Skip to content

build(deps): Bump the go_modules group across 1 directory with 14 updates#2813

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/go_modules-88242e5e9e
Open

build(deps): Bump the go_modules group across 1 directory with 14 updates#2813
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/go_modules-88242e5e9e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 18, 2026

Copy link
Copy Markdown
Contributor

Bumps the go_modules group with 8 updates in the / directory:

Package From To
github.com/CosmWasm/wasmd 0.45.0 0.53.3
google.golang.org/grpc 1.71.0 1.79.3
filippo.io/edwards25519 1.1.0 1.1.1
github.com/docker/cli 27.4.1+incompatible 29.2.0+incompatible
github.com/dvsekhvalnov/jose2go 1.6.0 1.7.0
github.com/go-viper/mapstructure/v2 2.2.1 2.4.0
github.com/hashicorp/go-getter 1.7.5 1.8.6
github.com/opencontainers/runc 1.2.3 1.2.8

Updates github.com/CosmWasm/wasmd from 0.45.0 to 0.53.3

Release notes

Sourced from github.com/CosmWasm/wasmd's releases.

v0.53.3

Fixes CWA-2025-004, CWA-2025-005 and CWA-2025-006

v0.53.2

See the CHANGELOG for details on the changes in this version.

v0.53.0

See the CHANGELOG for details on the changes in this version.

v0.52.0

Wasmd v0.52.0 Release

See the CHANGELOG for details on the changes in this version.

v0.51.0

Wasmd v0.51.0 Release

See the CHANGELOG for details on the changes in this version.

v0.50.0

Wasmd v0.50.0 Release

See the CHANGELOG for details on the changes in this version.

Big thanks to all the people who helped us with this release! 😍 Especially Binary Builders, Notional and the IBC-Go team 💪 And not to forget our sponsors. 🤗

v0.46.0

See the CHANGELOG for details on the changes in this version.

Changelog

Sourced from github.com/CosmWasm/wasmd's changelog.

Changelog

Unreleased

Full Changelog

v0.70.1 (2026-05-13)

Full Changelog

v0.70.0 (2026-04-24)

Full Changelog

v0.61.12 (2026-05-13)

Full Changelog

v0.61.11 (2026-04-24)

Full Changelog

  • Bump wasmvm to v3.0.4
  • Fix IBC v2 async acknowledgements #2481
  • Fix IBC v2 packet send #2479

v0.61.7 (2026-01-29)

Full Changelog

v0.61.5 (2025-11-04)

Full Changelog

  • Fix ContractInfo protobuf message #2390
  • Retracted v0.61.0 v0.61.1 v0.61.2 v0.61.3 v0.61.4 because of unnecessary api breaking changes. See CosmWasm/wasmd#2386 for more details.

... (truncated)

Commits

Updates github.com/cometbft/cometbft from 0.37.13 to 0.38.11

Release notes

Sourced from github.com/cometbft/cometbft's releases.

v0.38.11

CHANGELOG

v0.38.10

See the CHANGELOG for this release.

v0.38.9

See the CHANGELOG for this release.

v0.38.8

See the CHANGELOG for this release.

v0.38.7

See the CHANGELOG for this release.

v0.38.6

See the CHANGELOG for this release.

v0.38.5

See the CHANGELOG for this release.

v0.38.4

See the CHANGELOG for this release.

v0.38.3

See the CHANGELOG for this release.

v0.38.2

See the CHANGELOG for this release.

v0.38.1

See the CHANGELOG for this release.

v0.38.0

See the CHANGELOG for this release.

v0.38.0-rc3

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-rc2

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-rc1

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-alpha.2

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

v0.38.0-alpha.1

See the CHANGELOG for changes available in this pre-release, but not yet officially released.

... (truncated)

Changelog

Sourced from github.com/cometbft/cometbft's changelog.

v0.38.11

August 12, 2024

This release fixes a panic in consensus where CometBFT would previously panic if there's no extension signature in non-nil Precommit EVEN IF vote extensions themselves are disabled.

It also includes a few other bug fixes and performance improvements.

BUG FIXES

  • [types] Only check IFF vote is a non-nil Precommit if extensionsEnabled types (#3565)

IMPROVEMENTS

  • [indexer] Fixed ineffective select break statements; they now point to their enclosing for loop label to exit (#3544)

v0.38.10

July 16, 2024

This release fixes a bug in v0.38.x that prevented ABCI responses from being correctly read when upgrading from v0.37.x or below. It also includes a few other bug fixes and performance improvements.

BUG FIXES

  • [p2p] Node respects configured max_num_outbound_peers limit when dialing peers provided by a seed node (#486)
  • [rpc] Fix an issue where a legacy ABCI response, created on v0.37 or before, is not returned properly in v0.38 and up on the /block_results RPC endpoint. (#3002)
  • [blocksync] Do not stay in blocksync if the node's validator voting power is high enough to block the chain while it is not online (#3406)

IMPROVEMENTS

  • [p2p/conn] Update send monitor, used for sending rate limiting, once per batch of packets sent (#3382)
  • [libs/pubsub] Allow dash (-) in event tags (#3401)
  • [p2p/conn] Remove the usage of a synchronous pool of buffers in secret connection, storing instead the buffer in the connection struct. This reduces the synchronization primitive usage, speeding up the code. (#3403)

... (truncated)

Commits
  • e1b4453 v0.38.11 (#3684)
  • 66a0447 build(deps): Bump docker/build-push-action from 6.5.0 to 6.6.1 (#3676)
  • cd3519d build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (#3675)
  • c17d1f6 fix(types): Only require extension signature if extensions are enabled (#3565)
  • f85d897 feat(mempool): add error ErrRecheckFull (backport #3654) (#3656)
  • 9de925c fix(e2e): replace docker-compose w/ docker compose (backport #3614) (#3616)
  • e9bd8a9 build(deps): Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 (#3610)
  • 61ca12e build(deps): Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 (#3584)
  • cba216a build(deps): Bump docker/login-action from 3.2.0 to 3.3.0 (#3585)
  • aaf83e9 build(deps): Bump docker/build-push-action from 6.4.1 to 6.5.0 (#3586)
  • Additional commits viewable in compare view

Updates github.com/cosmos/cosmos-sdk from 0.47.17 to 0.50.9

Release notes

Sourced from github.com/cosmos/cosmos-sdk's releases.

v0.50.9

Cosmos SDK v0.50.9 Release Notes

💬 Release Discussion

🚀 Highlights

For this month patch release of the v0.50.x line, some bugs were fixed.

Notably, we fixed the following:

  • PreBlock events (mainly x/upgrade) are now emitted
  • Improve compatibility of depinject v1.0.0 with app.yaml / app.json

📝 Changelog

Check out the changelog for an exhaustive list of changes, or compare changes from the last release.

Refer to the upgrading guide when migrating from v0.47.x to v0.50.1. Note, that the next SDK release, v0.52, will not include x/params migration, when migrating from < v0.47, v0.50.x or v0.47.x, is a mandatory migration.

v0.50.8

Cosmos SDK v0.50.8 Release Notes

💬 Release Discussion

🚀 Highlights

For this month patch release of the v0.50.x line, a few improvements were added to the SDK and some bugs were fixed.

Notably, we added and fixed the following:

  • Allow to import private key from mnemonic file using <appd> keys add testing --recover --source ./mnemonic.txt
  • Fixed json parsing in simd q wait-tx

📝 Changelog

Check out the changelog for an exhaustive list of changes, or compare changes from the last release.

Refer to the upgrading guide when migrating from v0.47.x to v0.50.1. Note, that the next SDK release, v0.51, will not include x/params migration, when migrating from < v0.47, v0.50.x or v0.47.x, is a mandatory migration.

v0.50.7

Cosmos SDK v0.50.7 Release Notes

💬 Release Discussion

🚀 Highlights

... (truncated)

Changelog

Sourced from github.com/cosmos/cosmos-sdk's changelog.

v0.50.9 - 2024-08-07

Bug Fixes

  • (baseapp) #21159 Return PreBlocker events in FinalizeBlockResponse.
  • #20939 Fix collection reverse iterator to include pagination.key in the result.
  • (client/grpc) #20969 Fix node.NewQueryServer method not setting cfg.
  • (testutil/integration) #21006 Fix NewIntegrationApp method not writing default genesis to state.
  • (runtime) #21080 Fix app.yaml / app.json incompatibility with depinject v1.0.0.

v0.50.8 - 2024-07-15

Features

  • (client) #20690 Import mnemonic from file

Improvements

  • (x/authz,x/feegrant) #20590 Provide updated keeper in depinject for authz and feegrant modules.
  • #20631 Fix json parsing in the wait-tx command.
  • (x/auth) #20438 Add --skip-signature-verification flag to multisign command to allow nested multisigs.

v0.50.7 - 2024-06-04

Improvements

  • (debug) #20328 Add consensus address for debug cmd.
  • (runtime) #20264 Expose grpc query router via depinject.
  • (x/consensus) #20381 Use Comet utility for consensus module consensus param updates.
  • (client) #20356 Overwrite client context when available in SetCmdClientContext.

