Skip to content

chore(deps): bump the dependencies group with 8 updates #1111

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
github-actions merged 2 commits into from
Jun 11, 2025
Merged

chore(deps): bump the dependencies group with 8 updates #1111

github-actions merged 2 commits into from
Jun 11, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 1, 2025
edited
Loading

Bumps the dependencies group with 8 updates:

Package From To
github.com/olekukonko/tablewriter 0.0.5 1.0.7
golang.org/x/crypto 0.37.0 0.38.0
golang.org/x/term 0.31.0 0.32.0
golang.org/x/text 0.24.0 0.25.0
dario.cat/mergo 1.0.1 1.0.2
github.com/ProtonMail/go-crypto 1.2.0 1.3.0
golang.org/x/net 0.39.0 0.40.0
golang.org/x/sys 0.32.0 0.33.0

Updates github.com/olekukonko/tablewriter from 0.0.5 to 1.0.7

Commits

Updates golang.org/x/crypto from 0.37.0 to 0.38.0

Commits
  • aae6e61 go.mod: update golang.org/x dependencies
  • 9c1aa6a ssh/test: reset the random source before capturing a recording
  • 8819902 ssh/test: enable Diffie-Hellman key exchange algorithms
  • 3f311e4 acme: return error from pre-authorization when unsupported
  • 1f7c62c ssh/test: skip unsupported tests on js/wasm
  • a5f8048 acme/autocert: use standard functions to pick the cache directory
  • 958cde8 Revert "chacha20: add loong64 SIMD implementation"
  • 51f005c Revert "salsa20: add loong64 SIMD implementation"
  • 7c35866 Revert "argon2: add loong64 SIMD implementation"
  • 0091fc8 Revert "blake2s: add loong64 SIMD implementation"
  • Additional commits viewable in compare view

Updates golang.org/x/term from 0.31.0 to 0.32.0

Commits

Updates golang.org/x/text from 0.24.0 to 0.25.0

Commits

Updates dario.cat/mergo from 1.0.1 to 1.0.2

Release notes

Sourced from dario.cat/mergo's releases.

v1.0.2

What's Changed

  • Drops gopkg.in/yaml.v3, only used for loading fixtures. Thanks @​trim21 for bringing to my attention (#262) that this library is no longer maintained.

Full Changelog: darccio/mergo@v1.0.1...v1.0.2

Commits
  • 7b33b2b refactor: migrate from YAML to JSON for test data and update related functions
  • 229a214 chore(.well-known): add funding manifest URLs file
  • 6be20c6 chore(SECURITY.md): update supported versions to reflect current versioning
  • 9007623 chore(README) : remove kubernetes from the list of users
  • 2b1eb9c Update FUNDING.yml
  • 2ceb994 Create FUNDING.json
  • See full diff in compare view

Updates github.com/ProtonMail/go-crypto from 1.2.0 to 1.3.0

Release notes

Sourced from github.com/ProtonMail/go-crypto's releases.

Release v1.3.0

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.2.0...v1.3.0

Release v1.3.0-proton

This release is v1.3.0 with support for the following non-standardized features:

Commits
  • 3b22d85 Merge pull request #286 from ProtonMail/feat/v1-api-enforce-signature-hashes
  • a9af95c feat(v1): Only allow acceptable hashes when writing signatures
  • 3c60603 Merge pull request #285 from ProtonMail/feat/decompression-size-limit
  • d664700 feat: Allow to set a decompressed size limit
  • e1ea40e Merge pull request #281 from ProtonMail/fix/clearsign-check-hash
  • 9cd4c3a feat(clearsign): Write complete legacy hash header
  • 244eb1c fix(clearsign): Enforce acceptable hash functions in clearsign
  • a994e32 Merge pull request #284 from ProtonMail/feat/less-restrictive-key-signature
  • 8fe0e95 feat(v2): Tolerate invalid key signatures if one passes
  • See full diff in compare view

Updates golang.org/x/net from 0.39.0 to 0.40.0

Commits
  • 7d6e62a go.mod: update golang.org/x dependencies
  • ea0c1d9 internal/timeseries: use built-in max/min to simplify the code
  • 3e7a445 quic: skip packet numbers for optimistic ack defense
  • 3f563d3 quic: use an enum for sentPacket state
  • a3b6e77 quic: don't re-lose packets when discarding keys
  • 22500a6 quic: decode packet numbers >255 in tests
  • dd0b200 quic: remove go1.21 build constraint
  • See full diff in compare view

Updates golang.org/x/sys from 0.32.0 to 0.33.0

Commits
  • 3d9a6b8 windows: add WSADuplicateSocket
  • c0a9559 cpu: add crypto extensions detection for riscv64
  • 8e9e046 windows: add virtual key codes and console input consts
  • 7138967 windows: fix slicing of NTUnicodeString values
  • 6a85559 windows: fix dangling pointers in (*SECURITY_DESCRIPTOR).ToAbsolute
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @EtienneM.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the dependencies group with 8 updates
fe1eae9 
Bumps the dependencies group with 8 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/olekukonko/tablewriter](https://github.com/olekukonko/tablewriter) | `0.0.5` | `1.0.7` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.37.0` | `0.38.0` |
| [golang.org/x/term](https://github.com/golang/term) | `0.31.0` | `0.32.0` |
| [golang.org/x/text](https://github.com/golang/text) | `0.24.0` | `0.25.0` |
| [dario.cat/mergo](https://github.com/imdario/mergo) | `1.0.1` | `1.0.2` |
| [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.2.0` | `1.3.0` |
| [golang.org/x/net](https://github.com/golang/net) | `0.39.0` | `0.40.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.32.0` | `0.33.0` |


Updates `github.com/olekukonko/tablewriter` from 0.0.5 to 1.0.7
- [Commits](olekukonko/tablewriter@v0.0.5...v1.0.7)

Updates `golang.org/x/crypto` from 0.37.0 to 0.38.0
- [Commits](golang/crypto@v0.37.0...v0.38.0)

Updates `golang.org/x/term` from 0.31.0 to 0.32.0
- [Commits](golang/term@v0.31.0...v0.32.0)

Updates `golang.org/x/text` from 0.24.0 to 0.25.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.24.0...v0.25.0)

Updates `dario.cat/mergo` from 1.0.1 to 1.0.2
- [Release notes](https://github.com/imdario/mergo/releases)
- [Commits](darccio/mergo@v1.0.1...v1.0.2)

Updates `github.com/ProtonMail/go-crypto` from 1.2.0 to 1.3.0
- [Release notes](https://github.com/ProtonMail/go-crypto/releases)
- [Commits](ProtonMail/go-crypto@v1.2.0...v1.3.0)

Updates `golang.org/x/net` from 0.39.0 to 0.40.0
- [Commits](golang/net@v0.39.0...v0.40.0)

Updates `golang.org/x/sys` from 0.32.0 to 0.33.0
- [Commits](golang/sys@v0.32.0...v0.33.0)

---
updated-dependencies:
- dependency-name: github.com/olekukonko/tablewriter
  dependency-version: 1.0.7
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: golang.org/x/crypto
  dependency-version: 0.38.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/term
  dependency-version: 0.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/text
  dependency-version: 0.25.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: dario.cat/mergo
  dependency-version: 1.0.2
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: github.com/ProtonMail/go-crypto
  dependency-version: 1.3.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/net
  dependency-version: 0.40.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: golang.org/x/sys
  dependency-version: 0.33.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Jun 1, 2025

The reviewers field in the dependabot.yml file will be removed soon. Please use the code owners file to specify reviewers for Dependabot PRs. For more information, see this blog post.

@dependabot dependabot bot requested a review from EtienneM June 1, 2025 00:56
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jun 1, 2025
@github-actions github-actions bot enabled auto-merge June 1, 2025 00:56
EtienneM
EtienneM approved these changes Jun 11, 2025
View reviewed changes
Copy link
Member

@EtienneM EtienneM left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dependabot merge

@github-actions github-actions bot merged commit 69d7fbe into master Jun 11, 2025
8 checks passed
@github-actions github-actions bot deleted the dependabot/go_modules/dependencies-98738a52ee branch June 11, 2025 12:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@EtienneM EtienneM EtienneM approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@EtienneM