🤖 Bump github.com/pocketbase/pocketbase from 0.22.18 to 0.22.26 in /kubelab-backend

[dependabot]

Bumps github.com/pocketbase/pocketbase from 0.22.18 to 0.22.26.

Release notes

Sourced from github.com/pocketbase/pocketbase's releases.

v0.22.26 Release

To update the prebuilt executable you can run ./pocketbase update.

• (Backported from v0.23.0-rc) Added manual WAL checkpoints before creating the zip backup to minimize copying unnecessary data.

v0.22.25 Release

To update the prebuilt executable you can run ./pocketbase update.

• Refresh the old collections state in the Import UI after successful import submission (#5861).

• Added randomized throttle on failed filter list requests as a very rudimentary measure since some security researches raised concern regarding the possibity of eventual side-channel attacks. This is not really a solution for such attacks but it makes it difficult enough to make it less practical. With v0.23.0 there are several other measures taken but they cannot be backported easily. I'll submit a post a little bit later today clarifying more on it (edit: #5683).

v0.22.24 Release

To update the prebuilt executable you can run ./pocketbase update.

• Delete new uploaded record files in case of DB persist error (#5845).

v0.22.23 Release

To update the prebuilt executable you can run ./pocketbase update.

• Updated the hooks watcher to account for the case when hooksDir is a symlink (#5789).

• (Backported from v0.23.0-rc) Registered a default http.Server.ErrorLog handler to report general server connection errors as app Debug level logs (e.g. invalid TLS handshakes caused by bots trying to access your server via its IP or other similar errors).

• Other minor fixes (updated npm dev deps to fix the vulnerabilities warning, added more user friendly realtime topic length error, regenerated JSVM types, etc.)

v0.22.22 Release

To update the prebuilt executable you can run ./pocketbase update.

• Added deprecation log in case Instagram OAuth2 is used (related to #5652).

• Added update command warning to prevent unnecessary downloading PocketBase v0.23.0 since it will contain breaking changes.

• Added global JSVM toString() helper (successor of readerToString()) to stringify any value (bool, number, multi-byte array, io.Reader, etc.). readerToString is still available but it is marked as deprecated. You can also use toString as replacement for of String.fromCharCode to properly stringify multi-byte unicode characters like emojis.

  decodeURIComponent(escape(String.fromCharCode(...bytes))) -> toString(bytes)

• Updated aws-sdk-go-v2 and removed deprecated WithEndpointResolverWithOptions.

• Backported some of the v0.23.0-rc form validators, fixes and tests.

• Bumped the GitHub action min Go version and dependencies.

v0.22.21 Release

To update the prebuilt executable you can run ./pocketbase update.

... (truncated)

Changelog

Sourced from github.com/pocketbase/pocketbase's changelog.

v0.22.26

• (Backported from v0.23.0-rc) Added manual WAL checkpoints before creating the zip backup to minimize copying unnecessary data.

v0.22.25

• Refresh the old collections state in the Import UI after successful import submission (#5861).

• Added randomized throttle on failed filter list requests as a very rudimentary measure since some security researches raised concern regarding the possibity of eventual side-channel attacks.

v0.22.24

• Delete new uploaded record files in case of record DB persist error (#5845).

v0.22.23

• Updated the hooks watcher to account for the case when hooksDir is a symlink (#5789).

• (Backported from v0.23.0-rc) Registered a default http.Server.ErrorLog handler to report general server connection errors as app Debug level logs (e.g. invalid TLS handshakes caused by bots trying to access your server via its IP or other similar errors).

• Other minor fixes (updated npm dev deps to fix the vulnerabilities warning, added more user friendly realtime topic length error, regenerated JSVM types, etc.)

v0.22.22

• Added deprecation log in case Instagram OAuth2 is used (related to #5652).

• Added update command warning to prevent unnecessary downloading PocketBase v0.23.0 since it will contain breaking changes.

• Added global JSVM toString() helper (successor of readerToString()) to stringify any value (bool, number, multi-byte array, io.Reader, etc.). readerToString is still available but it is marked as deprecated. You can also use toString as replacement for of String.fromCharCode to properly stringify multi-byte unicode characters like emojis.

  decodeURIComponent(escape(String.fromCharCode(...bytes))) -> toString(bytes)

• Updated aws-sdk-go-v2 and removed deprecated WithEndpointResolverWithOptions.

• Backported some of the v0.23.0-rc form validators, fixes and tests.

• Bumped GitHub action min Go version and dependencies.

v0.22.21

• Lock the logs database during backup to prevent database disk image is malformed errors in case there is a log write running in the background (#5541).

... (truncated)

Commits

• 671a6a3 added manual WAL checkpoints before creating the zip backup to minimize copyi...
• dbb0b6b #5861 refresh the old collections in the UI import page on successful impor...
• 0d34c00 added randomized trottle for failed list filter requests
• 8144ad1 updated ui/dist
• 9a9b667 #5845 delete new uploaded record files in case of DB persist error
• 26ef0c6 registered a default http.Server.ErrorLog handler
• 08793ee fixed error message typo
• 75d1c0b updated changelog and jsvm types
• 060a659 #5789 updated the hooks watcher to account for the case when hooksDir is a ...
• caaac6b added topic length validator to avoid relying solely on the body limit for mo...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)