Skip to content

Bump the go-deps group with 15 updates#3869

Merged
roger2hk merged 2 commits intomasterfrom
dependabot/go_modules/go-deps-7649ddcd7a
Mar 30, 2026
Merged

Bump the go-deps group with 15 updates#3869
roger2hk merged 2 commits intomasterfrom
dependabot/go_modules/go-deps-7649ddcd7a

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 27, 2026

Bumps the go-deps group with 15 updates:

Package From To
cloud.google.com/go/spanner 1.88.0 1.89.0
github.com/jackc/pgx/v5 5.8.0 5.9.1
github.com/lib/pq 1.11.2 1.12.0
golang.org/x/crypto 0.48.0 0.49.0
golang.org/x/sync 0.19.0 0.20.0
golang.org/x/sys 0.41.0 0.42.0
golang.org/x/tools 0.42.0 0.43.0
google.golang.org/api 0.265.0 0.272.0
google.golang.org/genproto 0.0.0-20260128011058-8636f8732409 0.0.0-20260217215200-42d3e9bedb6d
google.golang.org/genproto/googleapis/api 0.0.0-20260203192932-546029d2fa20 0.0.0-20260316180232-0b37fe3546d5
google.golang.org/genproto/googleapis/rpc 0.0.0-20260203192932-546029d2fa20 0.0.0-20260316180232-0b37fe3546d5
k8s.io/api 0.35.2 0.35.3
k8s.io/apimachinery 0.35.2 0.35.3
k8s.io/client-go 0.35.2 0.35.3
k8s.io/klog/v2 2.130.1 2.140.0

Updates cloud.google.com/go/spanner from 1.88.0 to 1.89.0

Release notes

Sourced from cloud.google.com/go/spanner's releases.

spanner: v1.89.0

v1.89.0 (2026-03-26)

Features

  • Add E2E fallback to the spanner client. (#13518) (16af6a1c)

  • include cache updates and routing hint into BeginTransaction and Commit request/response respectively (PiperOrigin-RevId: 878019893) (9c80b8b4)

  • add SI, adapt, split point related proto (PiperOrigin-RevId: 871366927) (d3eb851d)

  • Add gRPC A66/A94 metrics (#13825) (d695802a)

  • support Scan from string to NullUUID (#14128) (d897b6db)

Bug Fixes

  • replace multiplexed session request loop with shared in-flight creation (#14215) (3e3bd2d3)

  • guard rollback when aborted commit cleared session handle (#14218) (63151055)

Documentation

  • A comment for field routing_hint in messages .google.spanner.v1.ResultSet and .google.spanner.v1.PartialResultSet are changed (PiperOrigin-RevId: 878019893) (9c80b8b4)

  • A comment in message .google.spanner.v1.TransactionOptions.ReadWrite.ReadLockMode is changed (PiperOrigin-RevId: 878019893) (9c80b8b4)

  • A comment for message ListCloudInstancesAction is changed (PiperOrigin-RevId: 871366927) (d3eb851d)

  • A comment for field execution_options in message .google.spanner.executor.v1.StartTransactionAction is changed (PiperOrigin-RevId: 871366927) (d3eb851d)

  • A comment for message TransactionExecutionOptions is changed (PiperOrigin-RevId: 871366927) (d3eb851d)

Commits

Updates github.com/jackc/pgx/v5 from 5.8.0 to 5.9.1

Changelog

Sourced from github.com/jackc/pgx/v5's changelog.

5.9.1 (March 22, 2026)

  • Fix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)

5.9.0 (March 21, 2026)

This release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and PostgreSQL protocol 3.2 support.

It significantly reduces the amount of network traffic when using prepared statements (which are used automatically by default) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.

It also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends deliberately malformed messages.

  • Require Go 1.25+
  • Add SCRAM-SHA-256-PLUS support (Adam Brightwell)
  • Add OAuth authentication support for PostgreSQL 18 (David Schneider)
  • Add PostgreSQL protocol 3.2 support (Dirkjan Bussink)
  • Add tsvector type support (Adam Brightwell)
  • Skip Describe Portal for cached prepared statements reducing network round trips
  • Make LoadTypes query easier to support on "postgres-like" servers (Jelte Fennema-Nio)
  • Default empty user to current OS user matching libpq behavior (ShivangSrivastava)
  • Optimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)
  • Optimize date scanning by replacing regex with manual parsing (Mathias Bogaert)
  • Optimize pgio append/set functions with direct byte shifts (Mathias Bogaert)
  • Make RowsAffected faster (Abhishek Chanda)
  • Fix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)
  • Fix: ContextWatcher goroutine leak (Hank Donnay)
  • Fix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)
  • Fix: pipelineBatchResults.Exec silently swallowing lastRows error
  • Fix: ColumnTypeLength using BPCharArrayOID instead of BPCharOID
  • Fix: TSVector text encoding returning nil for valid empty tsvector
  • Fix: wrong error messages for Int2 and Int4 underflow
  • Fix: Numeric nil Int pointer dereference with Valid: true
  • Fix: reversed strings.ContainsAny arguments in Numeric.ScanScientific
  • Fix: message length parsing on 32-bit platforms
  • Fix: FunctionCallResponse.Decode mishandling of signed result size
  • Fix: returning wrong error in configTLS when DecryptPEMBlock fails (Maxim Motyshen)
  • Fix: misleading ParseConfig error when default_query_exec_mode is invalid (Skarm)
  • Fix: missed Unwatch in Pipeline error paths
  • Clarify too many failed acquire attempts error message
  • Better error wrapping with context and SQL statement (Aneesh Makala)
  • Enable govet and ineffassign linters (Federico Guerinoni)
  • Guard against various malformed binary messages (arrays, hstore, multirange, protocol messages)
  • Fix various godoc comments (ferhat elmas)
  • Fix typos in comments (Oleksandr Redko)
Commits
  • 4e4eaed Release v5.9.1
  • 6273188 Fix batch result format corruption when using cached prepared statements
  • f7b90c2 Merge pull request #2524 from dbussink/pipeline-result-format-reuse
  • 3ce6d75 Add failing test: batch scan corrupted in cache_statement mode
  • b4d8e62 Release v5.9.0
  • c227cd4 Bump minimum Go version from 1.24 to 1.25
  • f492c14 Use reflect.TypeFor instead of reflect.TypeOf for static types
  • ad8fb08 Use sync.WaitGroup.Go to simplify goroutine spawning
  • 3033773 Remove go1.26 build tag from synctest test
  • 83ffb3c Validate multirange element count against source length before allocating
  • Additional commits viewable in compare view

Updates github.com/lib/pq from 1.11.2 to 1.12.0

Release notes

Sourced from github.com/lib/pq's releases.

v1.12.0

  • The next release may change the default sslmode from require to prefer. See #1271 for details.

  • CopyIn() and CopyInToSchema() have been marked as deprecated. These are simple query builders and not needed for COPY [..] FROM STDIN support (which is not deprecated). (#1279)

    // Old
tx.Prepare(CopyIn("temp", "num", "text", "blob", "nothing"))

    // Replacement
tx.Prepare(copy temp (num, text, blob, nothing) from stdin)

Features

  • Support protocol 3.2, and the min_protocol_version and max_protocol_version DSN parameters (#1258).

  • Support sslmode=prefer and sslmode=allow (#1270).

  • Support ssl_min_protocol_version and ssl_max_protocol_version (#1277).

  • Support connection service file to load connection details (#1285).

  • Support sslrootcert=system and use ~/.postgresql/root.crt as the default value of sslrootcert (#1280, #1281).

  • Add a new pqerror package with PostgreSQL error codes (#1275).

    For example, to test if an error is a UNIQUE constraint violation:

    if pqErr, ok := errors.AsType[*pq.Error](https://github.com/lib/pq/blob/HEAD/err); ok && pqErr.Code == pqerror.UniqueViolation {
    log.Fatalf("email %q already exsts", email)
}

    To make this a bit more convenient, it also adds a pq.As() function:

    pqErr := pq.As(err, pqerror.UniqueViolation)
if pqErr != nil {
    log.Fatalf("email %q already exsts", email)
}

Fixes

  • Fix SSL key permission check to allow modes stricter than 0600/0640 (#1265).

  • Fix Hstore to work with binary parameters (#1278).

  • Clearer error when starting a new query while pq is still processing another query (#1272).

  • Send intermediate CAs with client certificates, so they can be signed by an intermediate CA (#1267).

  • Use time.UTC for UTC aliases such as Etc/UTC (#1283).

... (truncated)

Changelog

Sourced from github.com/lib/pq's changelog.

v1.12.0 (2026-03-18)

  • The next release may change the default sslmode from require to prefer. See #1271 for details.

  • CopyIn() and CopyInToSchema() have been marked as deprecated. These are simple query builders and not needed for COPY [..] FROM STDIN support (which is not deprecated). (#1279)

    // Old
tx.Prepare(CopyIn("temp", "num", "text", "blob", "nothing"))

    // Replacement
tx.Prepare(copy temp (num, text, blob, nothing) from stdin)

Features

  • Support protocol 3.2, and the min_protocol_version and max_protocol_version DSN parameters (#1258).

  • Support sslmode=prefer and sslmode=allow (#1270).

  • Support ssl_min_protocol_version and ssl_max_protocol_version (#1277).

  • Support connection service file to load connection details (#1285).

  • Support sslrootcert=system and use ~/.postgresql/root.crt as the default value of sslrootcert (#1280, #1281).

  • Add a new pqerror package with PostgreSQL error codes (#1275).

    For example, to test if an error is a UNIQUE constraint violation:

    if pqErr, ok := errors.AsType[*pq.Error](https://github.com/lib/pq/blob/master/err); ok && pqErr.Code == pqerror.UniqueViolation {
    log.Fatalf("email %q already exsts", email)
}

    To make this a bit more convenient, it also adds a pq.As() function:

    pqErr := pq.As(err, pqerror.UniqueViolation)
if pqErr != nil {
    log.Fatalf("email %q already exsts", email)
}

Fixes

  • Fix SSL key permission check to allow modes stricter than 0600/06400600 (#1265).

  • Fix Hstore to work with binary parameters (#1278).

... (truncated)

Commits
  • 42ab0ff Change default sslmode from "require" to "prefer"
  • 6d40f13 Release v1.12.0
  • 386fc0e Document NULL behaviour with COPY
  • a62682e Better staticcheck cache 2
  • 87ee06c Better staticcheck cache
  • 0962458 Rewrite tests to use pqerror, pq.As()
  • 0d20981 Don't move pq.Error to pqerror.Error
  • 4332138 Add pqerror package
  • 620d6d5 Make tests run faster
  • dc8ff5d Implement connection service file
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.48.0 to 0.49.0

Commits
  • 982eaa6 go.mod: update golang.org/x dependencies
  • 159944f ssh,acme: clean up tautological/impossible nil conditions
  • a408498 acme: only require prompt if server has terms of service
  • cab0f71 all: upgrade go directive to at least 1.25.0 [generated]
  • 2f26647 x509roots/fallback: update bundle
  • See full diff in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits
  • ec11c4a errgroup: fix a typo in the documentation
  • 1a58307 all: modernize interface{} -> any
  • 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/sys from 0.41.0 to 0.42.0

Commits
  • eaaaaee windows/registry: correct KeyInfo.ModTime calculation
  • 942780b cpu: darwin/arm64 feature detection
  • acef388 unix/linux: Prefixmsg and PrefixCacheinfo structs
  • 3687fbd cpu: better defaults on darwin ARM64
  • 48062e9 plan9: change Note to alias syscall.Note
  • 4f23f80 windows: change Signal to alias syscall.Signal
  • 7548802 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/tools from 0.42.0 to 0.43.0

Commits
  • 24a8e95 go.mod: update golang.org/x dependencies
  • 3dd57fb gopls/internal/mcp: refactor unified diff generation
  • fcc014d cmd/digraph: fix package doc
  • 39f0f5c cmd/stress: add -failfast flag
  • 063c264 gopls/test/integration/misc: add diagnostics to flaky test
  • deb6130 gopls/internal/golang: fix hover panic in raw strings with CRLF
  • 5f1186b gopls/internal/analysis/driverutil: remove unnecessary new imports
  • ff45494 go/analysis: expose GoMod etc. to Pass.Module
  • 62daff4 go/analysis/passes/inline: fix panic in inlineAlias with instantiated generic...
  • fcb6088 x/tools: delete obsolete code
  • Additional commits viewable in compare view

Updates google.golang.org/api from 0.265.0 to 0.272.0

Release notes

Sourced from google.golang.org/api's releases.

v0.272.0

0.272.0 (2026-03-16)

Features

v0.271.0

0.271.0 (2026-03-10)

Features

v0.270.0

0.270.0 (2026-03-08)

Features

v0.269.0

0.269.0 (2026-02-24)

Features

... (truncated)

Changelog

Sourced from google.golang.org/api's changelog.

0.272.0 (2026-03-16)

Features

0.271.0 (2026-03-10)

Features

0.270.0 (2026-03-08)

Features

0.269.0 (2026-02-24)

Features

Bug Fixes

  • generator: Handle preview version pkg name (#3511) (2a249ce)

... (truncated)

Commits

Updates google.golang.org/genproto from 0.0.0-20260128011058-8636f8732409 to 0.0.0-20260217215200-42d3e9bedb6d

Commits

Updates google.golang.org/genproto/googleapis/api from 0.0.0-20260203192932-546029d2fa20 to 0.0.0-20260316180232-0b37fe3546d5

Commits

Updates google.golang.org/genproto/googleapis/rpc from 0.0.0-20260203192932-546029d2fa20 to 0.0.0-20260316180232-0b37fe3546d5

Commits

Updates k8s.io/api from 0.35.2 to 0.35.3

Commits

Updates k8s.io/apimachinery from 0.35.2 to 0.35.3

Commits

Updates k8s.io/client-go from 0.35.2 to 0.35.3

Commits
  • 4f1f0a2 Update dependencies to v0.35.3 tag
  • f80003c Merge pull request #136903pohly/automated-cherry-pick-of-#136455
  • 8b41556 fake client-go: un-deprecate NewSimpleClientset
  • See full diff in compare view

Updates k8s.io/klog/v2 from 2.130.1 to 2.140.0

Release notes

Sourced from k8s.io/klog/v2's releases.

Prepare klog release for Kubernetes v1.36

What's Changed

New Contributors

Full Changelog: kubernetes/klog@v2.130.1...v2.140.0

Commits
  • ef4b370 Merge pull request #432 from pierluigilenoci/fix/stderr-threshold-issue-212
  • 39c4c76 refactor: address code review feedback from @​pohly
  • 764a9a3 Merge pull request #430 from pohly/textlogger-optional-header
  • 015c613 Update stderr_threshold_test.go
  • 2f517bd Update klog.go
  • 36bc4ff textlogger: optionally turn off header
  • 5f1f303 Merge pull request #433 from pohly/textlogger-hook-result
  • c469d41 Merge pull request #431 from pohly/ktesting-vmodule-fix
  • 8509d6a ktesting: support multi-line result from AnyToStringHook
  • 08e6e8b Fix stderrthreshold not honored when logtostderr is set
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go-deps group with 15 updates
aaabc3a 
Bumps the go-deps group with 15 updates:

| Package | From | To |
| --- | --- | --- |
| [cloud.google.com/go/spanner](https://github.com/googleapis/google-cloud-go) | `1.88.0` | `1.89.0` |
| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.8.0` | `5.9.1` |
| [github.com/lib/pq](https://github.com/lib/pq) | `1.11.2` | `1.12.0` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.48.0` | `0.49.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.19.0` | `0.20.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.41.0` | `0.42.0` |
| [golang.org/x/tools](https://github.com/golang/tools) | `0.42.0` | `0.43.0` |
| [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.265.0` | `0.272.0` |
| [google.golang.org/genproto](https://github.com/googleapis/go-genproto) | `0.0.0-20260128011058-8636f8732409` | `0.0.0-20260217215200-42d3e9bedb6d` |
| [google.golang.org/genproto/googleapis/api](https://github.com/googleapis/go-genproto) | `0.0.0-20260203192932-546029d2fa20` | `0.0.0-20260316180232-0b37fe3546d5` |
| [google.golang.org/genproto/googleapis/rpc](https://github.com/googleapis/go-genproto) | `0.0.0-20260203192932-546029d2fa20` | `0.0.0-20260316180232-0b37fe3546d5` |
| [k8s.io/api](https://github.com/kubernetes/api) | `0.35.2` | `0.35.3` |
| [k8s.io/apimachinery](https://github.com/kubernetes/apimachinery) | `0.35.2` | `0.35.3` |
| [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.35.2` | `0.35.3` |
| [k8s.io/klog/v2](https://github.com/kubernetes/klog) | `2.130.1` | `2.140.0` |


Updates `cloud.google.com/go/spanner` from 1.88.0 to 1.89.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@spanner/v1.88.0...spanner/v1.89.0)

Updates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.1
- [Changelog](https://github.com/jackc/pgx/blob/master/CHANGELOG.md)
- [Commits](jackc/pgx@v5.8.0...v5.9.1)

Updates `github.com/lib/pq` from 1.11.2 to 1.12.0
- [Release notes](https://github.com/lib/pq/releases)
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md)
- [Commits](lib/pq@v1.11.2...v1.12.0)

Updates `golang.org/x/crypto` from 0.48.0 to 0.49.0
- [Commits](golang/crypto@v0.48.0...v0.49.0)

Updates `golang.org/x/sync` from 0.19.0 to 0.20.0
- [Commits](golang/sync@v0.19.0...v0.20.0)

Updates `golang.org/x/sys` from 0.41.0 to 0.42.0
- [Commits](golang/sys@v0.41.0...v0.42.0)

Updates `golang.org/x/tools` from 0.42.0 to 0.43.0
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](golang/tools@v0.42.0...v0.43.0)

Updates `google.golang.org/api` from 0.265.0 to 0.272.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.265.0...v0.272.0)

Updates `google.golang.org/genproto` from 0.0.0-20260128011058-8636f8732409 to 0.0.0-20260217215200-42d3e9bedb6d
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/genproto/googleapis/api` from 0.0.0-20260203192932-546029d2fa20 to 0.0.0-20260316180232-0b37fe3546d5
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20260203192932-546029d2fa20 to 0.0.0-20260316180232-0b37fe3546d5
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `k8s.io/api` from 0.35.2 to 0.35.3
- [Commits](kubernetes/api@v0.35.2...v0.35.3)

Updates `k8s.io/apimachinery` from 0.35.2 to 0.35.3
- [Commits](kubernetes/apimachinery@v0.35.2...v0.35.3)

Updates `k8s.io/client-go` from 0.35.2 to 0.35.3
- [Changelog](https://github.com/kubernetes/client-go/blob/master/CHANGELOG.md)
- [Commits](kubernetes/client-go@v0.35.2...v0.35.3)

Updates `k8s.io/klog/v2` from 2.130.1 to 2.140.0
- [Release notes](https://github.com/kubernetes/klog/releases)
- [Changelog](https://github.com/kubernetes/klog/blob/main/RELEASE.md)
- [Commits](kubernetes/klog@v2.130.1...2.140.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/spanner
  dependency-version: 1.89.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: github.com/jackc/pgx/v5
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: github.com/lib/pq
  dependency-version: 1.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: golang.org/x/crypto
  dependency-version: 0.49.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: golang.org/x/sync
  dependency-version: 0.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: golang.org/x/sys
  dependency-version: 0.42.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: golang.org/x/tools
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: google.golang.org/api
  dependency-version: 0.272.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
- dependency-name: google.golang.org/genproto
  dependency-version: 0.0.0-20260217215200-42d3e9bedb6d
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: google.golang.org/genproto/googleapis/api
  dependency-version: 0.0.0-20260316180232-0b37fe3546d5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: google.golang.org/genproto/googleapis/rpc
  dependency-version: 0.0.0-20260316180232-0b37fe3546d5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: k8s.io/api
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: k8s.io/apimachinery
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: k8s.io/client-go
  dependency-version: 0.35.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-deps
- dependency-name: k8s.io/klog/v2
  dependency-version: 2.140.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-deps
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 27, 2026
@dependabot dependabot bot requested a review from a team as a code owner March 27, 2026 12:06
@dependabot dependabot bot requested a review from phbnf March 27, 2026 12:06
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 27, 2026
@dpebot
Copy link
Copy Markdown
Collaborator

dpebot commented Mar 27, 2026

/gcbrun

@mhutchinson mhutchinson mentioned this pull request Mar 30, 2026
Open
@dpebot
Copy link
Copy Markdown
Collaborator

dpebot commented Mar 30, 2026

/gcbrun

@roger2hk roger2hk merged commit 53da4ca into master Mar 30, 2026
15 checks passed
@roger2hk roger2hk deleted the dependabot/go_modules/go-deps-7649ddcd7a branch March 30, 2026 15:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mhutchinson mhutchinson mhutchinson approved these changes

@roger2hk roger2hk roger2hk approved these changes

@phbnf phbnf Awaiting requested review from phbnf phbnf is a code owner automatically assigned from google/trillian-team

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dpebot @mhutchinson @roger2hk