mirror/kopia
1
0
Fork 0
mirror of https://github.com/kopia/kopia.git synced 2026-05-09 15:23:02 -04:00
Code Issues Packages Projects Releases Wiki Activity
4,106 Commits 6 Branches 88 Tags
master
Commit Graph

4106 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
ashmrtn
981d5f95ad build(deps-dev): update govulncheck version (#5367) 2026-05-08 15:15:37 -07:00
dependabot[bot]
1bb1901915 build(deps): bump fast-uri from 3.1.0 to 3.1.2 in /app (#5366) 
Bumps [fast-uri](https://github.com/fastify/fast-uri) from 3.1.0 to 3.1.2.
- [Release notes](https://github.com/fastify/fast-uri/releases)
- [Commits](https://github.com/fastify/fast-uri/compare/v3.1.0...v3.1.2)

---
updated-dependencies:
- dependency-name: fast-uri
  dependency-version: 3.1.2
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-08 14:48:11 -07:00
ashmrtn
24a5085e0b Update golang toolchain to 1.25.10 (#5365) 2026-05-08 18:02:10 +00:00
Jarek Kowalski
c26c6a1b97 feat(cli): restrict insecure unauthenticated server to loopback binds (#5354) 
* feat(cli): restrict insecure unauthenticated server to loopback binds

Reject starting the server with --insecure and --without-password when
--address would bind outside loopback (including empty host / all
interfaces). Validate the actual listener after Listen so systemd socket
activation cannot bypass the check.

Add hidden --allow-extremely-dangerous-unauthenticated-server-on-the-network
to opt into the previous behavior for isolated environments.

Extract validation into internal/insecureserverbind with table-driven tests.
Add end-to-end smoke tests for rejection and escape hatch.

Co-authored-by: Cursor <cursoragent@cursor.com>

* Update internal/insecureserverbind/insecureserverbind.go

Co-authored-by: Julio López <1953782+julio-lopez@users.noreply.github.com>

* pr feedback

---------

Co-authored-by: Cursor <cursoragent@cursor.com>
Co-authored-by: Julio López <1953782+julio-lopez@users.noreply.github.com>
 2026-05-04 19:51:20 -07:00
dependabot[bot]
17e43ef84a build(deps): bump github.com/klauspost/compress from 1.18.5 to 1.18.6 (#5357) 
Bumps [github.com/klauspost/compress](https://github.com/klauspost/compress) from 1.18.5 to 1.18.6.
- [Release notes](https://github.com/klauspost/compress/releases)
- [Commits](https://github.com/klauspost/compress/compare/v1.18.5...v1.18.6)

---
updated-dependencies:
- dependency-name: github.com/klauspost/compress
  dependency-version: 1.18.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-05 01:19:49 +00:00
dependabot[bot]
cf09101bc8 build(deps): bump github.com/klauspost/reedsolomon from 1.13.3 to 1.14.0 (#5358) 
Bumps [github.com/klauspost/reedsolomon](https://github.com/klauspost/reedsolomon) from 1.13.3 to 1.14.0.
- [Release notes](https://github.com/klauspost/reedsolomon/releases)
- [Commits](https://github.com/klauspost/reedsolomon/compare/v1.13.3...v1.14.0)

---
updated-dependencies:
- dependency-name: github.com/klauspost/reedsolomon
  dependency-version: 1.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-05 01:19:23 +00:00
dependabot[bot]
3c3ff47e6e build(deps): bump go.uber.org/zap from 1.27.1 to 1.28.0 (#5356) 
Bumps [go.uber.org/zap](https://github.com/uber-go/zap) from 1.27.1 to 1.28.0.
- [Release notes](https://github.com/uber-go/zap/releases)
- [Changelog](https://github.com/uber-go/zap/blob/master/CHANGELOG.md)
- [Commits](https://github.com/uber-go/zap/compare/v1.27.1...v1.28.0)

---
updated-dependencies:
- dependency-name: go.uber.org/zap
  dependency-version: 1.28.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-05 01:18:29 +00:00
dependabot[bot]
b53c0321db build(deps): bump the common-golang-dependencies group with 2 updates (#5355) 
Bumps the common-golang-dependencies group with 2 updates: [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) and [google.golang.org/api](https://github.com/googleapis/google-api-go-client).


Updates `github.com/minio/minio-go/v7` from 7.0.100 to 7.1.0
- [Release notes](https://github.com/minio/minio-go/releases)
- [Commits](https://github.com/minio/minio-go/compare/v7.0.100...v7.1.0)

Updates `google.golang.org/api` from 0.276.0 to 0.277.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.277.0)

---
updated-dependencies:
- dependency-name: github.com/minio/minio-go/v7
  dependency-version: 7.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.277.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-05 01:14:26 +00:00
Kopia Builder [bot]
4d6a84a71b feat(ui): upgraded htmlui to the latest version (#5353) 2026-05-02 04:25:13 +00:00
dependabot[bot]
5db9d59b6e build(deps-dev): bump electron (#5351) 
Bumps the kopia-ui-npm-dependencies group in /app with 1 update: [electron](https://github.com/electron/electron).


Updates `electron` from 41.2.2 to 41.3.0
- [Release notes](https://github.com/electron/electron/releases)
- [Commits](https://github.com/electron/electron/compare/v41.2.2...v41.3.0)

---
updated-dependencies:
- dependency-name: electron
  dependency-version: 41.3.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: kopia-ui-npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-01 21:03:11 -07:00
dependabot[bot]
35d7950da8 build(deps): bump github/codeql-action in the github-actions group (#5352) 
Bumps the github-actions group with 1 update: [github/codeql-action](https://github.com/github/codeql-action).


Updates `github/codeql-action` from 4.35.1 to 4.35.2
- [Release notes](https://github.com/github/codeql-action/releases)
- [Changelog](https://github.com/github/codeql-action/blob/main/CHANGELOG.md)
- [Commits](c10b8064de...95e58e9a2c)

---
updated-dependencies:
- dependency-name: github/codeql-action
  dependency-version: 4.35.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-05-01 20:55:07 -07:00
Julio López
6d25951811 refactor(cli): registration mechanism for storage providers (#5350) 2026-04-30 08:25:04 -07:00
ashmrtn
1d826e9cfe chore(ci): split out linux-based lint targets (#5349) 2026-04-29 10:49:38 -07:00
dependabot[bot]
7f8f4c2b23 build(deps): bump github.com/hanwen/go-fuse/v2 from 2.9.0 to 2.10.1 (#5343) 
Bumps [github.com/hanwen/go-fuse/v2](https://github.com/hanwen/go-fuse) from 2.9.0 to 2.10.1.
- [Commits](https://github.com/hanwen/go-fuse/compare/v2.9.0...v2.10.1)

---
updated-dependencies:
- dependency-name: github.com/hanwen/go-fuse/v2
  dependency-version: 2.10.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-28 21:59:32 -07:00
dependabot[bot]
6ca7b3442c build(deps-dev): bump the kopia-ui-npm-dependencies group across 1 directory with 3 updates (#5328) 
Bumps the kopia-ui-npm-dependencies group with 3 updates in the /app directory: [dotenv](https://github.com/motdotla/dotenv), [electron](https://github.com/electron/electron) and [prettier](https://github.com/prettier/prettier).


Updates `dotenv` from 17.4.1 to 17.4.2
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](https://github.com/motdotla/dotenv/compare/v17.4.1...v17.4.2)

Updates `electron` from 41.2.0 to 41.2.2
- [Release notes](https://github.com/electron/electron/releases)
- [Commits](https://github.com/electron/electron/compare/v41.2.0...v41.2.2)

Updates `prettier` from 3.8.2 to 3.8.3
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prettier/prettier/compare/3.8.2...3.8.3)

---
updated-dependencies:
- dependency-name: dotenv
  dependency-version: 17.4.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: kopia-ui-npm-dependencies
- dependency-name: electron
  dependency-version: 41.2.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: kopia-ui-npm-dependencies
- dependency-name: prettier
  dependency-version: 3.8.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: kopia-ui-npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-28 21:54:19 -07:00
dependabot[bot]
7bd7f23910 build(deps-dev): bump @xmldom/xmldom from 0.8.12 to 0.8.13 in /app (#5327) 
Bumps [@xmldom/xmldom](https://github.com/xmldom/xmldom) from 0.8.12 to 0.8.13.
- [Release notes](https://github.com/xmldom/xmldom/releases)
- [Changelog](https://github.com/xmldom/xmldom/blob/master/CHANGELOG.md)
- [Commits](https://github.com/xmldom/xmldom/compare/0.8.12...0.8.13)

---
updated-dependencies:
- dependency-name: "@xmldom/xmldom"
  dependency-version: 0.8.13
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-29 04:51:26 +00:00
Julio López
3aa593164e chore(ci): license-check-go make target (#5347) 2026-04-28 21:39:17 -07:00
dependabot[bot]
f7d80b90f8 build(deps-dev): bump postcss (#5346) 
Bumps the npm_and_yarn group with 1 update in the /site directory: [postcss](https://github.com/postcss/postcss).


Updates `postcss` from 8.5.8 to 8.5.12
- [Release notes](https://github.com/postcss/postcss/releases)
- [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md)
- [Commits](https://github.com/postcss/postcss/compare/8.5.8...8.5.12)

---
updated-dependencies:
- dependency-name: postcss
  dependency-version: 8.5.12
  dependency-type: direct:development
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-28 21:17:43 -07:00
Julio López
fe57e8d8d9 chore(ci): skip setup step on PRs on MacOS (#5344) 2026-04-28 21:16:23 -07:00
Copilot
fd7a4fb5ff build(deps): upgrade uuid to v14 to resolve moderate npm audit vulnerability (#5341) 
Upgrade uuid to v14 to fix npm audit vulnerability
 2026-04-28 20:50:30 -07:00
dependabot[bot]
d7165959f6 build(deps): bump the common-golang-dependencies group with 2 updates (#5325) 
Bumps the common-golang-dependencies group with 2 updates: [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) and [google.golang.org/api](https://github.com/googleapis/google-api-go-client).


Updates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.21.0 to 1.21.1
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases)
- [Commits](https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.21.0...sdk/azcore/v1.21.1)

Updates `google.golang.org/api` from 0.275.0 to 0.276.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.275.0...v0.276.0)

---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azcore
  dependency-version: 1.21.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: common-golang-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.276.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-21 03:06:24 +00:00
Julio López
eee59b0e3c chore(providers): warn messages for extra storage providers (#5324) 
Add warnings for unsupported, not actively tested and not maintained providers
 2026-04-19 22:30:58 -07:00
Julio López
c8b8fe1c7f refactor(general): bigmapbench profiling (#5321) 
- improve bigmapbench stats output
- refactor bigmapbench profiling and remove unneeded dependency
- nit: unexport const
 2026-04-18 12:00:47 -07:00
dependabot[bot]
526dbbc2cf build(deps): bump actions/upload-artifact in the github-actions group (#5318) 
Bumps the github-actions group with 1 update: [actions/upload-artifact](https://github.com/actions/upload-artifact).


Updates `actions/upload-artifact` from 7.0.0 to 7.0.1
- [Release notes](https://github.com/actions/upload-artifact/releases)
- [Commits](bbbca2ddaa...043fb46d1a)

---
updated-dependencies:
- dependency-name: actions/upload-artifact
  dependency-version: 7.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-actions
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-17 06:01:05 +00:00
dependabot[bot]
e82297d9c2 build(deps-dev): bump the kopia-ui-npm-dependencies group (#5317) 
Bumps the kopia-ui-npm-dependencies group in /app with 3 updates: [dotenv](https://github.com/motdotla/dotenv), [electron](https://github.com/electron/electron) and [prettier](https://github.com/prettier/prettier).


Updates `dotenv` from 17.4.0 to 17.4.1
- [Changelog](https://github.com/motdotla/dotenv/blob/master/CHANGELOG.md)
- [Commits](https://github.com/motdotla/dotenv/compare/v17.4.0...v17.4.1)

Updates `electron` from 41.1.1 to 41.2.0
- [Release notes](https://github.com/electron/electron/releases)
- [Commits](https://github.com/electron/electron/compare/v41.1.1...v41.2.0)

Updates `prettier` from 3.8.1 to 3.8.2
- [Release notes](https://github.com/prettier/prettier/releases)
- [Changelog](https://github.com/prettier/prettier/blob/main/CHANGELOG.md)
- [Commits](https://github.com/prettier/prettier/compare/3.8.1...3.8.2)

---
updated-dependencies:
- dependency-name: dotenv
  dependency-version: 17.4.1
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: kopia-ui-npm-dependencies
- dependency-name: electron
  dependency-version: 41.2.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: kopia-ui-npm-dependencies
- dependency-name: prettier
  dependency-version: 3.8.2
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: kopia-ui-npm-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-17 05:59:03 +00:00
Julio López
9652abc58e build(deps): dependabot cooldown (#5316) 2026-04-16 22:35:45 -07:00
Julio López
d1e5c1d8a0 chore(general): clean nits (#5313) 
- make benchmarking params uint
- prevent error in compression benchmarking
- lint on Windows and address linter warnings
- upgrade golang.org/x/exp
- upgrade github.com/cncf/xds/go
- upgrade github.com/dustinkirkland/golang-petname
- direct users to forum
- add warning about _recovery recipes_
 2026-04-16 21:41:39 -07:00
Julio López
5bedcd5057 build(deps): upgrade to github.com/golang-jwt/jwt v5.3.1 (#5314) 
- Changelog: https://github.com/golang-jwt/jwt/releases/tag/v5.3.1
- Remove dependency on github.com/golang-jwt/jwt/v4
 2026-04-16 20:24:29 -07:00
Kopia Builder [bot]
051312b1ce feat(ui): upgraded htmlui to the latest version (#5311) 2026-04-16 17:18:41 -07:00
Julio López
09542631c2 fix(cli): hash benchmarking count (#5312) 
Ref:

- #4181
- #4199
 2026-04-16 16:21:34 -07:00
Julio López
be2ce68b5c breaking(general): remove support for LZ4 (#5296) 
- It has been deprecated in Kopia since July 2022 (0985b80).
- Dependency appears unmaintained.
 2026-04-16 15:13:17 -07:00
Kopia Builder [bot]
c9334c9bc5 feat(ui): upgraded htmlui to the latest version (#5307) 2026-04-13 20:36:36 -07:00
dependabot[bot]
5fdfb19e7f build(deps): bump github.com/mattn/go-isatty from 0.0.20 to 0.0.21 (#5305) 
Bumps [github.com/mattn/go-isatty](https://github.com/mattn/go-isatty) from 0.0.20 to 0.0.21.
- [Commits](https://github.com/mattn/go-isatty/compare/v0.0.20...v0.0.21)

---
updated-dependencies:
- dependency-name: github.com/mattn/go-isatty
  dependency-version: 0.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-13 20:03:52 -07:00
dependabot[bot]
e6b1d56c74 build(deps): bump github.com/mocktools/go-smtp-mock/v2 (#5306) 
Bumps [github.com/mocktools/go-smtp-mock/v2](https://github.com/mocktools/go-smtp-mock) from 2.5.3 to 2.5.4.
- [Release notes](https://github.com/mocktools/go-smtp-mock/releases)
- [Changelog](https://github.com/mocktools/go-smtp-mock/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mocktools/go-smtp-mock/compare/v2.5.3...v2.5.4)

---
updated-dependencies:
- dependency-name: github.com/mocktools/go-smtp-mock/v2
  dependency-version: 2.5.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-14 02:39:28 +00:00
Julio López
40e645e11c refactor(cli): leverage x/term.IsTerminal (#5308) 2026-04-13 19:17:55 -07:00
dependabot[bot]
55629c6d12 build(deps): bump the common-golang-dependencies group with 8 updates (#5304) 
Bumps the common-golang-dependencies group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go) | `1.62.0` | `1.62.1` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.49.0` | `0.50.0` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.34.0` | `0.35.0` |
| [golang.org/x/net](https://github.com/golang/net) | `0.52.0` | `0.53.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.42.0` | `0.43.0` |
| [golang.org/x/term](https://github.com/golang/term) | `0.41.0` | `0.42.0` |
| [golang.org/x/text](https://github.com/golang/text) | `0.35.0` | `0.36.0` |
| [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.274.0` | `0.275.0` |


Updates `cloud.google.com/go/storage` from 1.62.0 to 1.62.1
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-cloud-go/compare/spanner/v1.62.0...storage/v1.62.1)

Updates `golang.org/x/crypto` from 0.49.0 to 0.50.0
- [Commits](https://github.com/golang/crypto/compare/v0.49.0...v0.50.0)

Updates `golang.org/x/mod` from 0.34.0 to 0.35.0
- [Commits](https://github.com/golang/mod/compare/v0.34.0...v0.35.0)

Updates `golang.org/x/net` from 0.52.0 to 0.53.0
- [Commits](https://github.com/golang/net/compare/v0.52.0...v0.53.0)

Updates `golang.org/x/sys` from 0.42.0 to 0.43.0
- [Commits](https://github.com/golang/sys/compare/v0.42.0...v0.43.0)

Updates `golang.org/x/term` from 0.41.0 to 0.42.0
- [Commits](https://github.com/golang/term/compare/v0.41.0...v0.42.0)

Updates `golang.org/x/text` from 0.35.0 to 0.36.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](https://github.com/golang/text/compare/v0.35.0...v0.36.0)

Updates `google.golang.org/api` from 0.274.0 to 0.275.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.274.0...v0.275.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
  dependency-version: 1.62.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: common-golang-dependencies
- dependency-name: golang.org/x/crypto
  dependency-version: 0.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: golang.org/x/mod
  dependency-version: 0.35.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: golang.org/x/net
  dependency-version: 0.53.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: golang.org/x/sys
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: golang.org/x/term
  dependency-version: 0.42.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: golang.org/x/text
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.275.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-13 17:57:36 -07:00
Julio López
775fadcfcf fix(general): retained log size double counting (#5302) 
Fix computation CleanupLogsStats.RetainedBlobSize.
The size of the first blob being deleted was also accounted
towards the retained blob size.
Fix: retainedSize is now incremented only after the size check.

Rename package-private rate limiter variable from limit
to negativeValueWarningLimit for clarity.
 2026-04-11 11:59:07 -07:00
Julio López
2a8ac65be4 refactor(general): make counters and size stats uint64 for consistency (#5262) 
- make counters and size stats uint64 for consistency
- pass `deleteParallelism` as a parameter
 2026-04-10 21:34:17 -07:00
Julio López
e1dce8a049 fix(repository): sync index blob file before closing (#5292) 
- Sync index blob file before closing
- Ensure file is closed even when there are errors
- Remove temp file on error
- Make writeTempFileAtomic testable
- Test writeTempFile atomic
 2026-04-09 10:26:02 -07:00
Julio López
956bc49310 chore(ci): generate govulncheck SARIF report (#5300) 
* chore(ci): generate govulncheck SARIF report

- Generate and uploads govulncheck SARIF report.
- Invoke govulncheck directly instead of using the govulncheck-action.
  This also has the benefit of using the same Go version from the
  go.mod file, without having to explicitly specify it and update it
  in the workflow file.
- Specify workflow and job permissions
 2026-04-08 22:52:18 -07:00
Julio López
66b320a710 refactor(testing): prefer assert.NoError (#5299) 2026-04-08 21:04:36 -07:00
Julio López
9833e92eb0 build(deps): Go 1.25.9 (#5297) 2026-04-07 23:32:11 -07:00
Kopia Builder [bot]
0e8cded33b feat(ui): upgraded htmlui to the latest version (#5291) 2026-04-07 04:42:20 +00:00
Julio López
0661f65703 chore(cli): handle potential conversion overflow when setting progress default (#5271) 2026-04-06 21:38:59 -07:00
dependabot[bot]
632fb9bf34 build(deps): bump cloud.google.com/go/storage (#5290) 
Bumps the common-golang-dependencies group with 1 update: [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go).


Updates `cloud.google.com/go/storage` from 1.61.3 to 1.62.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-cloud-go/compare/storage/v1.61.3...spanner/v1.62.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
  dependency-version: 1.62.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-06 17:13:51 -07:00
Aaron Hastings
6e9b4ab053 docs(site): Improve grammar and clarity in maintenance documentation (#5276) 2026-04-06 17:11:45 -07:00
dependabot[bot]
6784d0b591 build(deps): bump github.com/mocktools/go-smtp-mock/v2 (#5281) 
Bumps [github.com/mocktools/go-smtp-mock/v2](https://github.com/mocktools/go-smtp-mock) from 2.5.1 to 2.5.3.
- [Release notes](https://github.com/mocktools/go-smtp-mock/releases)
- [Changelog](https://github.com/mocktools/go-smtp-mock/blob/master/CHANGELOG.md)
- [Commits](https://github.com/mocktools/go-smtp-mock/compare/v2.5.1...v2.5.3)

---
updated-dependencies:
- dependency-name: github.com/mocktools/go-smtp-mock/v2
  dependency-version: 2.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-04 12:03:17 -07:00
Anthony Accioly
f868e2c296 docs(site): document macOS mounting requirements (#5263) 2026-04-04 11:54:18 -07:00
dependabot[bot]
3134ebde50 build(deps): bump the telemetry-dependencies group with 4 updates (#5280) 
Bumps the telemetry-dependencies group with 4 updates: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go), [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go), [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) and [go.opentelemetry.io/otel/trace](https://github.com/open-telemetry/opentelemetry-go).


Updates `go.opentelemetry.io/otel` from 1.42.0 to 1.43.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.42.0...v1.43.0)

Updates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc` from 1.42.0 to 1.43.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.42.0...v1.43.0)

Updates `go.opentelemetry.io/otel/sdk` from 1.42.0 to 1.43.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.42.0...v1.43.0)

Updates `go.opentelemetry.io/otel/trace` from 1.42.0 to 1.43.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](https://github.com/open-telemetry/opentelemetry-go/compare/v1.42.0...v1.43.0)

---
updated-dependencies:
- dependency-name: go.opentelemetry.io/otel
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: telemetry-dependencies
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: telemetry-dependencies
- dependency-name: go.opentelemetry.io/otel/sdk
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: telemetry-dependencies
- dependency-name: go.opentelemetry.io/otel/trace
  dependency-version: 1.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: telemetry-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-04 18:46:30 +00:00
dependabot[bot]
179a252545 build(deps): bump the common-golang-dependencies group with 3 updates (#5279) 
Bumps the common-golang-dependencies group with 3 updates: [github.com/minio/minio-go/v7](https://github.com/minio/minio-go), [google.golang.org/api](https://github.com/googleapis/google-api-go-client) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).


Updates `github.com/minio/minio-go/v7` from 7.0.99 to 7.0.100
- [Release notes](https://github.com/minio/minio-go/releases)
- [Commits](https://github.com/minio/minio-go/compare/v7.0.99...v7.0.100)

Updates `google.golang.org/api` from 0.273.1 to 0.274.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](https://github.com/googleapis/google-api-go-client/compare/v0.273.1...v0.274.0)

Updates `google.golang.org/grpc` from 1.79.3 to 1.80.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](https://github.com/grpc/grpc-go/compare/v1.79.3...v1.80.0)

---
updated-dependencies:
- dependency-name: github.com/minio/minio-go/v7
  dependency-version: 7.0.100
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: common-golang-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.274.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
- dependency-name: google.golang.org/grpc
  dependency-version: 1.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: common-golang-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-04-04 11:18:46 -07:00