ci(deps): update gohugoio/hugo action to v0.129.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
gohugoio/hugo	action	minor	v0.118.2 -> v0.129.0

---

Release Notes

gohugoio/hugo (gohugoio/hugo)

v0.129.0

Compare Source

This release brings a rewrite of the logic around browser refreshes when running hugo server. We have seen some situations where asset changes (e.g. image/CSS/JS) has not been refreshed reliably in all browsers, even with the developer console open and the cache disabled. We suspect this comes from a recent browser bug (typically: Works fine in Safari, does not refresh in Chrome). The strategy we've been using when a change triggers multiple changes (e.g. both HTML and CSS) is to do one "browser force refresh", which in LiveReload ends up as a window.location.reload(). With this release we:

1. Are more specific about what we refresh, but fall back to "force refresh" for bigger change sets.
2. INFO log exactly what we do in these situations with the prefix livereload.

Start the server with:

hugo server --logLevel info

And you should see how Hugo handles browser updates when you change content/templates etc.

A related tip; start the server with

hugo server --logLevel info -N

Hugo will navigate to the content file you're changing and log it in the console.

Also new in this release a new xxHash hashing function that is much faster than any of the other hashing functions in Hugo, especially for larger inputs.

Note

We have upgraded the integration with Git used to load GitInfo to be part of Hugo's Security Policy. We have added git to the default whitelist, but if you have a custom security policy, you may have to update that.

Bug fixes

• commands: Fix --navigateToChanged server behavior when editing headless content cc2d19e @​bep #​12648
• commands: Fix hugo mod get -u ./... 251a23e @​bep #​12625

Improvements

• tpl: Use xxHash instead of MD5 to hash the deferred templates 4d8bfa7 @​bep
• Throw error if resources.PostProcess is used in a deferred template f0ed91c @​bep #​12655
• commands: Simplify the browser live reload logic 094f746 @​bep #​12643
• Use xxHash for the change detector fb8909d @​bep #​12643
• source: Expose GitInfo Body 0ee2610 @​PeskyPotato #​10905
• Add hash.XxHash 644d554 @​bep #​12635

Dependency Updates

• deps: Upgrade github.com/bep/gitmap v1.4.0 => v1.6.0 (note) 7be0377 @​bep #​8627
• deps: Go mod tidy 439f07e @​bep
• deps: Upgraded github.com/tdewolff/minify/v2 v2.20.20 => v2.20.36 ce5a2ce @​bep
• deps: Upgrade to golang.org/x/image v0.18.0 0f42d97 @​bep

v0.128.2

Compare Source

What's Changed

• Fix site.GetPage, never do short lookups for paths with leadig slash 8cf96f2 @​bep #​12638

v0.128.1

Compare Source

What's Changed

• Fix it so publishDate rolls up to section, taxonomy, or term pages 7b6dafc @​bep #​12438
• create/skeletons: Fix languageCode region subtag a95fe50 @​CyrusYip
• Update README.md 932ab4c @​jmooring

v0.128.0

Compare Source

This release brings TailwindCSS v4 (alpha) support. For more info about the TailwindCSS 4 integration, see this repo. Also notable is the new templates.Defer template func and the dramatically improved performance of $page.GetTerms for bigger sites.

Bug fixes

• tpl/debug: Fix reset of debug timers when running the server c880faa @​bep #​12621
• Fix Erroridf/Warnidf mixed case issue 8731d88 @​bep #​12617
• Fix live reload when both CSS and HTML changes ad6d91c @​bep #​12600
• config: Fix typo 7ee36b3 @​razonyang

Improvements

• Add css.TailwindCSS e1317dd @​bep #​12618 #​12620
• Clean up the css related template funcs package structure eddcd2b @​bep #​12618
• modules: Remove newly introduced "mount source" does not exist warning 16e4662 @​bep
• Implement defer 6cd0784 @​bep #​8086 #​12589
• common/hexec: Fall back to the binary in PATH if npx fails 1c85830 @​bep #​12486
• deploy: Add stripIndexHtml target option d5542ed @​depp #​12607
• Speed up GetTerms 478a910 @​bep #​12610
• markup/goldmark: Add the Hugo Goldmark Extras "delete" extension 8efc75b @​jmooring #​12597
• resources: Update Dart Sass error message 57165d4 @​jmooring
• resources/page: Deprecate PageSize in favor of PagerSize 9c3143c @​bep #​12572
• Rename DefaultPageSize => PagerSize 9f22bc4 @​bep
• resources/page: Let GroupByParam return nil instead of error cba2de6 @​jmooring #​12578
• Add option to not generate aliases for first page of pagination pages 9c4e14e @​bep #​12572
• js: Support more recent targets with js.Build / esbuild 1cdd3d0 @​bep #​12575

Dependency Updates

• deps: Upgrade github.com/yuin/goldmark v1.7.2 => v1.7.4 79da24a @​jmooring
• deps: Upgrade github.com/yuin/goldmark-emoji v1.0.2 => v1.0.3 b187c06 @​jmooring
• deps: Upgrade github.com/alecthomas/chroma v2.13.0 => v2.14.0 8cf94ae @​jmooring #​12580
• deps: Upgrade github.com/evanw/esbuild v0.20.2 => v0.21.4 b57306d @​bep #​12575

Build Setup

• Delete unused release hook script 1687a9a @​bep #​12378

Documentation

• Update README.md 3b72446 @​bep
• Update README.md b46d101 @​bep

v0.127.0

Compare Source

This release brings proper HTTP caching and live reloading of remote resources fetched with resources.GetRemote, especially useful when used with content adapters.

Note that this isn't enabled out of the box, so if you need this, you need to add some configuration. The demo below is configured as:

[httpcache]
[httpcache.cache]
[httpcache.cache.for]
includes = ['https://sheets.googleapis.com/**']
[[httpcache.polls]]
low  = '1s'
high = '30s'
[httpcache.polls.for]
includes = ['https://sheets.googleapis.com/**']

hugodemo__v0127.mp4

What's Changed

• Add a HTTP cache for and polling configuration for remote resources. 447108f @​bep #​12502 #​11891
• Misc remote HTTP/content adapter enhancements 2b05a50 @​bep #​12502 #​12570

v0.126.3

Compare Source

• content adapter: Fix site.GetPage using the base part of the path 917199a @​bep #​12561
• resources/page: Deprecate .Sites.First in favor of .Sites.Default c8dac67 @​jmooring #​12513
• metrics: Increase maximum length of cumulative duration to 15 0068f03 @​razonyang
• content adapter: Handle more separator in content.value 0221ddb @​bep #​12556

v0.126.2

Compare Source

Bug fixes

• content adapter: Fix server crash on partial edit 1464091 @​bep #​12538
• content adapter: Fix issue with content starting out with a shortcode 519f41d @​bep #​12544
• tpl/tplimpl: Resolve render hook destinations with leading ./ b893a09 @​jmooring #​12514

Improvements

• Delete .github/workflows/test-dart-sass-v1.yml 2c88e45 @​bep
• commands: Add shorthand flags -M (--renderToMemory) and -N (--navigateToChanged) eaa42a8 @​bep #​12530
• content adapter: Add support for menus in AddPage 245928a @​bep #​12507
• hugolib: Allow override of sitemap file name 7f30617 @​jmooring #​12525
• commands: Improve list command 931e096 @​jmooring #​12520
• config: Remove extraneous BuildConfig setting 548dc21 @​jmooring #​12519
• Also warn about duplicate content paths with --printPathWarnings 6b00661 @​bep #​12511

v0.126.1

Compare Source

What's Changed

• Fix mixed case Page params handling in content adapters 39cf906 @​bep #​12497
• Fix paths with dots issue with content adapters 1aacfce @​bep #​12493

v0.126.0

Compare Source

This release brings, drum roll, a long-awaited Hugo feature that has had many names. At one point we named it pages from data. You can read all about it in the documentation where it's titled Content Adapters.

Also worth mentioning are the new Extras Goldmark Extensions, which allows you to enable Markdown syntax for inserted text, mark text, subscript and superscript. A big thanks to @​bowman2001 for the implementation.

Improvements

• tpl/tplimpl: Plainify title and description in twitter_cards.html 74ab839 @​jmooring #​12433
• tpl/tplimpl: Plainify title and description in schema.html 92290aa @​jmooring #​12432
• resources/images: Handle NaN EXIF latitude and longitude 6dbbe6d @​jmooring #​12490
• Create pages from _content.gotmpl e2d66e3 @​bep #​12427 #​12485 #​6310 #​5074
• create/skeletons: Remove superfluous language code fallback 55dea41 @​jmooring #​12479
• tpl/tplimpl: Improve locale value in opengraph.html 87ab7f7 @​jmooring #​12480
• tpl/tplimpl: Retain query string and fragment in render-image.html 6dfeb9f @​jmooring #​12468
• markup/goldmark: Support extras extension ca9a77e @​jmooring

Dependency Updates

• build(deps): bump golang.org/x/net from 0.24.0 to 0.25.0 ee26e69 @​dependabot[bot]
• build(deps): bump golang.org/x/image from 0.15.0 to 0.16.0 6e83d00 @​dependabot[bot]

Documentation

• docs: Regen docshelper 2661402 @​bep

Build Setup

• livereload: Improve the livereload script build and update to v4.0.2 d02f062 @​bep #​12451 #​6290

v0.125.7

Compare Source

Note that this release is only relevant if you use Hugo's openapi3.Unmarshal template function.

What's Changed

• deps: Downgrade github.com/getkin/kin-openapi v0.124.0 => v0.123.0 3c6260f @​bep

v0.125.6

Compare Source

What's Changed

• Fix one more resource change eviction logic issue bb59a7e @​bep #​12395 #​12456
• Make the cache eviction logic for stale entities more robust 503d209 @​bep #​12458
• build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.1 to 2.2.2 68e9532 @​dependabot[bot]
• Run mage generate 9cd7db6 @​bep
• resources/page: Pull internal Page methods into its own interface c892e75 @​bep

v0.125.5

Compare Source

What's Changed

• Fix rebuilds on cascade deletes/renames 7be7f89 @​bep #​12449
• commands: Print "Webserver is ..." right before "Total ..." c8e400b @​bep #​12384
• Make sure replaced pages gets marked as stale 9dd6870 @​bep #​12436

v0.125.4

Compare Source

What Changed

• Fix rebuilds when running hugo -w 7203a95 @​bep #​12296
• tpl/tplimpl: Fix double-escaping in opengraph template fb51b69 @​jmooring #​12418
• commands: Clarify that create or install a theme are two options fe84cc2 @​Habbie
• config: Setups with only one active language can never be multihost babcb33 @​bep #​12288
• Use Apache License without modification 6b86797 @​bep #​12415
• build(deps): bump github.com/tdewolff/minify/v2 from 2.20.19 to 2.20.20 fb08439 @​dependabot[bot]

v0.125.3

Compare Source

This release fixes a security issue reported by @​ejona86 (see #​12411) that could allow XSS injection from Markdown content files if one of the internal link or image render hook templates added in Hugo 0.123.0 are enabled. You typically control and trust the content files, but according to Hugo's security model, we state that "template and configuration authors (you) are trusted, but the data you send in is not."

• markup/goldmark: Fix data race in the hugocontext wrapper 509ab08 @​bep
• tpl: Escape .Title in built-in image and link render hooks 15a4b9b @​bep
• tpl/tplimpl: Improve embedded templates 10a8448 @​jmooring #​12396
• SECURITY.md: Update link to security model 722c486 @​ejona86
• modules: Fix potential infinite loop in module collection f40f50e @​bep #​12407

v0.125.2

Compare Source

What's Changed

• Only add root sections to the section pages menu 06d2489 @​bep #​12399
• Fix partial rebuilds for SCSS fetched with GetMatch and similar Fixes #​12395 004b694 @​bep
• commands: Add gen chromastyles --lineNumbersTableStyle flag da6112f @​jmooring #​12393
• resources/images: Fix TestColorLuminance on s390x faf9fed @​bep
• commands: Provide examples for chromastyles flags 11aa893 @​jmooring #​12387

v0.125.1

Compare Source

What's Changed

• tpl: Use erroridf for remote YouTube errors 0c188fd @​bep #​12383
• build: Fix `GLIBC_2.29' not found issue bbc6888 @​bep #​12381

v0.125.0

Compare Source

Some of the notable new features in this release:

• strings.Diff template func.
• .PageInner in render hooks to get the inner page when using .RenderShortcode in a shortcode, typically used to resolve links and page resources relative to an included Page.
• Add Luminance to $image.Color, allowing for sorting by relative luminance. e197c7b @​bep #​10450

This release is built with Go 1.22.2 (#​12351) which comes with a fix for security issue CVE-2023-45288. We don't see how that could be exploited in Hugo, but we do appreciate that people want a clean security report.

Bug fixes

• Fix server rebuilds when adding a content file on Linux fa60a2f @​bep #​12362
• helpers: Fix TrimShortHTML when used with AsciiDoc content 6049ba9 @​jmooring #​12369
• github: Fix CI build 9323376 @​bep
• all: Fix duplicate words in comments bf0b140 @​grimreaper
• all: Typo fixes 17765a7 @​coliff
• hugolib: Fix regression for blank summaries 2664052 @​curegit
• Fix sectionPagesMenu for pages in root level 488b21d @​bep #​12306
• Fix resource bundling for overlapping page.md vs page.txt 983b8d5 @​bep #​12320
• Fix panic with debug.Dump with Page when running the server 38e05bd @​bep #​12309
• resources/page: Fix GoDoc comment 27414d4 @​availhang

Improvements

• Add Luminance to Color e197c7b @​bep #​10450
• Pass .RenderShortcodes' Page to render hooks as .PageInner df11327 @​bep #​12356
• github: Add a "free space" step on Ubuntu 8e50ccf @​bep
• helpers: Add BenchmarkTrimShortHTML bfc3122 @​bep
• github: Update actions 00ae8e8 @​bep
• github: Format GitHub actions files e423e56 @​bep
• hugolib: Display server address after each rebuild 09eb822 @​jmooring #​12359
• resources/page: Add taxonomies Page method a6e8439 @​jmooring #​12316
• commands: Adjust completions 38f68cd @​bep
• completion: Improve existing argument completions, add many more a67650b @​scop
• Upgrade to Go 1.22.2 2a060b3 @​bep #​12351
• babel: Run go fmt 92de862 @​bep
• babel: Close file before removing 7907935 @​testwill
• bump golang.org/x/mod from 0.16.0 to 0.17.0 02d5ec1 @​dependabot[bot]
• resources/page: Escape hash sign in permalinks 4500b0e @​sorenisanerd #​4926 #​8232 #​12342
• tpl/strings: Improve type checking 7bf1abf @​jmooring
• tpl/tplimpl: Improve youtube shortcode 8a0ea12 @​jmooring #​3694 #​9213 #​10520 #​10575 #​10576
• errors: Return error from cast.ToStringE() consistently 6f07e59 @​seiyab
• tpl/tplimpl: Improve embedded opengraph template 2da4ec5 @​jmooring #​8296 #​8698 #​8991 #​9818 #​9866 #​10647
• tpl/strings: Create strings.Diff template function 6624979 @​jmooring #​12330
• tpl/tplimpl: Optionally exclude content from sitemap 6738a3e @​jmooring #​653 #​12282
• tpl/tplimpl: Remove trailing slash from void elements 2f7df4b @​jmooring #​11867
• tpl/tplimpl: Update RSS template f0a26cf @​jmooring #​3918 #​11692
• tpl/tplimpl: Update schema template 74ce5dc @​jmooring #​7570
• resources: Use different cache key when copying resources 54a8f0c @​jmooring #​10412 #​12310
• tpl/tplimpl: Update Google Analytics template and config ebfca61 @​jmooring #​11802 #​10093
• hugolib: Conditionally suppress .Site.Author deprecation notice e191774 @​jmooring #​12297

Dependency Updates

• build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.0 to 2.2.1 fe63de3 @​dependabot[bot]
• build(deps): bump google.golang.org/protobuf from 1.31.0 to 1.33.0 a18e2bc @​dependabot[bot]
• build(deps): bump golang.org/x/tools from 0.19.0 to 0.20.0 97df6be @​dependabot[bot]
• build(deps): bump golang.org/x/net from 0.23.0 to 0.24.0 e9b8bec @​dependabot[bot]
• build(deps): bump github.com/getkin/kin-openapi from 0.123.0 to 0.124.0 888cc1e @​dependabot[bot]
• build(deps): bump github.com/pelletier/go-toml/v2 from 2.1.1 to 2.2.0 060cce0 @​dependabot[bot]
• build(deps): bump github.com/yuin/goldmark from 1.7.0 to 1.7.1 5608ba1 @​dependabot[bot]
• build(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudfront 2fedca6 @​dependabot[bot]
• build(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 07873b7 @​dependabot[bot]

Documentation

• docs: Regen docshelper df9f2fb @​bep
• hugolib: Add an asciidoc rebuild test case 74e9129 @​bep #​12375
• markup/asciidocext: Add Level to Heading struct c837f36 @​jmooring #​12291

v0.124.1

Compare Source

What's Changed

• Fix potential deadlock in Translations 758a876 @​bep #​12129
• Fix rebuild when changing mixed case named templates 19937a2 @​bep #​12165
• testing: Set usesFMA as true for riscv64 too c1ea22a @​anthonyfok
• Fix regression for outputs defined in front matter for term pages 0750a9e @​bep #​12275

v0.124.0

Compare Source

The new feature in this release is a new segments configuration section and a new --renderSegments flag/config key. This release also updates to Go 1.22.1 that fixes a security issue in the template package that Hugo uses (CVE-2023-45289, see golang/go#65697). We don't see how this could be exploited in Hugo, but we appreciate that Hugo users want to have a clean security report.

Bug fixes

• Fix .Parent when there are overlapping regular pages inbetween f1d7559 @​bep #​12263
• hugolib: Fix sitemap index with monolingual site 3935faa @​jmooring #​12266
• all: Typo fixes 78178d0 @​coliff
• Fix translationKey handling for term pages 68d92ef @​bep #​12261
• Fix intersect and similar for term entry page collections b40f3c7 @​bep #​12254
• Fix server rebuilds when adding sub sections especially on Windows 07b2e53 @​bep #​12230
• Fix panic when changing archetype files when servere is running 9ca1de0 @​bep #​12195
• Fix front matter date location when value gets inherited from other dates 9668759 @​bep #​12236
• Fix Name for nested resourced fetched in resources.ByName and similar 9e9b1f1 @​bep #​12214

Improvements

• Add segments config + --renderSegments flag 1f1c62e @​bep #​10106
• hugolib: Remove Site.HomeAbsURL 558f74f @​bep
• hugolib: Deprecate site methods Author, Authors, and Social d4d49e0 @​jmooring #​12228
• Upgrade to Go 1.22.1 57206e7 @​bep #​12250
• tpl/tplimpl: Modify figure shortcode to look for page resource 48a0fea @​jmooring #​12244 #​12245
• common/hugo: Rename IsMultiHost and IsMultiLingual dc6a292 @​jmooring #​12232
• hugolib: Deprecate .Site.MultiLingual in favor of hugo.IsMultiLingual 4f92f94 @​jmooring #​12224
• tpl/tplimpl: Remove deprecated method from sitemapindex.xml f038a51 @​jmooring

Dependency Updates

• deps: Upgrade github.com/gohugoio/hugo-goldmark-extensions/passthrough v0.1.0 => v0.2.0 ba03114 @​bep
• build(deps): bump github.com/evanw/esbuild from 0.20.1 to 0.20.2 b1f8676 @​dependabot[bot]
• build(deps): bump golang.org/x/tools from 0.18.0 to 0.19.0 b4bff61 @​dependabot[bot]
• build(deps): bump github.com/tdewolff/minify/v2 from 2.20.17 to 2.20.19 d2cebee @​dependabot[bot]
• deps: Upgrade github.com/alecthomas/chroma/v2 to v2.13.0 be914ff @​myitcv #​11862
• build(deps): bump golang.org/x/mod from 0.15.0 to 0.16.0 e626750 @​dependabot[bot]

Documentation

• docs: Regen CLI docs 76ef3f4 @​bep
• docs: Regen docshelper 0ccb6cd @​bep

Build Setup

• snap: Transition to from core20 to core22 d24ffdd @​jmooring #​12219

v0.123.8

Compare Source

• docs: Fix hyphens and grammar in synopsis of command 'hugo server' ada3fce @​deining
• Fix resource name in resources.ByType a4b1747 @​bep #​12190
• Fix global resource isn't published when using an uncommon code construct 4d5e173 @​bep #​12190
• Fix section page resource not published if resource filename partially matches content file name 4271b6b @​bep #​12198
• Fix taxonomy kind template lookup issue 0567a3e @​bep #​12193
• markup/goldmark: TOC: render strikethrough, emojis 134e7d1 @​lyind #​7169 #​11783 #​12022
• Add hugo.IsMultiHost 1f48b71 @​razonyang
• resources/images: Retain newlines with text overlays 05e23bd @​jmooring #​12206
• Don't auto-create empty sections for nested taxonomies 7afac3f @​bep #​12188
• tpl/tplimpl: Honor markdown attributes in embedded image render hook 632ad74 @​jmooring #​12203

v0.123.7

Compare Source

What's Changed

• hugofs: Fix vertical mount merge issue 2b2f2b7 @​bep #​12175
• Fix and add integration test for the Bootstrap SCSS module for both Dart Sass and Libsass 0d6e593 @​bep #​12178
• Fix resources.GetMatch, resources.Match, and resources.ByType to they don't normalize permalinks 7023cf0 @​bep #​12182
• Make sure that sitemaps gets generated even if there is a content bundle with the same path 9dfa9e7 @​bep #​12183
• resources/page: Make Taxonomy.Get and Taxonomy.Count case-insensitive 3f217fd @​jmooring #​12177

v0.123.6

Compare Source

What's Changed

• Fix panic when cascading headless from site config to section that does not have an _index.md file fce8d82 @​bep #​12172
• Fix assets vs data issue 4a502f7 @​bep #​12133
• Fix draft for non-default content when content in default language does not exist be1dbba @​bep #​12132

v0.123.5

Compare Source

What's Changed

• Fix .Page.Pages with similary named sections 6a8b25e @​bep #​12169
• Fix single mount rename panic a322282 @​bep #​12141
• Fix multihost processed image not copied to non-default content languages 6bc0d74 @​bep [#​12163](https://redirect.github

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.