Bug Fixes

  • (simulation) #17911 Fix all problems with executing command make test-sim-custom-genesis-fast for simulation test.
  • (simulation) #18196 Fix the problem of validator set is empty after InitGenesis in simulation test.
  • (baseapp) #20346 Correctly assign execModeSimulate to context for simulateTx.
  • (baseapp) #20144 Remove txs from mempool when AnteHandler fails in recheck.
  • (baseapp) #20107 Avoid header height overwrite block height.
  • (cli) #20020 Make bootstrap-state command support both new and legacy genesis format.
  • (testutil/sims) #20151 Set all signatures and don't overwrite the previous one in GenSignedMockTx.

v0.50.6 - 2024-04-22

Features

  • (types) #19759 Align SignerExtractionAdapter in PriorityNonceMempool Remove.
  • (client) #19870 Add new query command wait-tx. Alias event-query-tx-for to wait-tx for backward compatibility.

Improvements

... (truncated)

Commits
  • 8bfcf55 ci: attempt to fix goreleaser (backport #21194) (#21196)
  • 16d3025 chore: prepare v0.50.9 (#21163)
  • 3f6796f fix(baseapp): return events from preblocker in FinalizeBlockResponse (backpor...
  • 3fc8074 build(deps): Bump cosmossdk.io/x/tx from 0.13.3 to 0.13.4 (#21170)
  • a565daa chore: bring in v0.13.x x/tx in release/v0.50.x (#21158)
  • 31ef899 docs: Fix cli usage examples (backport #21150) (#21154)
  • ffd5696 fix(simapp): concurrent map writes when calling GetSigners (backport #21073) ...
  • 91d412c feat: check latest block if no arg in q block and q block-results (backpo...
  • e135030 fix(runtime): remove appv1alpha1.Config from runtime (backport #21042) (#21...
  • 0702719 feat: use depinject v1.0.0 (#21000)
  • Additional commits viewable in compare view

Updates google.golang.org/grpc from 1.71.0 to 1.79.3

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.79.3

Security

  • server: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted "deny" rules in interceptors like grpc/authz. Any request with a non-canonical path is now immediately rejected with an Unimplemented error. (#8981)

Release 1.79.2

Bug Fixes

  • stats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (grpc/grpc-go#8874)

Release 1.79.1

Bug Fixes

Release 1.79.0

API Changes

  • mem: Add experimental API SetDefaultBufferPool to change the default buffer pool. (#8806)
  • experimental/stats: Update MetricsRecorder to require embedding the new UnimplementedMetricsRecorder (a no-op struct) in all implementations for forward compatibility. (#8780)

Behavior Changes

  • balancer/weightedtarget: Remove handling of Addresses and only handle Endpoints in resolver updates. (#8841)

New Features

  • experimental/stats: Add support for asynchronous gauge metrics through the new AsyncMetricReporter and RegisterAsyncReporter APIs. (#8780)
  • pickfirst: Add support for weighted random shuffling of endpoints, as described in gRFC A113.
    • This is enabled by default, and can be turned off using the environment variable GRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING. (#8864)
  • xds: Implement :authority rewriting, as specified in gRFC A81. (#8779)
  • balancer/randomsubsetting: Implement the random_subsetting LB policy, as specified in gRFC A68. (#8650)

Bug Fixes

  • credentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (#8726)
  • xds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in CONNECTING state. (#8813)
  • health: Fix a bug where health checks failed for clients using legacy compression options (WithDecompressor or RPCDecompressor). (#8765)
  • transport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (#8769)
  • server: Propagate status detail headers, if available, when terminating a stream during request header processing. (#8754)

Performance Improvements

  • credentials/alts: Optimize read buffer alignment to reduce copies. (#8791)
  • mem: Optimize pooling and creation of buffer objects. (#8784)
  • transport: Reduce slice re-allocations by reserving slice capacity. (#8797)

... (truncated)

Commits

Updates filippo.io/edwards25519 from 1.1.0 to 1.1.1

Commits

Updates github.com/docker/cli from 27.4.1+incompatible to 29.2.0+incompatible

Commits
  • 0b9d198 Merge pull request #6764 from vvoland/update-docker
  • 9c9ec73 vendor: github.com/moby/moby/client v0.2.2
  • bab3e81 vendor: github.com/moby/moby/api v1.53.0
  • 2e64fc1 Merge pull request #6367 from thaJeztah/template_slicejoin
  • 1f2ba2a Merge pull request #6760 from thaJeztah/container_create_fix_error
  • e34a342 templates: make "join" work with non-string slices and map values
  • a86356d Merge pull request #6763 from thaJeztah/bump_mapstructure
  • 771660a vendor: github.com/go-viper/mapstructure/v2 v2.5.0
  • 9cff36b Merge pull request #6762 from thaJeztah/bump_x_deps
  • 08ed2bc cli/command/container: make injecting config.json failures a warning
  • Additional commits viewable in compare view

Updates github.com/dvsekhvalnov/jose2go from 1.6.0 to 1.7.0

Commits

Updates github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.4.0

Release notes

Sourced from github.com/go-viper/mapstructure/v2's releases.

v2.4.0

What's Changed

New Contributors

Full Changelog: go-viper/mapstructure@v2.3.0...v2.4.0

v2.3.0

What's Changed

New Contributors

Full Changelog: go-viper/mapstructure@v2.2.1...v2.3.0

Commits

Updates github.com/hashicorp/go-getter from 1.7.5 to 1.8.6

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.8.6

No release notes provided.

v1.8.5

What's Changed

NOTES:

Binary Distribution Update: To streamline our release process and align with other HashiCorp tools, all release binaries will now be published exclusively to the official HashiCorp release site. We will no longer attach release assets to GitHub Releases.

New Contributors

Full Changelog: hashicorp/go-getter@v1.8.4...v1.8.5

v1.8.4

What's Changed

... (truncated)

Commits
  • d23bff4 Merge pull request #608 from hashicorp/dependabot/go_modules/go-security-9c51...
  • 2c4aba8 Merge pull request #613 from hashicorp/pull/v1.8.6
  • fe61ed9 Merge pull request #611 from hashicorp/SECVULN-41053
  • d533656 Merge pull request #606 from hashicorp/pull/CRT
  • 388f23d Additional test for local branch and head
  • b7ceaa5 harden checkout ref handling and added regression tests
  • 769cc14 Release version bump up
  • 6086a6a Review Comments Addressed
  • e02063c Revert "SECVULN Fix for git checkout argument injection enables arbitrary fil...
  • c93084d [chore] : Bump google.golang.org/grpc
  • Additional commits viewable in compare view

Updates github.com/opencontainers/runc from 1.2.3 to 1.2.8

Release notes

Sourced from github.com/opencontainers/runc's releases.

runc v1.2.8 -- "鳥籠の中に囚われた屈辱を"

[!NOTE] Some vendors were given a pre-release version of this release. This public release includes two extra patches to fix regressions discovered very late during the embargo period and were thus not included in the pre-release versions. Please update to this version.

This release contains fixes for three high-severity security vulnerabilities in runc (CVE-2025-31133, CVE-2025-52565, and CVE-2025-52881). All three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files.

Security

  • CVE-2025-31133 exploits an issue with how masked paths are implemented in runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instead bind-mount the symlink target read-write. This issue affected all known runc versions.

  • CVE-2025-52565 is very similar in concept and application to CVE-2025-31133, except that it exploits a flaw in /dev/console bind-mounts. When creating the /dev/console bind-mount (to /dev/pts/$n), if an attacker replaces /dev/pts/$n with a symlink then runc will bind-mount the symlink target over /dev/console. This issue affected all versions of runc >= 1.0.0-rc3.

  • CVE-2025-52881 is a more sophisticated variant of CVE-2019-19921, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process. The mitigation we applied for CVE-2019-19921 was fairly limited and effectively only caused runc to verify that when we write LSM labels that ...

    Description has been truncated

@dependabot
build(deps): Bump the go_modules group across 1 directory with 14 upd…
605d614 
…ates

Bumps the go_modules group with 8 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/CosmWasm/wasmd](https://github.com/CosmWasm/wasmd) | `0.45.0` | `0.53.3` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.71.0` | `1.79.3` |
| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |
| [github.com/docker/cli](https://github.com/docker/cli) | `27.4.1+incompatible` | `29.2.0+incompatible` |
| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |
| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |
| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.8.6` |
| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.2.3` | `1.2.8` |



Updates `github.com/CosmWasm/wasmd` from 0.45.0 to 0.53.3
- [Release notes](https://github.com/CosmWasm/wasmd/releases)
- [Changelog](https://github.com/CosmWasm/wasmd/blob/main/CHANGELOG.md)
- [Commits](CosmWasm/wasmd@v0.45.0...v0.53.3)

Updates `github.com/cometbft/cometbft` from 0.37.13 to 0.38.11
- [Release notes](https://github.com/cometbft/cometbft/releases)
- [Changelog](https://github.com/cometbft/cometbft/blob/main/CHANGELOG.md)
- [Commits](cometbft/cometbft@v0.37.13...v0.38.11)

Updates `github.com/cosmos/cosmos-sdk` from 0.47.17 to 0.50.9
- [Release notes](https://github.com/cosmos/cosmos-sdk/releases)
- [Changelog](https://github.com/cosmos/cosmos-sdk/blob/main/CHANGELOG.md)
- [Commits](cosmos/cosmos-sdk@v0.47.17...v0.50.9)

Updates `google.golang.org/grpc` from 1.71.0 to 1.79.3
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.71.0...v1.79.3)

Updates `filippo.io/edwards25519` from 1.1.0 to 1.1.1
- [Commits](FiloSottile/edwards25519@v1.1.0...v1.1.1)

Updates `github.com/docker/cli` from 27.4.1+incompatible to 29.2.0+incompatible
- [Commits](docker/cli@v27.4.1...v29.2.0)

Updates `github.com/dvsekhvalnov/jose2go` from 1.6.0 to 1.7.0
- [Commits](dvsekhvalnov/jose2go@v1.6.0...v1.7.0)

Updates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0
- [Release notes](https://github.com/go-viper/mapstructure/releases)
- [Changelog](https://github.com/go-viper/mapstructure/blob/main/CHANGELOG.md)
- [Commits](go-viper/mapstructure@v2.2.1...v2.4.0)

Updates `github.com/hashicorp/go-getter` from 1.7.5 to 1.8.6
- [Release notes](https://github.com/hashicorp/go-getter/releases)
- [Commits](hashicorp/go-getter@v1.7.5...v1.8.6)

Updates `github.com/opencontainers/runc` from 1.2.3 to 1.2.8
- [Release notes](https://github.com/opencontainers/runc/releases)
- [Changelog](https://github.com/opencontainers/runc/blob/main/CHANGELOG.md)
- [Commits](opencontainers/runc@v1.2.3...v1.2.8)

Updates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.15
- [Commits](ulikunitz/xz@v0.5.11...v0.5.15)

Updates `go.opentelemetry.io/otel/sdk` from 1.34.0 to 1.42.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.34.0...v1.42.0)

Updates `golang.org/x/crypto` from 0.41.0 to 0.49.0
- [Commits](golang/crypto@v0.41.0...v0.49.0)

Updates `golang.org/x/oauth2` from 0.25.0 to 0.36.0
- [Commits](golang/oauth2@v0.25.0...v0.36.0)

---
updated-dependencies:
- dependency-name: github.com/CosmWasm/wasmd
  dependency-version: 0.53.3
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: github.com/cometbft/cometbft
  dependency-version: 0.38.11
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: github.com/cosmos/cosmos-sdk
  dependency-version: 0.50.9
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: google.golang.org/grpc
  dependency-version: 1.79.3
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: filippo.io/edwards25519
  dependency-version: 1.1.1
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/docker/cli
  dependency-version: 29.2.0+incompatible
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/dvsekhvalnov/jose2go
  dependency-version: 1.7.0
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/go-viper/mapstructure/v2
  dependency-version: 2.4.0
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/hashicorp/go-getter
  dependency-version: 1.8.6
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/opencontainers/runc
  dependency-version: 1.2.8
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/ulikunitz/xz
  dependency-version: 0.5.15
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: go.opentelemetry.io/otel/sdk
  dependency-version: 1.42.0
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: golang.org/x/crypto
  dependency-version: 0.49.0
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.36.0
  dependency-type: indirect
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot requested a review from a team as a code owner May 18, 2026 18:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

A:Automerge T:Dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants