Skip to content

build(deps): bump the swift-deps group across 1 directory with 2 updates#233

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/swift/apps/macos/swift-deps-37772eff6f
Open

build(deps): bump the swift-deps group across 1 directory with 2 updates#233
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/swift/apps/macos/swift-deps-37772eff6f

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 19, 2026
edited
Loading

Bumps the swift-deps group with 2 updates in the /apps/macos directory: github.com/apple/swift-log and github.com/sparkle-project/sparkle.

Updates github.com/apple/swift-log from 1.11.0 to 1.12.0

Release notes

Sourced from github.com/apple/swift-log's releases.

1.12.0

What's Changed

SemVer Minor

Other Changes

Full Changelog: apple/swift-log@1.11.0...1.12.0

Commits
  • 5073617 SLG-0003: Error parameter implementation (#425)
  • 6f3fbac Bump swiftlang/github-workflows/.github/workflows/soundness.yml from 0.0.8 to...
  • 41f6c72 Retroactively update status of SLG-0005 to Approved (#438)
  • bffceaf Drop Swift 6.0 (#436)
  • 6558438 SLG-0004: Metadata privacy levels proposal (#416)
  • 7c04f86 Enable Swift 6.3 jobs in CI (#435)
  • See full diff in compare view

Updates github.com/sparkle-project/sparkle from 2.9.1 to 2.9.2

Release notes

Sourced from github.com/sparkle-project/sparkle's releases.

2.9.2 Appcast Improvements

Changes:

  • Show hidden window title in update window for accessibility (#2871) (Zorg)
  • Polish and update Spanish translations to be gender neutral (#2874, #2875) (Emilio P Egido)
  • Guard against NULL CFRelease() on failure condition in fallback path (#2867) (Zorg)
  • Guard against symlinks when applying delta update files (fe7b718) (Zorg, fg0x0)
  • Enforce connection to installer to be validated before receiving appcast item data (#2876, #2877) (Zorg, fg0x0)

This release contains two high-complex security fixes reported by @​fg0x0. The details will be posted in the 2.9 discussion.

Please also check 2.9.1 and 2.9.0 for previous changes.

Commits
  • 6276ba2 Update Package management files for version 2.9.2
  • 113279a Improve synchronization of _receivedAppcastItemData (#2877)
  • 7c4741d Update Package management files for version 2.9.2
  • 5df807d Update README for 2.9.2
  • c6ab245 Update Package management files for version 2.9.2
  • 6e370a5 Enforce connection to installer to be validated before receiving appcast item...
  • cbdc150 Polish Spanish localization in Sparkle.strings (#2875)
  • fe7b718 Merge commit from fork
  • d2b796b Update you're up to date Spanish translation to be gender neutral (#2874)
  • 2f33f56 Fix QoS warning when running Test app server on main thread (#2873)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the swift-deps group across 1 directory with 2 updates
29e71af 
Bumps the swift-deps group with 2 updates in the /apps/macos directory: [github.com/apple/swift-log](https://github.com/apple/swift-log) and [github.com/sparkle-project/sparkle](https://github.com/sparkle-project/Sparkle).


Updates `github.com/apple/swift-log` from 1.11.0 to 1.12.0
- [Release notes](https://github.com/apple/swift-log/releases)
- [Commits](apple/swift-log@1.11.0...1.12.0)

Updates `github.com/sparkle-project/sparkle` from 2.9.1 to 2.9.2
- [Release notes](https://github.com/sparkle-project/Sparkle/releases)
- [Commits](sparkle-project/Sparkle@2.9.1...2.9.2)

---
updated-dependencies:
- dependency-name: github.com/apple/swift-log
  dependency-version: 1.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: swift-deps
- dependency-name: github.com/sparkle-project/sparkle
  dependency-version: 2.9.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: swift-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file swift_package_manager Pull requests that update swift_package_manager code labels May 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file swift_package_manager Pull requests that update swift_package_manager code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants