Dependencies * **deps:** Bump github.com/docker/cli from 24.0.4+incompatible to 24.0.5+incompatible ([#495](#495)) ([e9e8617](e9e8617)) * **deps:** Bump github.com/docker/docker from 24.0.4+incompatible to 24.0.5+incompatible ([#497](#497)) ([6f1afbb](6f1afbb)) * **deps:** Bump github.com/lima-vm/lima from 0.16.0 to 0.17.2 ([#531](#531)) ([6e33d15](6e33d15)) * **deps:** Bump github.com/onsi/gomega from 1.27.8 to 1.27.10 ([#496](#496)) ([d08d102](d08d102)) * **deps:** Bump github.com/pkg/sftp from 1.13.5 to 1.13.6 ([#530](#530)) ([09b3846](09b3846)) * **deps:** Bump github.com/shirou/gopsutil/v3 from 3.23.6 to 3.23.7 ([#513](#513)) ([83bd718](83bd718)) * **deps:** Bump golang.org/x/tools from 0.11.0 to 0.11.1 ([#509](#509)) ([e826bcf](e826bcf)) * **deps:** Bump golang.org/x/tools from 0.11.1 to 0.12.0 ([#523](#523)) ([09d6514](09d6514)) * **deps:** Bump k8s.io/apimachinery from 0.27.3 to 0.27.4 ([#487](#487)) ([444bbc0](444bbc0)) * **deps:** Bump k8s.io/apimachinery from 0.27.4 to 0.28.0 ([#535](#535)) ([8df84cf](8df84cf)) * **deps:** Bump submodules and dependencies ([#521](#521)) ([1b3ad94](1b3ad94)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Aug 14, 2023

dependabot Bot mentioned this pull request Aug 14, 2023

build(deps): Bump github.com/lima-vm/lima from 0.16.0 to 0.17.0 #517

Closed

KevinLiAWS approved these changes Aug 16, 2023

View reviewed changes

KevinLiAWS merged commit 6e33d15 into main Aug 16, 2023

KevinLiAWS deleted the dependabot/go_modules/github.com/lima-vm/lima-0.17.2 branch August 16, 2023 18:32

github-actions Bot mentioned this pull request Aug 16, 2023

chore(main): release 0.8.0 #499

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

build(deps): Bump github.com/lima-vm/lima from 0.16.0 to 0.17.2#531

build(deps): Bump github.com/lima-vm/lima from 0.16.0 to 0.17.2#531
KevinLiAWS merged 1 commit intomainfrom
dependabot/go_modules/github.com/lima-vm/lima-0.17.2

dependabot Bot commented on behalf of github Aug 14, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Aug 14, 2023

v0.17.2

Changes

Usage

v0.17.1

Changes

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant