Update dependency open-policy-agent/conftest to v0.65.0 #424
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
2faaad9 to
8d319c7
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
8d319c7 to
c974675
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
c974675 to
4ac07a9
Compare
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
4ac07a9 to
1a86129
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
1a86129 to
3c63055
Compare
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
3c63055 to
20dfd75
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
20dfd75 to
e436581
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
e436581 to
7c50073
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
7c50073 to
0b8befa
Compare
renovate
bot
force-pushed
the
renovate/open-policy-agent-conftest-0.x
branch
from
0b8befa to
07bfa0e
Compare
rh-pre-commit.version: 2.3.2 rh-pre-commit.check-secrets: ENABLED
garethahealy
approved these changes
Dec 15, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
v0.59.0->v0.65.0Release Notes
open-policy-agent/conftest (open-policy-agent/conftest)
v0.65.0Compare Source
Changelog
New Features
7de1f99: feat: Add location to SARIF output (#1207) (@jalseth)Bug Fixes
94bb769: fix(build): Include Git version when using 'make build' (#1218) (@jalseth)ff4e456: fix(sarif): Include conftest version number (#1206) (@jalseth)OPA Changes
8c4cfa6: build(deps): bump github.com/open-policy-agent/opa from 1.10.1 to 1.11.0 (#1224) (@dependabot[bot])Other Changes
3dab980: build(deps): bump cuelang.org/go from 0.15.0 to 0.15.1 (#1217) (@dependabot[bot])cfa85ca: build(deps): bump github.com/moby/buildkit from 0.25.2 to 0.26.2 (#1216) (@dependabot[bot])dd7e3bc: build(deps): bump golang from 1.25.3-alpine to 1.25.4-alpine (#1210) (@dependabot[bot])bbbb04c: chore: Include goreleaser in Nix devshell (#1219) (@jalseth)ac3146f: ci: Pin GitHub Actions to the Git SHA using ratchet (#1204) (@jalseth)v0.64.0Compare Source
Changelog
New Features
00b02b2: feat: Include location in the result output (#1196) (@jalseth)ee91078: feat: Refactor GitHub outputter to support locations from Rego policy (#1197) (@jalseth)d359466: feat: add conftest-fmt and conftest-pull pre-commit hooks (#1192) (@dkolepp)Bug Fixes
997f5ce: fix: Fix XDG writable check on Windows (#1185) (@jalseth)fb9c88d: fix: Only use XDG directories for plugin if they are writable (#1182) (@jalseth)4a2ddd6: fix: Use "python3" instead of "python" in the Makefile (#1184) (@jalseth)OPA Changes
347388d: build(deps): bump github.com/open-policy-agent/opa from 1.9.0 to 1.10.1 (#1201) (@dependabot[bot])Other Changes
75449c3: build(deps): bump alpine from 3.22.1 to 3.22.2 (#1191) (@dependabot[bot])0ade44b: build(deps): bump cuelang.org/go from 0.14.1 to 0.15.0 (#1202) (@dependabot[bot])1ef4588: build(deps): bump github.com/hashicorp/go-getter from 1.8.2 to 1.8.3 (#1199) (@dependabot[bot])d2e56c3: build(deps): bump github.com/moby/buildkit from 0.25.0 to 0.25.2 (#1200) (@dependabot[bot])5242185: build(deps): bump golang from 1.25.1-alpine to 1.25.3-alpine (#1193) (@dependabot[bot])58ace24: build: Add Nix devshell (#1186) (@jalseth)6189512: chore: Fix gitignore for acceptance tests (#1195) (@jalseth)7d41238: ci: Run validation job on Linux, macOS, Windows (#1181) (@jalseth)v0.63.0Compare Source
Changelog
New Features
30b9a8d: feat: add reformat command for JSON output conversion (#1153) (@thevilledev)Bug Fixes
ffb6ce3: fix: Add explicit line-number to GitHub output (#1173) (@tun0)OPA Changes
64bf641: build(deps): bump github.com/open-policy-agent/opa from 1.6.0 to 1.7.1 (#1156) (@dependabot[bot])981983b: build(deps): bump github.com/open-policy-agent/opa from 1.7.1 to 1.8.0 (#1165) (@dependabot[bot])c7aa1d4: build(deps): bump github.com/open-policy-agent/opa from 1.8.0 to 1.9.0 (#1175) (@dependabot[bot])Other Changes
0d903ce: build(deps): bump actions/checkout from 4 to 5 (#1158) (@dependabot[bot])364cf32: build(deps): bump actions/setup-go from 5 to 6 (#1171) (@dependabot[bot])d4aa81f: build(deps): bump actions/setup-python from 5 to 6 (#1172) (@dependabot[bot])a1ecf3f: build(deps): bump alpine from 3.22.0 to 3.22.1 (#1152) (@dependabot[bot])b87ca5f: build(deps): bump cuelang.org/go from 0.13.2 to 0.14.1 (#1159) (@dependabot[bot])1c5abaa: build(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.2 to 0.9.3 (#1177) (@dependabot[bot])2a509fe: build(deps): bump github.com/hashicorp/go-getter from 1.7.8 to 1.7.9 (#1162) (@dependabot[bot])a433ed0: build(deps): bump github.com/hashicorp/go-getter from 1.7.9 to 1.8.0 (#1169) (@dependabot[bot])d9dca30: build(deps): bump github.com/hashicorp/go-getter from 1.8.0 to 1.8.1 (#1174) (@dependabot[bot])b51f6d9: build(deps): bump github.com/hashicorp/go-getter from 1.8.1 to 1.8.2 (#1178) (@dependabot[bot])c664099: build(deps): bump github.com/moby/buildkit from 0.23.2 to 0.24.0 (#1166) (@dependabot[bot])5378cc3: build(deps): bump github.com/moby/buildkit from 0.24.0 to 0.25.0 (#1176) (@dependabot[bot])fb4c503: build(deps): bump golang from 1.25.0-alpine to 1.25.1-alpine (#1170) (@dependabot[bot])0d6e3b4: chore(deps): bump Go version to 1.25 (#1160) (@thevilledev)v0.62.0Compare Source
Changelog
OPA Changes
ebb167d: build(deps): bump github.com/open-policy-agent/opa from 1.5.1 to 1.6.0 (#1149) (@dependabot[bot])Other Changes
4c22f26: build(deps): bump alpine from 3.21.3 to 3.22.0 (#1135) (@dependabot[bot])7cf3311: build(deps): bump cuelang.org/go from 0.13.0 to 0.13.2 (#1148) (@dependabot[bot])2d33645: build(deps): bump github.com/moby/buildkit from 0.22.0 to 0.23.2 (#1150) (@dependabot[bot])89ef4d5: build(deps): bump golang from 1.24.3-alpine to 1.24.4-alpine (#1140) (@dependabot[bot])c7f6f8f: chore: Replace OPA v0 with v1 import paths (#1142) (@jalseth)91d8de7: chore: Use uppercase for all Dockerfile build keywords (#1143) (@jalseth)060ea76: ci: Run docker builds in parallel during release (#1139) (@jalseth)v0.61.2Compare Source
Changelog
Other Changes
e156f0d: Switch back to originalconftest test --updatebehavior (#1138) (@iamleot)v0.61.1Compare Source
Changelog
OPA Changes
8e47770: build(deps): bump github.com/open-policy-agent/opa from 1.5.0 to 1.5.1 (#1137) (@dependabot[bot])v0.61.0Compare Source
Changelog
Bug Fixes
ed0ff0a: fix(test): clean updated policies after test run (#1109) (@kirecek)f82f556: fix: Use v1 as rego version for fmt, too (#1128) (@msw-kialo)OPA Changes
bcba55e: build(deps): bump github.com/open-policy-agent/opa from 1.4.2 to 1.5.0 (#1134) (@dependabot[bot])Other Changes
a826a0b: build(deps): bump cuelang.org/go from 0.12.1 to 0.13.0 (#1131) (@dependabot[bot])d44b480: build(deps): bump github.com/moby/buildkit from 0.21.1 to 0.22.0 (#1129) (@dependabot[bot])f09428f: build(deps): bump golang from 1.24.2-alpine to 1.24.3-alpine (#1124) (@dependabot[bot])1e43dc0: deps: update jsonc import path (#1133) (@st3penta)v0.60.0Compare Source
Announcements
We have set the default version of Rego syntax to v1. This is a breaking change if your Rego policies are not compatible with the v1 syntax.
import rego.v1to the policy.rego-versionflag will remain available indefinitely, and users who do not wish to update their Rego policies can continue to use v0 syntax by setting this flag tov0.For more information about upgrading to Rego v1 syntax, see the upstream docs at https://www.openpolicyagent.org/docs/latest/v0-upgrade/.
Changelog
New Features
06658d4: feat(output): redirect trace output to stderr (#1084) (@thevilledev)18a0f14: feat(runner): add support for symlinks (#1098) (@siliconsheep)OPA Changes
2797c99: build(deps): bump github.com/open-policy-agent/opa from 1.3.0 to 1.4.1 (#1113) (@dependabot[bot])Other Changes
67a3c3e: build(deps): bump actions/setup-go from 4 to 5 (#1102) (@dependabot[bot])609490f: build(deps): bump bats-core/bats-action from 1.5.4 to 3.0.1 (#1104) (@dependabot[bot])9e56924: build(deps): bump github.com/google/go-jsonnet from 0.20.0 to 0.21.0 (#1120) (@dependabot[bot])5ea0446: build(deps): bump github.com/moby/buildkit from 0.20.2 to 0.21.0 (#1101) (@dependabot[bot])21a73eb: build(deps): bump github.com/moby/buildkit from 0.21.0 to 0.21.1 (#1111) (@dependabot[bot])b3d0491: build(deps): bump golangci/golangci-lint-action from 6 to 7 (#1103) (@dependabot[bot])e894c43: build(deps): bump golangci/golangci-lint-action from 7 to 8 (#1119) (@dependabot[bot])3ae2e78: chore: Update Github Actions via Dependabot (#1100) (@mrueg)4c5e5f5: ci: Move docker build to separate job in the PR workflow (#1105) (@jalseth)3907482: cli: Make Rego v1 syntax the default (#1114) (@jalseth)Configuration
📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.