Open
Conversation
![descope-approve[bot]](https://avatars.githubusercontent.com/in/232635?s=60&v=4){kind=small}
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
41691d9 to
f6242af
Compare
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
f6242af to
6208b2d
Compare
descope
bot
changed the title
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
6208b2d to
464cd5c
Compare
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
464cd5c to
a0512a3
Compare
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
a0512a3 to
a0ed71d
Compare
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
a0ed71d to
ae7e96b
Compare
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
ae7e96b to
6137342
Compare
descope
bot
force-pushed
the
renovate/minorpatch-updates
branch
from
6137342 to
9c56d6e
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.2.4→v0.3.6v3.117.0→v3.121.0v3.122.01.25.4→1.26.01.24.8→1.26.0v0.31.0→v0.34.02.6.2→2.10.120.19.5→20.20.03.11.8→3.14.3Release Notes
descope/terraform-provider-descope (github.com/descope/terraform-provider-descope/shim)
v0.3.6Compare Source
What's Changed
exclude_permission_claim,override_subject_claim, andadd_jti_claimto JWT templates.Upgrading
See the release notes for
v0.3.1for important notes if you're upgrading from av0.2.xversion.v0.3.5Compare Source
What's Changed
descope_management_keyfor managing management keys in a Descope account.descope_descoperfor managing console users in a Descope account.groups_priorityattribute tossosettings.admin_portalattribute toprojectsettings.Upgrading
See the release notes for
v0.3.1for important notes if you're upgrading from av0.2.xversion.v0.3.4Compare Source
What's Changed
disable_jit_updatesattribute to OAuth settings.mask_piiattribute todatadogconnector.service_labelattribute in TOTP settings.Upgrading
See the release notes for
v0.3.1for important notes if you're upgrading from av0.2.xversion.v0.3.3Compare Source
What's Changed
project_idand from now on only amanagement_keyis needed to use the Descope provider.allow_override_rolesattribute tossosettings.listsin projects.jwt_templatesvalue when any are set in the project settings.Upgrading
See the release notes for
v0.3.1for important notes if you're upgrading from av0.2.xversion.v0.3.2Compare Source
What's Changed
allow_duplicate_domainsattribute tossosettings.certificateattribute to not be required insamlapplications.Upgrading
See the release notes for
v0.3.1for important notes if you're upgrading from av0.2.xversion.v0.3.1Compare Source
What's Changed
keyattribute torolesobjects to maintain user role consistency.keyattributes are set.temporary_lockand associated attributes topasswordsettings.Upgrading
If you're managing
authorizationusing the Terraform provider, it's recommended to give each object in theroleslist a unique value for the newkeyattribute (see more details about this attribute below). You can follow these steps:For each role object in your
.tffile, add a new attribute calledkeyand give it a unique value. The specific value doesn't matter, but taking the role name and converting tocamel_caseis a good option.Do not make any other changes to your
roles. Runterraform applyand ensure that the diff only shows the newkeyattributes as being added.Confirm the
terraform applyoperation to update the.tfstate.If you run
terraform applywithout setting thekeyattributes the provider will show a warning for each role.Any changes made to existing roles from now on should always make sure to preserve the
keyvalue (see below).Role Keys
The role objects in the
roleslist now support a newkeyattribute. Thekeyis a persistent value that identifies a role uniquely across plan changes and configuration updates. It is used exclusively by the Terraform provider during planning, to ensure that user roles are maintained consistently even when role names or other details are changed. Once thekeyis set it should never be changed, otherwise the role will be removed and a new one will be created instead.When upgrading to this release it's recommended to set an explicit
keyvalue on each role object, and then to apply the plan without any other changes. The provider will display a warning as long as thereroleswithout akeyattribute set.v0.3.0Compare Source
What's Changed
keyattribute torolesobjects to maintain user role consistency.service_labelattribute tototpauthentication settings.appleOAuth provider.invite_expirationandexpire_invited_usersattributes toinvite_settingsobject.Upgrading
See the release notes for
v0.3.1for important notes about upgrading.pulumi/pulumi-terraform-bridge (github.com/pulumi/pulumi-terraform-bridge/v3)
v3.121.0Compare Source
What's Changed
Full Changelog: pulumi/pulumi-terraform-bridge@v3.120...v3.121.0
v3.120.0Compare Source
What's Changed
Full Changelog: pulumi/pulumi-terraform-bridge@v3.119.0...v3.120.0
v3.119.0Compare Source
What's Changed
Full Changelog: pulumi/pulumi-terraform-bridge@v3.118.0...v3.119.0
v3.118.0Compare Source
What's Changed
consolecode blocks by @pose in #3243Full Changelog: pulumi/pulumi-terraform-bridge@v3.117.0...v3.118.0
golangci/golangci-lint (golangci-lint)
v2.10.1Compare Source
Released on 2026-02-17
v2.10.0Compare Source
Released on 2026-02-17
ginkgolinter: from 0.22.0 to 0.23.0gosec: from 2.22.11 to 2.23.0 (new rules:G117,G602,G701,G702,G703,G704,G705,G706)staticcheck: from 0.6.1 to 0.7.0godoclint: from 0.11.1 to 0.11.2v2.9.0Compare Source
Released on 2026-02-10
arangolint: from 0.3.1 to 0.4.0 (new rule: detect potential query injections)ginkgolinter: from 0.21.2 to 0.22.0 (support for wrappers)golines: from 0.14.0 to 0.15.0misspell: from 0.7.0 to 0.8.0revive: from v1.13.0 to v1.14.0 (new rules:epoch-naming,use-slices-sort)unqueryvet: from 1.4.0 to 1.5.3 (new options:check-n1,check-sql-injection,check-tx-leaks,allow,custom-rules)wsl_v5: from 5.3.0 to 5.6.0 (new rule:after-block)modernize: from 0.41.0 to 0.42.0prealloc: from 1.0.1 to 1.0.2protogetter: from 0.3.18 to 0.3.20v2.8.0Compare Source
Released on 2026-01-07
godoclint: from 0.10.2 to 0.11.1 (new rule:require-stdlib-doclink)golines: from442fd00to 0.14.0gomoddirectives: from 0.7.1 to 0.8.0gosec: fromdaccba6to 2.22.11 (new rule:G116)modernize: from 0.39.0 to 0.40.0 (new analyzers:stringscut,unsafefuncs)prealloc: from 1.0.0 to 1.0.1 (message changes)unqueryvet: from 1.3.0 to 1.4.0 (new options:check-aliased-wildcard,check-string-concat,check-format-strings,check-string-builder,check-subqueries,ignored-functions,sql-builders)gocritic: from 0.14.2 to 0.14.3errorlint: from 1.8.0 to 1.9.0govet: from 0.39.0 to 0.40.0protogetter: from 0.3.17 to 0.3.18revive: add missing enable-default-rules settingv2.7.2Compare Source
Released on 2025-12-07
gosec: from 2.22.10 todaccba6v2.7.1Compare Source
Released on 2025-12-04
modernize: disablestringscutanalyzerv2.7.0Compare Source
Released on 2025-12-03
customcommandnosprintfhostport: from 0.2.0 to 0.3.1 (ignore string literals without a colon)unqueryvet: from 1.2.1 to 1.3.0 (handlesconstandvardeclarations)revive: from 1.12.0 to 1.13.0 (new option:enable-default-rules, new rules:forbidden-call-in-wg-go,unnecessary-if,inefficient-map-lookup)modernize: from 0.38.0 to 0.39.0 (new analyzers:plusbuild,stringscut)perfsprint: from 0.10.0 to 0.10.1wrapcheck: from 2.11.0 to 2.12.0godoclint: from 0.10.1 to 0.10.2customcommandnodejs/node (node)
v20.20.0: 2026-01-13, Version 20.20.0 'Iron' (LTS), @marco-ippolitoCompare Source
This is a security release.
Notable Changes
lib:
lib,permission:
src:
src,lib:
tls:
Commits
8f9ba3f623] - deps: update c-ares to v1.34.6 (Node.js GitHub Bot) #6099797fc9b0eb7] - deps: update undici to 6.23.0 (Matteo Collina) nodejs-private/node-private#79214fbbb510c] - (CVE-2025-55132) lib: disable futimes when permission model is enabled (RafaelGSS) nodejs-private/node-private#8021febc48d5b] - (CVE-2025-59465) lib: add TLSSocket default error handler (RafaelGSS) nodejs-private/node-private#797494f62dc23] - (CVE-2025-55130) lib,permission: require full read and write to symlink APIs (RafaelGSS) nodejs-private/node-private#760d7a5c587c0] - (CVE-2025-59466) src: rethrow stack overflow exceptions in async_hooks (Matteo Collina) nodejs-private/node-private#77351f4de4b4a] - (CVE-2025-55131) src,lib: refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич) nodejs-private/node-private#75985f73e7057] - (CVE-2026-21637) tls: route callback exceptions through error handlers (Matteo Collina) nodejs-private/node-private#796v20.19.6: 2025-11-25, Version 20.19.6 'Iron' (LTS), @marco-ippolitoCompare Source
Notable Changes
6277910a15] - crypto: update root certificates to NSS 3.114 (Node.js GitHub Bot) #59571082e50d4a2] - doc: update the instruction on how to verify releases (Antoine du Hamel) #59113db68cec4cb] - doc: deprecate HTTP/2 priority signaling (Matteo Collina) #58313Commits
0f644df42e] - build: fix 'implicit-function-declaration' on OpenHarmony platform (hqzing) #59547fba0025b9c] - build: usewindows-2025runner (Michaël Zasso) #596733456ec946d] - crypto: update root certificates to NSS 3.116 (Node.js GitHub Bot) #599566277910a15] - crypto: update root certificates to NSS 3.114 (Node.js GitHub Bot) #595711788fb5f3d] - deps: update undici to 6.22.0 (Matteo Collina) #601125d61b55f24] - deps: update uvwasi to 0.0.23 (Node.js GitHub Bot) #597919f1e5e4637] - deps: update histogram to 0.11.9 (Node.js GitHub Bot) #59689d0edb01d25] - deps: update googletest toeb2d85e(Node.js GitHub Bot) #59335576242ff39] - deps: V8: cherry-picka0d0d4f(Ho Cheung) #60716a07a277020] - deps: update corepack to 0.34.1 (Node.js GitHub Bot) #60314fa5c5af8ce] - deps: update archs files for openssl-3.0.17 (Node.js GitHub Bot) #59134556113e2fc] - deps: upgrade openssl sources to openssl-3.0.17 (Node.js GitHub Bot) #59134cd1536ca90] - deps: update corepack to 0.34.0 (Node.js GitHub Bot) #59133acec79989e] - deps: V8: cherry-pick6b1b9bc(zhoumingtao) #59283e65b930aa7] - deps: V8: backport2e4c5cf(Michaël Zasso) #606541b75a601f7] - doc: fix typo on child_process.md (Angelo Gazzola) #60114a2bcb217c6] - doc: fix typo in section on microtask order (Tobias Nießen) #599322426d3f3ff] - doc: add security escalation policy (Ulises Gascón) #59806e7f6f04758] - doc: add Miles Guicent as triager (Miles Guicent) #59562e51ef3f48b] - doc: update install_tools.bat free disk space (Stefan Stojanovic) #595798a504d900a] - doc: fix missing link to the Error documentation in thehttppage (Alexander Makarenko) #590808c5c8aa71d] - doc: clarify experimental platform vulnerability policy (Matteo Collina) #59591109c4bff77] - doc: add security incident reponse plan (Rafael Gonzaga) #594704f004efdf3] - doc: add RafaelGSS as performance strategic lead (Rafael Gonzaga) #59445caa2db4bac] - doc: fix links in test.md (Vas Sudanagunta) #58876082e50d4a2] - doc: update the instruction on how to verify releases (Antoine du Hamel) #5911319a66365d9] - doc: clarify DEP0194 scope (Antoine du Hamel) #58504db68cec4cb] - doc: deprecate HTTP/2 priority signaling (Matteo Collina) #583133b2368774f] - doc: make Stability labels not sticky in Stability index (Livia Medeiros) #58291960d05ad7d] - doc: add history entries to--input-typesection (Antoine du Hamel) #5817520616f1750] - http2: do not crash on mismatched ping buffer length (René) #601359eb94232c8] - lib: handle superscript variants on windows device (Rafael Gonzaga) #59261dc58b4e35f] - meta: move Michael to emeritus (Michael Dawson) #60070d943cfb260] - meta: bump actions/setup-node from 4.4.0 to 5.0.0 (dependabot[bot]) #60093de9a3aaf0f] - meta: bump step-security/harden-runner from 2.12.2 to 2.13.1 (dependabot[bot]) #60094b4b5d4a4d7] - meta: bump ossf/scorecard-action from 2.4.2 to 2.4.3 (dependabot[bot]) #60096e5b4eee901] - meta: bump actions/setup-python from 5.6.0 to 6.0.0 (dependabot[bot]) #600907cb032c2c1] - meta: update devcontainer to the latest schema (Aviv Keller) #54347bb108191aa] - meta: callcreate-release-post.ymlpost release (Aviv Keller) #603662a11d50526] - module: correctly detect top-level await in ambiguous contexts (Shima Ryuhei) #58646144233b71a] - process: fix wrong asyncContext under unhandled-rejections=strict (Shima Ryuhei) #60103409cb773a4] - repl: fix cpu overhead pasting big strings to the REPL (Ruben Bridgewater) #59857d1c9d80cac] - repl: add isValidParentheses check before wrap input (Xuguang Mei) #59607b8d145db2c] - src: fix order of CHECK_NOT_NULL/dereference (Tobias Nießen) #594872c8a73f95f] - src: remove duplicate assignment ofO_EXCLin node_constants.cc (Daniel Osvaldo R) #59049b1da374503] - test: fix typo of test-benchmark-readline.js (Deokjin Kim) #599934b4e38f497] - test: mark sea tests flaky on macOS x64 (Richard Lau) #60068cbf4fc34c3] - test: skip more sea tests on Linux ppc64le (Richard Lau) #597559543facad7] - test: mark test-inspector-network-fetch as flaky again (Joyee Cheung) #596404f858d22ac] - test: skip test-fs-cp* tests that are constantly failing on Windows (Joyee Cheung) #596373ec534dbe8] - test: skip sea tests on Linux ppc64le (Richard Lau) #59563a7a109f926] - test: fix typos (Lee Jiho) #59330fd9d43da46] - test: skip failing test on macOS 15.7+ (Antoine du Hamel) #60419bc3ffbd713] - test_runner: fix isSkipped check in junit (Sungwon) #594140cace96472] - test_runner: correct "already mocked" error punctuation placement (Jacob Smith) #5884076001f9480] - tools: remove unused actions frombuild-tarball.yml(Antoine du Hamel) #5978769904844bb] - tools: do not attempt to compress tgz archive (Antoine du Hamel) #59785a6e7adb173] - tools: fix return value of try_check_compiler (theanarkh) #594346443ad2da5] - tools: drop deprecatedmacos-13runner (Richard Lau) #6067945ec702ef7] - tools: fixtools/make-v8.shfor clang (Richard Lau) #59893393ff7226e] - util: fix numericSeparator with negative fractional numbers (sangwook) #593799e8beff0f4] - util: fix error's namespaced node_modules highlighting using inspect (Ruben Bridgewater) #59446python/cpython (python)
v3.14.3Compare Source
v3.14.2Compare Source
v3.14.1Compare Source
v3.14.0Compare Source
v3.13.12Compare Source
v3.13.11Compare Source
v3.13.10Compare Source
v3.13.9Compare Source
v3.13.8Compare Source
v3.13.7Compare Source
v3.13.6Compare Source
v3.13.5Compare Source
v3.13.4Compare Source
v3.13.3Compare Source
v3.13.2Compare Source
v3.13.1Compare Source
v3.13.0Compare Source
v3.12.12Compare Source
v3.12.11Compare Source
v3.12.10Compare Source
v3.12.9Compare Source
v3.12.8Compare Source
v3.12.7Compare Source
v3.12.6Compare Source
v3.12.5Compare Source
v3.12.4Compare Source
v3.12.3Compare Source
v3.12.2Compare Source
v3.12.1Compare Source
v3.12.0Compare Source
v3.11.14Compare Source
v3.11.13Compare Source
v3.11.12Compare Source
v3.11.11Compare Source
v3.11.10Compare Source
v3.11.9Compare Source
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR has been generated by Renovate Bot.