chore(deps): bump the go group with 5 updates #521

dependabot · 2025-07-01T21:51:36Z

Bumps the go group with 5 updates:

Package	From	To
github.com/go-git/go-git/v5	`5.16.0`	`5.16.2`
github.com/hashicorp/go-retryablehttp	`0.7.7`	`0.7.8`
golang.org/x/sync	`0.14.0`	`0.15.0`
github.com/sergi/go-diff	`1.3.2-0.20230802210424-5b0b94c5c0d3`	`1.4.0`
golang.org/x/mod	`0.24.0`	`0.25.0`

Updates github.com/go-git/go-git/v5 from 5.16.0 to 5.16.2

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.16.2

What's Changed

utils: fix diff so subpaths work for sparse checkouts, fixes 1455 to releases/v5.x by @kane8n in go-git/go-git#1567

Full Changelog: go-git/go-git@v5.16.1...v5.16.2

v5.16.1

What's Changed

utils: merkletrie, Fix diff on sparse-checkout index. Fixes #1406 to releases/v5.x by @kane8n in go-git/go-git#1561

New Contributors

@kane8n made their first contribution in go-git/go-git#1561

Full Changelog: go-git/go-git@v5.16.0...v5.16.1

Commits

ed8216c Merge pull request #1567 from kane8n/backport-to-v5-patricsss/fix-1455
4f35eba Merge pull request #1484 from patricsss/patricsss/fix-1455
fd1a836 Merge pull request #1561 from kane8n/backport-to-v5-fix-sparse-checkout-status
c3c8410 Merge pull request #1492 from onee-only/fix-sparse-checkout-status
See full diff in compare view

Updates github.com/hashicorp/go-retryablehttp from 0.7.7 to 0.7.8

Commits

e1f5485 Add a new RateLimitLinearJitterBackoff policy
b0cac1e Merge pull request #262 from hashicorp/dependabot-intge
66c110b few new parameters added to dependabot.yml
25b39e6 IND-3836 additions of new parameters to dependabot.yml
eeac125 add comment for bodyType param in client.Post
390c1d8 Merge pull request #254 from hashicorp/compliance/add-headers
f4d7325 [COMPLIANCE] Add Copyright and License Headers
a881d6c Merge pull request #251 from hashicorp/build-test
9c1b40b go-version matrix updated
e3867e3 resolved comments
Additional commits viewable in compare view

Updates golang.org/x/sync from 0.14.0 to 0.15.0

Commits

8a14946 errgroup: remove duplicated comment
1869c69 all: replace deprecated ioutil
d1ac909 sync/errgroup: PanicError.Error print stack trace
See full diff in compare view

Updates github.com/sergi/go-diff from 1.3.2-0.20230802210424-5b0b94c5c0d3 to 1.4.0

Commits

See full diff in compare view

Updates golang.org/x/mod from 0.24.0 to 0.25.0

Commits

9d33331 x/mod: add the ignore directive
ae88a97 all: change from sort functions to slices functions
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

demeyerthom · 2025-07-04T10:17:13Z

@dependabot rebase

Bumps the go group with 5 updates: | Package | From | To | | --- | --- | --- | | [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.0` | `5.16.2` | | [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp) | `0.7.7` | `0.7.8` | | [golang.org/x/sync](https://github.com/golang/sync) | `0.14.0` | `0.15.0` | | [github.com/sergi/go-diff](https://github.com/sergi/go-diff) | `1.3.2-0.20230802210424-5b0b94c5c0d3` | `1.4.0` | | [golang.org/x/mod](https://github.com/golang/mod) | `0.24.0` | `0.25.0` | Updates `github.com/go-git/go-git/v5` from 5.16.0 to 5.16.2 - [Release notes](https://github.com/go-git/go-git/releases) - [Commits](go-git/go-git@v5.16.0...v5.16.2) Updates `github.com/hashicorp/go-retryablehttp` from 0.7.7 to 0.7.8 - [Changelog](https://github.com/hashicorp/go-retryablehttp/blob/main/CHANGELOG.md) - [Commits](hashicorp/go-retryablehttp@v0.7.7...v0.7.8) Updates `golang.org/x/sync` from 0.14.0 to 0.15.0 - [Commits](golang/sync@v0.14.0...v0.15.0) Updates `github.com/sergi/go-diff` from 1.3.2-0.20230802210424-5b0b94c5c0d3 to 1.4.0 - [Commits](https://github.com/sergi/go-diff/commits/v1.4.0) Updates `golang.org/x/mod` from 0.24.0 to 0.25.0 - [Commits](golang/mod@v0.24.0...v0.25.0) --- updated-dependencies: - dependency-name: github.com/go-git/go-git/v5 dependency-version: 5.16.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: github.com/hashicorp/go-retryablehttp dependency-version: 0.7.8 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: go - dependency-name: golang.org/x/sync dependency-version: 0.15.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: github.com/sergi/go-diff dependency-version: 1.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go - dependency-name: golang.org/x/mod dependency-version: 0.25.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: go ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 1, 2025

dependabot bot requested a review from a team as a code owner July 1, 2025 21:51

dependabot bot requested a review from demeyerthom July 1, 2025 21:51

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jul 1, 2025

dependabot bot force-pushed the dependabot/go_modules/go-711e1391b4 branch from 9d621c1 to 22ad692 Compare July 4, 2025 10:18

demeyerthom merged commit 0ce779b into main Jul 4, 2025
3 checks passed

demeyerthom deleted the dependabot/go_modules/go-711e1391b4 branch July 4, 2025 11:07

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

chore(deps): bump the go group with 5 updates #521

chore(deps): bump the go group with 5 updates #521

Uh oh!

dependabot bot commented on behalf of github Jul 1, 2025 •

edited

Loading

Uh oh!

demeyerthom commented Jul 4, 2025

Uh oh!

Uh oh!

Uh oh!

chore(deps): bump the go group with 5 updates #521

chore(deps): bump the go group with 5 updates #521

Uh oh!

Conversation

dependabot bot commented on behalf of github Jul 1, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

v5.16.2

What's Changed

v5.16.1

What's Changed

New Contributors

Uh oh!

demeyerthom commented Jul 4, 2025

Uh oh!

Uh oh!

Uh oh!

dependabot bot commented on behalf of github Jul 1, 2025 •

edited

Loading