From 683a8bf760b5678a8f76d8bb1647d4433997b2a7 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Sun, 10 Dec 2023 22:53:50 +0000
Subject: [PATCH 1/2] Bump actions/setup-go from 4 to 5

Bumps [actions/setup-go](https://github.com/actions/setup-go) from 4 to 5.
- [Release notes](https://github.com/actions/setup-go/releases)
- [Commits](https://github.com/actions/setup-go/compare/v4...v5)

---
updated-dependencies:
- dependency-name: actions/setup-go
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 .github/workflows/go-dependency-submission.yml | 2 +-
 .github/workflows/go.yml                       | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/go-dependency-submission.yml b/.github/workflows/go-dependency-submission.yml
index 6f39310..384d322 100644
--- a/.github/workflows/go-dependency-submission.yml
+++ b/.github/workflows/go-dependency-submission.yml
@@ -15,7 +15,7 @@ jobs:
       - name: 'Checkout Repository'
         uses: actions/checkout@v4
 
-      - uses: actions/setup-go@v4
+      - uses: actions/setup-go@v5
         with:
           go-version: ">=1.21.0"
 
diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml
index 0d605ff..cea5079 100644
--- a/.github/workflows/go.yml
+++ b/.github/workflows/go.yml
@@ -32,7 +32,7 @@ jobs:
     - uses: actions/checkout@v4
 
     - name: Set up Go
-      uses: actions/setup-go@v4
+      uses: actions/setup-go@v5
       with:
         go-version: '1.21.4'
 
@@ -69,7 +69,7 @@ jobs:
     - uses: actions/checkout@v4
 
     - name: Set up Go
-      uses: actions/setup-go@v4
+      uses: actions/setup-go@v5
       with:
         go-version: '1.21.4'
 

From 0c512b487a72462db50630f1002895cf21ccdcab Mon Sep 17 00:00:00 2001
From: Joe Constant <joe@joeconstant.com>
Date: Sun, 10 Dec 2023 15:57:30 -0700
Subject: [PATCH 2/2] Upgrade workflows to use Go 1.21.5 and lock to specific
 version

---
 .github/workflows/go-dependency-submission.yml | 2 +-
 .github/workflows/go.yml                       | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/.github/workflows/go-dependency-submission.yml b/.github/workflows/go-dependency-submission.yml
index 384d322..c5605c7 100644
--- a/.github/workflows/go-dependency-submission.yml
+++ b/.github/workflows/go-dependency-submission.yml
@@ -17,7 +17,7 @@ jobs:
 
       - uses: actions/setup-go@v5
         with:
-          go-version: ">=1.21.0"
+          go-version: "1.21.5"
 
       - name: Run snapshot action
         uses: actions/go-dependency-submission@v1
diff --git a/.github/workflows/go.yml b/.github/workflows/go.yml
index cea5079..3deefea 100644
--- a/.github/workflows/go.yml
+++ b/.github/workflows/go.yml
@@ -34,7 +34,7 @@ jobs:
     - name: Set up Go
       uses: actions/setup-go@v5
       with:
-        go-version: '1.21.4'
+        go-version: '1.21.5'
 
     - id: govulncheck
       uses: golang/govulncheck-action@v1
@@ -71,7 +71,7 @@ jobs:
     - name: Set up Go
       uses: actions/setup-go@v5
       with:
-        go-version: '1.21.4'
+        go-version: '1.21.5'
 
     - name: Build
       run: go build -v cmd/federation.go