RepoMirrors
/
alertmanager
mirror of https://github.com/prometheus/alertmanager
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,274 Commits 67 Branches 77 Tags 209 MiB
Commit Graph

253 Commits

Author SHA1 Message Date
dependabot[bot] 1d5cb515f1
Bump github.com/prometheus/common from 0.55.0 to 0.57.0 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.55.0 to 0.57.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md)
- [Commits](https://github.com/prometheus/common/compare/v0.55.0...v0.57.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-09-02 08:50:57 +00:00
Simon Pasquier d71da3b23d
Merge pull request #4011 from prometheus/dependabot/go_modules/github.com/rs/cors-1.11.1 
Bump github.com/rs/cors from 1.11.0 to 1.11.1
 2024-09-02 10:50:03 +02:00
dependabot[bot] 2c0801cb49
Bump github.com/rs/cors from 1.11.0 to 1.11.1 
Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.11.0 to 1.11.1.
- [Commits](https://github.com/rs/cors/compare/v1.11.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/rs/cors
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-09-01 15:27:26 +00:00
dependabot[bot] 94b25008d2
Bump github.com/prometheus/client_golang from 1.20.1 to 1.20.2 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.20.1 to 1.20.2.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.20.1...v1.20.2)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-09-01 15:27:17 +00:00
Danny Kopping 9c711fc6d1
fix: close SMTP submission correctly to handle errors (#4006) 
* fix: close SMTP submission correctly to handle errors

Signed-off-by: Danny Kopping <dannykopping@gmail.com>

* lint

Signed-off-by: Danny Kopping <dannykopping@gmail.com>

* comments

Signed-off-by: Danny Kopping <dannykopping@gmail.com>

---------

Signed-off-by: Danny Kopping <dannykopping@gmail.com>
 2024-08-30 15:17:15 +01:00
George Robinson d9c82e7613 Replace benbjohnson/clock with coder/quartz 
This commit replaces the archived and no longer maintained
benbjohnson/clock package with coder/quartz.

Signed-off-by: George Robinson <george.robinson@grafana.com>
 2024-08-27 12:12:23 +01:00
dependabot[bot] dee808e697
Bump golang.org/x/tools from 0.23.0 to 0.24.0 
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.23.0 to 0.24.0.
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](https://github.com/golang/tools/compare/v0.23.0...v0.24.0)

---
updated-dependencies:
- dependency-name: golang.org/x/tools
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-21 19:19:55 +00:00
dependabot[bot] dc7f01ff78
Bump gopkg.in/telebot.v3 from 3.3.6 to 3.3.8 (#3968) 
Bumps gopkg.in/telebot.v3 from 3.3.6 to 3.3.8.

---
updated-dependencies:
- dependency-name: gopkg.in/telebot.v3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-21 20:18:27 +01:00
dependabot[bot] 15c30b9953
Bump golang.org/x/net from 0.27.0 to 0.28.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.27.0 to 0.28.0.
- [Commits](https://github.com/golang/net/compare/v0.27.0...v0.28.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-21 16:31:13 +00:00
dependabot[bot] 0714d62789
Bump github.com/prometheus/client_golang from 1.19.1 to 1.20.1 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.1 to 1.20.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/v1.20.1/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.1...v1.20.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-21 16:09:49 +00:00
dependabot[bot] 7ef0abc843
Bump golang.org/x/tools from 0.22.0 to 0.23.0 
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.22.0 to 0.23.0.
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](https://github.com/golang/tools/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: golang.org/x/tools
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-02 09:06:22 +00:00
dependabot[bot] 77b5cd5291
Bump golang.org/x/net from 0.26.0 to 0.27.0 
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.26.0 to 0.27.0.
- [Commits](https://github.com/golang/net/compare/v0.26.0...v0.27.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-02 08:42:57 +00:00
Simon Pasquier 0c1a85c690
Merge pull request #3936 from prometheus/dependabot/go_modules/golang.org/x/mod-0.19.0 
Bump golang.org/x/mod from 0.18.0 to 0.19.0
 2024-08-02 10:41:40 +02:00
dependabot[bot] 6183aba390
Bump github.com/aws/aws-sdk-go from 1.54.11 to 1.55.5 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.54.11 to 1.55.5.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.54.11...v1.55.5)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-01 15:25:30 +00:00
dependabot[bot] 122abda6c4
Bump golang.org/x/mod from 0.18.0 to 0.19.0 
Bumps [golang.org/x/mod](https://github.com/golang/mod) from 0.18.0 to 0.19.0.
- [Commits](https://github.com/golang/mod/compare/v0.18.0...v0.19.0)

---
updated-dependencies:
- dependency-name: golang.org/x/mod
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-01 15:25:21 +00:00
Jan-Otto Kröpke a509c14b10
jira integration (#3590) 
* Initial jira integration

Signed-off-by: Jan-Otto Kröpke <mail@jkroepke.de>
Signed-off-by: Jan-Otto Kröpke <github@jkroepke.de>
Signed-off-by: Jan-Otto Kröpke <joe@cloudeteer.de>
Co-authored-by: Simon Pasquier <spasquie@redhat.com>
Co-authored-by: Ben Kochie <superq@gmail.com>
 2024-07-31 17:15:26 +02:00
dongjiang eb8369ec51
feat(env): Add automatic memory limit handling (#3895) 
* add auto gomemlimit
---------

Signed-off-by: dongjiang1989 <dongjiang1989@126.com>
Signed-off-by: dongjiang <dongjiang1989@126.com>
Co-authored-by: Simon Pasquier <spasquie@redhat.com>
 2024-07-03 11:47:41 +02:00
Simon Pasquier c200cfdcab
Merge pull request #3910 from prometheus/dependabot/go_modules/github.com/jessevdk/go-flags-1.6.1 
Bump github.com/jessevdk/go-flags from 1.5.0 to 1.6.1
 2024-07-02 09:31:30 +02:00
Simon Pasquier a3a8459245
Merge pull request #3909 from prometheus/dependabot/go_modules/gopkg.in/telebot.v3-3.3.6 
Bump gopkg.in/telebot.v3 from 3.2.1 to 3.3.6
 2024-07-02 09:30:33 +02:00
Simon Pasquier e6a3abbf17
Merge pull request #3908 from prometheus/dependabot/go_modules/github.com/prometheus/common-0.55.0 
Bump github.com/prometheus/common from 0.54.0 to 0.55.0
 2024-07-02 09:30:07 +02:00
dependabot[bot] cd0cc19557
Bump github.com/jessevdk/go-flags from 1.5.0 to 1.6.1 
Bumps [github.com/jessevdk/go-flags](https://github.com/jessevdk/go-flags) from 1.5.0 to 1.6.1.
- [Release notes](https://github.com/jessevdk/go-flags/releases)
- [Commits](https://github.com/jessevdk/go-flags/compare/v1.5.0...v1.6.1)

---
updated-dependencies:
- dependency-name: github.com/jessevdk/go-flags
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-01 15:41:11 +00:00
dependabot[bot] e429f564c8
Bump gopkg.in/telebot.v3 from 3.2.1 to 3.3.6 
Bumps gopkg.in/telebot.v3 from 3.2.1 to 3.3.6.

---
updated-dependencies:
- dependency-name: gopkg.in/telebot.v3
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-01 15:41:03 +00:00
dependabot[bot] 24e34388dd
Bump github.com/prometheus/common from 0.54.0 to 0.55.0 
Bumps [github.com/prometheus/common](https://github.com/prometheus/common) from 0.54.0 to 0.55.0.
- [Release notes](https://github.com/prometheus/common/releases)
- [Changelog](https://github.com/prometheus/common/blob/main/RELEASE.md)
- [Commits](https://github.com/prometheus/common/compare/v0.54.0...v0.55.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/common
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-01 15:40:58 +00:00
dependabot[bot] c317712214
Bump github.com/aws/aws-sdk-go from 1.53.14 to 1.54.11 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.53.14 to 1.54.11.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.53.14...v1.54.11)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-01 15:40:34 +00:00
dongjiang 7d615b778f
feat(env): add auto go maxprocs (#3837) 
* add auto go maxprocs

---------

Signed-off-by: dongjiang1989 <dongjiang1989@126.com>
Signed-off-by: dongjiang <dongjiang1989@126.com>
 2024-06-25 14:29:08 +02:00
Simon Pasquier a03c2b9343
Merge pull request #3855 from prometheus/dependabot/go_modules/github.com/cespare/xxhash/v2-2.3.0 
Bump github.com/cespare/xxhash/v2 from 2.2.0 to 2.3.0
 2024-06-21 16:26:52 +02:00
dependabot[bot] b59669f438
Bump golang.org/x/tools from 0.20.0 to 0.22.0 (#3867) 
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.20.0 to 0.22.0.
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](https://github.com/golang/tools/compare/v0.20.0...v0.22.0)

---
updated-dependencies:
- dependency-name: golang.org/x/tools
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-06 09:13:59 +01:00
dependabot[bot] 6e27339d67
Bump github.com/cespare/xxhash/v2 from 2.2.0 to 2.3.0 
Bumps [github.com/cespare/xxhash/v2](https://github.com/cespare/xxhash) from 2.2.0 to 2.3.0.
- [Commits](https://github.com/cespare/xxhash/compare/v2.2.0...v2.3.0)

---
updated-dependencies:
- dependency-name: github.com/cespare/xxhash/v2
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-06-06 08:09:34 +00:00
dependabot[bot] b8a6390dd6
Bump github.com/aws/aws-sdk-go from 1.52.3 to 1.53.14 (#3856) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.52.3 to 1.53.14.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.52.3...v1.53.14)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-06 09:08:32 +01:00
Sergey 33e680a34d
feat: add time helpers (#3863) 
Signed-off-by: Sergey <freak12techno@gmail.com>
Co-authored-by: gotjosh <josue.abreu@gmail.com>
 2024-06-05 15:23:42 +01:00
dependabot[bot] 2c189d81d9
Bump golang.org/x/text from 0.14.0 to 0.15.0 (#3854) 
Bumps [golang.org/x/text](https://github.com/golang/text) from 0.14.0 to 0.15.0.
- [Release notes](https://github.com/golang/text/releases)
- [Commits](https://github.com/golang/text/compare/v0.14.0...v0.15.0)

---
updated-dependencies:
- dependency-name: golang.org/x/text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-03 18:39:46 +01:00
dependabot[bot] e74466904a
Bump github.com/prometheus/client_golang from 1.19.0 to 1.19.1 (#3857) 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.19.0 to 1.19.1.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.19.0...v1.19.1)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-06-03 18:39:01 +01:00
Simon Pasquier c9f73e3ab7
Merge pull request #3836 from prometheus/dependabot/go_modules/github.com/aws/aws-sdk-go-1.52.3 
Bump github.com/aws/aws-sdk-go from 1.51.11 to 1.52.3
 2024-05-07 14:57:32 +02:00
dependabot[bot] 168c2d55ed
Bump github.com/aws/aws-sdk-go from 1.51.11 to 1.52.3 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.51.11 to 1.52.3.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.51.11...v1.52.3)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-07 12:45:44 +00:00
Simon Pasquier 477d7a4ba3
Merge pull request #3831 from prometheus/dependabot/go_modules/github.com/rs/cors-1.11.0 
Bump github.com/rs/cors from 1.10.1 to 1.11.0
 2024-05-07 14:45:16 +02:00
Simon Pasquier 42efba966b
Merge pull request #3830 from prometheus/dependabot/go_modules/github.com/go-openapi/runtime-0.28.0 
Bump github.com/go-openapi/runtime from 0.27.1 to 0.28.0
 2024-05-07 14:44:40 +02:00
Simon Pasquier 3591282158
Merge pull request #3828 from prometheus/dependabot/go_modules/github.com/cenkalti/backoff/v4-4.3.0 
Bump github.com/cenkalti/backoff/v4 from 4.2.1 to 4.3.0
 2024-05-07 14:44:25 +02:00
George Robinson d7ad5e12f8
Bump prometheus/common to v0.52.3 (#3806) 
* Bump prometheus/common to v0.52.3

This commit bumps prometheus/common to v0.52.3. It has a breaking
change where the metric alertmanager_build_info has been renamed
to go_build_info as the metric has been moved from prometheus/common
to prometheus/client_golang and the namspace argument has been
removed.


---------

Signed-off-by: George Robinson <george.robinson@grafana.com>
 2024-05-02 11:32:30 +01:00
dependabot[bot] 6a1c60af12
Bump github.com/rs/cors from 1.10.1 to 1.11.0 
Bumps [github.com/rs/cors](https://github.com/rs/cors) from 1.10.1 to 1.11.0.
- [Commits](https://github.com/rs/cors/compare/v1.10.1...v1.11.0)

---
updated-dependencies:
- dependency-name: github.com/rs/cors
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-01 15:38:42 +00:00
dependabot[bot] 7bfb7cfb05
Bump github.com/go-openapi/runtime from 0.27.1 to 0.28.0 
Bumps [github.com/go-openapi/runtime](https://github.com/go-openapi/runtime) from 0.27.1 to 0.28.0.
- [Release notes](https://github.com/go-openapi/runtime/releases)
- [Commits](https://github.com/go-openapi/runtime/compare/v0.27.1...v0.28.0)

---
updated-dependencies:
- dependency-name: github.com/go-openapi/runtime
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-01 15:38:37 +00:00
dependabot[bot] 71e12f7837
Bump github.com/cenkalti/backoff/v4 from 4.2.1 to 4.3.0 
Bumps [github.com/cenkalti/backoff/v4](https://github.com/cenkalti/backoff) from 4.2.1 to 4.3.0.
- [Commits](https://github.com/cenkalti/backoff/compare/v4.2.1...v4.3.0)

---
updated-dependencies:
- dependency-name: github.com/cenkalti/backoff/v4
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-05-01 15:38:21 +00:00
dependabot[bot] 25e5627d46
Bump github.com/go-openapi/strfmt from 0.22.0 to 0.23.0 
Bumps [github.com/go-openapi/strfmt](https://github.com/go-openapi/strfmt) from 0.22.0 to 0.23.0.
- [Commits](https://github.com/go-openapi/strfmt/compare/v0.22.0...v0.23.0)

---
updated-dependencies:
- dependency-name: github.com/go-openapi/strfmt
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-29 12:29:11 +00:00
Simon Pasquier 99c31a677d
Merge pull request #3818 from prometheus/dependabot/go_modules/golang.org/x/tools-0.20.0 
Bump golang.org/x/tools from 0.17.0 to 0.20.0
 2024-04-29 14:28:34 +02:00
Simon Pasquier 26e58c680a
Merge pull request #3784 from prometheus/dependabot/go_modules/github.com/aws/aws-sdk-go-1.51.11 
Bump github.com/aws/aws-sdk-go from 1.50.29 to 1.51.11
 2024-04-29 14:27:54 +02:00
dependabot[bot] 09ff9a5c1c
Bump golang.org/x/tools from 0.17.0 to 0.20.0 
Bumps [golang.org/x/tools](https://github.com/golang/tools) from 0.17.0 to 0.20.0.
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](https://github.com/golang/tools/compare/v0.17.0...v0.20.0)

---
updated-dependencies:
- dependency-name: golang.org/x/tools
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-25 16:39:48 +00:00
dependabot[bot] 52f6c12b99
Bump github.com/hashicorp/memberlist from 0.5.0 to 0.5.1 
Bumps [github.com/hashicorp/memberlist](https://github.com/hashicorp/memberlist) from 0.5.0 to 0.5.1.
- [Release notes](https://github.com/hashicorp/memberlist/releases)
- [Commits](https://github.com/hashicorp/memberlist/compare/v0.5.0...v0.5.1)

---
updated-dependencies:
- dependency-name: github.com/hashicorp/memberlist
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-25 16:39:34 +00:00
Holger Freyther 5b99b12aca
dep: Manually upgrade golang.org/x/net (#3674) (#3811) 
Addresses:
Scanning your code and 410 packages across 83 dependent modules for known vulnerabilities...

=== Symbol Results ===

Vulnerability #1: GO-2024-2687
    HTTP/2 CONTINUATION flood in net/http
  More info: https://pkg.go.dev/vuln/GO-2024-2687
  Module: golang.org/x/net
    Found in: golang.org/x/net@v0.20.0
    Fixed in: golang.org/x/net@v0.23.0
    Example traces found:
      #1: cli/root.go:122:52: cli.NewAlertmanagerClient calls config.NewClientFromConfig, which eventually calls http2.ConfigureTransports
      #2: types/types.go:290:28: types.MultiError.Error calls http2.ConnectionError.Error
      #3: notify/notify.go:998:21: notify.TimeActiveStage.Exec calls log.jsonLogger.Log, which eventually calls http2.ErrCode.String
      #4: notify/notify.go:998:21: notify.TimeActiveStage.Exec calls log.jsonLogger.Log, which eventually calls http2.FrameHeader.String
      #5: notify/notify.go:998:21: notify.TimeActiveStage.Exec calls log.jsonLogger.Log, which eventually calls http2.FrameType.String
      #6: types/types.go:290:28: types.MultiError.Error calls http2.GoAwayError.Error
      #7: notify/notify.go:998:21: notify.TimeActiveStage.Exec calls log.jsonLogger.Log, which eventually calls http2.Setting.String
      #8: notify/notify.go:998:21: notify.TimeActiveStage.Exec calls log.jsonLogger.Log, which eventually calls http2.SettingID.String
      #9: types/types.go:290:28: types.MultiError.Error calls http2.StreamError.Error
      #10: api/v2/client/silence/silence_client.go:196:35: silence.Client.PostSilences calls client.Runtime.Submit, which eventually calls http2.Transport.NewClientConn
      #11: api/v2/client/silence/silence_client.go:196:35: silence.Client.PostSilences calls client.Runtime.Submit, which eventually calls http2.Transport.RoundTrip
      #12: notify/email/email.go:253:14: email.Email.Notify calls fmt.Fprintf, which eventually calls http2.chunkWriter.Write
      #13: types/types.go:290:28: types.MultiError.Error calls http2.connError.Error
      #14: types/types.go:290:28: types.MultiError.Error calls http2.duplicatePseudoHeaderError.Error
      #15: test/cli/acceptance.go:362:3: cli.Alertmanager.Start calls http2.gzipReader.Close
      #16: test/cli/acceptance.go:366:22: cli.Alertmanager.Start calls io.ReadAll, which calls http2.gzipReader.Read
      #17: types/types.go:290:28: types.MultiError.Error calls http2.headerFieldNameError.Error
      #18: types/types.go:290:28: types.MultiError.Error calls http2.headerFieldValueError.Error
      #19: api/v2/client/silence/silence_client.go:196:35: silence.Client.PostSilences calls client.Runtime.Submit, which eventually calls http2.noDialH2RoundTripper.RoundTrip
      #20: types/types.go:290:28: types.MultiError.Error calls http2.pseudoHeaderError.Error
      #21: notify/email/email.go:253:14: email.Email.Notify calls fmt.Fprintf, which eventually calls http2.stickyErrWriter.Write
      #22: test/cli/acceptance.go:362:3: cli.Alertmanager.Start calls http2.transportResponseBody.Close
      #23: test/cli/acceptance.go:366:22: cli.Alertmanager.Start calls io.ReadAll, which calls http2.transportResponseBody.Read
      #24: notify/notify.go:998:21: notify.TimeActiveStage.Exec calls log.jsonLogger.Log, which eventually calls http2.writeData.String

Your code is affected by 1 vulnerability from 1 module.
This scan also found 0 vulnerabilities in packages you import and 2
vulnerabilities in modules you require, but your code doesn't appear to call
these vulnerabilities.
Use '-show verbose' for more details.

Signed-off-by: Holger Hans Peter Freyther <holger@freyther.de>
 2024-04-25 17:38:44 +01:00
dependabot[bot] b2fd7592a2
Bump github.com/aws/aws-sdk-go from 1.50.29 to 1.51.11 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.50.29 to 1.51.11.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.50.29...v1.51.11)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-04-01 15:31:09 +00:00
dependabot[bot] 4b6b3596b4
Bump github.com/prometheus/client_golang from 1.18.0 to 1.19.0 (#3750) 
Bumps [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) from 1.18.0 to 1.19.0.
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/v1.19.0/CHANGELOG.md)
- [Commits](https://github.com/prometheus/client_golang/compare/v1.18.0...v1.19.0)

---
updated-dependencies:
- dependency-name: github.com/prometheus/client_golang
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-14 12:45:22 +00:00
dependabot[bot] 761edc9ebe
Bump github.com/aws/aws-sdk-go from 1.50.8 to 1.50.29 (#3748) 
Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.50.8 to 1.50.29.
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Commits](https://github.com/aws/aws-sdk-go/compare/v1.50.8...v1.50.29)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-03-14 12:44:45 +00:00