Skip to content

chore(deps): bump the dependencies group with 9 updates #1109

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
github-actions merged 1 commit into from
May 1, 2025
Merged

chore(deps): bump the dependencies group with 9 updates #1109

github-actions merged 1 commit into from
May 1, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github May 1, 2025

Bumps the dependencies group with 9 updates:

Package From To
github.com/go-git/go-git/v5 5.14.0 5.16.0
golang.org/x/crypto 0.36.0 0.37.0
golang.org/x/term 0.30.0 0.31.0
golang.org/x/text 0.23.0 0.24.0
github.com/ProtonMail/go-crypto 1.1.6 1.2.0
github.com/cloudflare/circl 1.6.0 1.6.1
github.com/cpuguy83/go-md2man/v2 2.0.6 2.0.7
golang.org/x/net 0.38.0 0.39.0
golang.org/x/sys 0.31.0 0.32.0

Updates github.com/go-git/go-git/v5 from 5.14.0 to 5.16.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.0

What's Changed

Full Changelog: go-git/go-git@v5.15.0...v5.16.0

v5.15.0

What's Changed

Full Changelog: go-git/go-git@v5.14.0...v5.15.0

Commits
  • 6d4a5c6 Merge pull request #1515 from pjbgf/regre
  • beedd6b plumbing: transport, Reintroduce SetHostKeyCallback. Fix #1514
  • 763ce2e Merge pull request #1510 from hiddeco/mtls-support
  • 5320e1b plumbing: surface transport configuration errors
  • 9bbc93b plumbing: fix unintended pointer mutation in test
  • f3783f4 plumbing: support mTLS for HTTPS protocol
  • 6f444d3 Merge pull request #1505 from pjbgf/bump
  • 9996069 v5: Bump dependencies
  • 768fda7 Merge pull request #1482 from Javier-varez/add-cert-auth-support-v5.x
  • ba9d693 plumbing: support setting custom host key algorithms along with host key call...
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.36.0 to 0.37.0

Commits
  • 959f8f3 go.mod: update golang.org/x dependencies
  • 769bcd6 ssh: use the configured rand in kex init
  • d0a798f cryptobyte: fix typo 'octects' into 'octets' for asn1.go
  • acbcbef acme: remove unnecessary []byte conversion
  • 376eb14 x509roots: support constrained roots
  • b369b72 crypto/internal/poly1305: implement function update in assembly on loong64
  • 6b853fb ssh/knownhosts: check more than one key
  • See full diff in compare view

Updates golang.org/x/term from 0.30.0 to 0.31.0

Commits
  • 5d2308b go.mod: update golang.org/x dependencies
  • e770ddd x/term: disabling auto-completion around GetPassword()
  • See full diff in compare view

Updates golang.org/x/text from 0.23.0 to 0.24.0

Commits

Updates github.com/ProtonMail/go-crypto from 1.1.6 to 1.2.0

Release notes

Sourced from github.com/ProtonMail/go-crypto's releases.

v1.2.0

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.1.6...v1.2.0

Release v1.2.0-proton

What's Changed

This release is v1.2.0 with support for the following non-standardized features:

Commits
  • 70930d7 Merge pull request #280 from ProtonMail/fix/aead-max-chunk-size
  • 54e82fd fix: The max AEAD chunk size must be 4MiB not 65KiB
  • 61ae167 Merge pull request #278 from ProtonMail/chore/bump-go-version
  • af200f2 chore: Update min go version to 1.22.0
  • See full diff in compare view

Updates github.com/cloudflare/circl from 1.6.0 to 1.6.1

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.6.1

  • Fixes some point checks on the FourQ curve.
  • Hybrid KEM fails on low-order points.

What's Changed

Full Changelog: cloudflare/circl@v1.6.0...v1.6.1

Commits
  • c6d33e3 Release v1.6.1
  • 0c3868e curve4q: Shared must fail with low order points.
  • 9fd570d curve4q: Test showing DH does not fails on identity point.
  • c988ceb fourq: Correctly unmarshalling point.
  • ef2611d fourq: Test showing point unmarshal fails.
  • 05eba44 fourq: Handle the case of Z=0 for IsOnCurve and IsEqual.
  • eef0878 fourq: Test showing isEqual and IsOnCurve fail.
  • 2298474 goldilocks; Handling points with z=0.
  • 5a940a1 goldilocks: Test for IsEqual must fail with Z=0
  • 48c3b6a ed25519: Fix isEqual to handle points with Z=0.
  • Additional commits viewable in compare view

Updates github.com/cpuguy83/go-md2man/v2 from 2.0.6 to 2.0.7

Release notes

Sourced from github.com/cpuguy83/go-md2man/v2's releases.

v2.0.7

What's Changed

Full Changelog: cpuguy83/go-md2man@v2.0.6...v2.0.7

Commits
  • 061b6c7 Merge pull request #141 from kolyshkin/fix-long-tables
  • dcb0114 Table rendering fix
  • 75548be Merge pull request #142 from kolyshkin/golangci-v2
  • 993ceeb .golangci.yml: add some more linters
  • 68539cc md2man: remove unused parameters
  • dfd185f Fix nolint directives
  • fc51eb3 golangci-lint: use v2
  • 50e20fb gha: switch to ubuntu-24.04, modern Go versions
  • d95447a md2man: rm unused nolint directive
  • 2d0f4c5 md2man: add package overview
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.38.0 to 0.39.0

Commits

Updates golang.org/x/sys from 0.31.0 to 0.32.0

Commits
  • 01aaa83 all: simplify code by using modern Go constructs
  • 1b2bd6b windows: replace all StringToUTF16 calls with UTF16FromString
  • 1c3b72f unix: update Linux kernel to 6.14
  • c175b6b windows: add cmsghdr and pktinfo structures
  • 3330b5e unix: support Readv, Preadv, Writev and Pwritev for darwin
  • 7401cce cpu: replace specific instructions with WORD in the function get_cpucfg on lo...
  • b8f7da6 cpu: add support for detecting cpu features on loong64
  • f2ce62c windows: add constants for PMTUD socket options
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the dependencies group with 9 updates
ce9c46f 
Bumps the dependencies group with 9 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.14.0` | `5.16.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.36.0` | `0.37.0` |
| [golang.org/x/term](https://github.com/golang/term) | `0.30.0` | `0.31.0` |
| [golang.org/x/text](https://github.com/golang/text) | `0.23.0` | `0.24.0` |
| [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.1.6` | `1.2.0` |
| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.6.0` | `1.6.1` |
| [github.com/cpuguy83/go-md2man/v2](https://github.com/cpuguy83/go-md2man) | `2.0.6` | `2.0.7` |
| [golang.org/x/net](https://github.com/golang/net) | `0.38.0` | `0.39.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.31.0` | `0.32.0` |


Updates `github.com/go-git/go-git/v5` from 5.14.0 to 5.16.0
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](go-git/go-git@v5.14.0...v5.16.0)

Updates `golang.org/x/crypto` from 0.36.0 to 0.37.0
- [Commits](golang/crypto@v0.36.0...v0.37.0)

Updates `golang.org/x/term` from 0.30.0 to 0.31.0
- [Commits](golang/term@v0.30.0...v0.31.0)

Updates `golang.org/x/text` from 0.23.0 to 0.24.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.23.0...v0.24.0)

Updates `github.com/ProtonMail/go-crypto` from 1.1.6 to 1.2.0
- [Release notes](https://github.com/ProtonMail/go-crypto/releases)
- [Commits](ProtonMail/go-crypto@v1.1.6...v1.2.0)

Updates `github.com/cloudflare/circl` from 1.6.0 to 1.6.1
- [Release notes](https://github.com/cloudflare/circl/releases)
- [Commits](cloudflare/circl@v1.6.0...v1.6.1)

Updates `github.com/cpuguy83/go-md2man/v2` from 2.0.6 to 2.0.7
- [Release notes](https://github.com/cpuguy83/go-md2man/releases)
- [Commits](cpuguy83/go-md2man@v2.0.6...v2.0.7)

Updates `golang.org/x/net` from 0.38.0 to 0.39.0
- [Commits](golang/net@v0.38.0...v0.39.0)

Updates `golang.org/x/sys` from 0.31.0 to 0.32.0
- [Commits](golang/sys@v0.31.0...v0.32.0)

---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
  dependency-version: 5.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/crypto
  dependency-version: 0.37.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/term
  dependency-version: 0.31.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/text
  dependency-version: 0.24.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github.com/ProtonMail/go-crypto
  dependency-version: 1.2.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: github.com/cloudflare/circl
  dependency-version: 1.6.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github.com/cpuguy83/go-md2man/v2
  dependency-version: 2.0.7
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: golang.org/x/net
  dependency-version: 0.39.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/sys
  dependency-version: 0.32.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot requested a review from EtienneM May 1, 2025 00:40
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels May 1, 2025
@github-actions github-actions bot enabled auto-merge May 1, 2025 00:40
@github-actions github-actions bot merged commit dee2968 into master May 1, 2025
7 of 8 checks passed
@github-actions github-actions bot deleted the dependabot/go_modules/dependencies-edfca11e83 branch May 1, 2025 00:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@EtienneM EtienneM Awaiting requested review from EtienneM

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant