ssa/bitmagnet
1
0
Fork 0
Code Issues Pull requests 4 Projects Releases Packages Wiki Activity Actions

Bump the go_modules group across 1 directory with 5 updates #4

Open
dependabot[bot] wants to merge 1 commit from dependabot/go_modules/go_modules-15fc4e63e8 into main
pull from: dependabot/go_modules/go_modules-15fc4e63e8
merge into: ssa:main
Conversation 0 Commits 1 Files changed 2 +37 -37
dependabot[bot] commented 2026-04-16 23:27:08 +00:00 (Migrated from github.com)
Copy link

Bumps the go_modules group with 3 updates in the / directory: github.com/go-viper/mapstructure/v2, github.com/jackc/pgx/v5 and filippo.io/edwards25519.

Updates github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.4.0

Release notes

Sourced from github.com/go-viper/mapstructure/v2's releases.

v2.4.0

What's Changed

New Contributors

Full Changelog: https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0

v2.3.0

What's Changed

New Contributors

Full Changelog: https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0

Commits

Updates github.com/jackc/pgx/v5 from 5.7.2 to 5.9.0

Changelog

Sourced from github.com/jackc/pgx/v5's changelog.

5.9.0 (March 21, 2026)

This release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and PostgreSQL protocol 3.2 support.

It significantly reduces the amount of network traffic when using prepared statements (which are used automatically by default) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.

It also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends deliberately malformed messages.

  • Require Go 1.25+
  • Add SCRAM-SHA-256-PLUS support (Adam Brightwell)
  • Add OAuth authentication support for PostgreSQL 18 (David Schneider)
  • Add PostgreSQL protocol 3.2 support (Dirkjan Bussink)
  • Add tsvector type support (Adam Brightwell)
  • Skip Describe Portal for cached prepared statements reducing network round trips
  • Make LoadTypes query easier to support on "postgres-like" servers (Jelte Fennema-Nio)
  • Default empty user to current OS user matching libpq behavior (ShivangSrivastava)
  • Optimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)
  • Optimize date scanning by replacing regex with manual parsing (Mathias Bogaert)
  • Optimize pgio append/set functions with direct byte shifts (Mathias Bogaert)
  • Make RowsAffected faster (Abhishek Chanda)
  • Fix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)
  • Fix: ContextWatcher goroutine leak (Hank Donnay)
  • Fix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)
  • Fix: pipelineBatchResults.Exec silently swallowing lastRows error
  • Fix: ColumnTypeLength using BPCharArrayOID instead of BPCharOID
  • Fix: TSVector text encoding returning nil for valid empty tsvector
  • Fix: wrong error messages for Int2 and Int4 underflow
  • Fix: Numeric nil Int pointer dereference with Valid: true
  • Fix: reversed strings.ContainsAny arguments in Numeric.ScanScientific
  • Fix: message length parsing on 32-bit platforms
  • Fix: FunctionCallResponse.Decode mishandling of signed result size
  • Fix: returning wrong error in configTLS when DecryptPEMBlock fails (Maxim Motyshen)
  • Fix: misleading ParseConfig error when default_query_exec_mode is invalid (Skarm)
  • Fix: missed Unwatch in Pipeline error paths
  • Clarify too many failed acquire attempts error message
  • Better error wrapping with context and SQL statement (Aneesh Makala)
  • Enable govet and ineffassign linters (Federico Guerinoni)
  • Guard against various malformed binary messages (arrays, hstore, multirange, protocol messages)
  • Fix various godoc comments (ferhat elmas)
  • Fix typos in comments (Oleksandr Redko)

5.8.0 (December 26, 2025)

  • Require Go 1.24+
  • Remove golang.org/x/crypto dependency
  • Add OptionShouldPing to control ResetSession ping behavior (ilyam8)
  • Fix: Avoid overflow when MaxConns is set to MaxInt32

... (truncated)

Commits
  • b4d8e62 Release v5.9.0
  • c227cd4 Bump minimum Go version from 1.24 to 1.25
  • f492c14 Use reflect.TypeFor instead of reflect.TypeOf for static types
  • ad8fb08 Use sync.WaitGroup.Go to simplify goroutine spawning
  • 3033773 Remove go1.26 build tag from synctest test
  • 83ffb3c Validate multirange element count against source length before allocating
  • 828f214 Fix message length parsing on 32-bit platforms
  • e196a39 Add fuzz test for SQL lexer in sanitize package
  • 7f969f8 Rename TraceQueryute to traceExecute
  • ab52391 Use single Stat snapshot in checkMinConns
  • Additional commits viewable in compare view

Updates filippo.io/edwards25519 from 1.1.0 to 1.1.1

Commits

Updates golang.org/x/crypto from 0.33.0 to 0.41.0

Commits
  • ef5341b go.mod: update golang.org/x dependencies
  • b999374 acme: fix pebble subprocess output data race
  • c247dea x509roots/fallback: store bundle certs directly in DER
  • 1fda731 acme: increase pebble test waitForServer attempts
  • 1b4c3d2 x509roots/fallback: update bundle
  • b903b53 acme: capture pebble test subprocess stdout/stderr
  • 459a9db go.mod: update golang.org/x dependencies
  • 74e709a ssh: add AlgorithmNegotiationError
  • b3790b8 acme: fix TLSALPN01ChallengeCert for IP address identifiers
  • 1dc4269 acme: add Pebble integration testing
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.35.0 to 0.43.0

Commits
  • e74bc31 go.mod: update golang.org/x dependencies
  • af6926e http2: remove references to defunct http2.golang.org test server
  • 76358aa go.mod: update golang.org/x dependencies
  • 6e41cae go.mod: update golang.org/x dependencies
  • 15f7d40 http2: correctly wrap ErrFrameTooLarge in Framer.ReadFrame
  • ef33bc0 internal/http3: use bubbled context in synctest tests
  • 919c6bc http2: use an array instead of a map in typeFrameParser
  • bae01a7 trace: add missing td tag
  • 7d6e62a go.mod: update golang.org/x dependencies
  • ea0c1d9 internal/timeseries: use built-in max/min to simplify the code
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.
Bumps the go_modules group with 3 updates in the / directory: [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure), [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) and [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519). Updates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0 <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/go-viper/mapstructure/releases">github.com/go-viper/mapstructure/v2's releases</a>.</em></p> <blockquote> <h2>v2.4.0</h2> <h2>What's Changed</h2> <ul> <li>refactor: replace interface{} with any by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/115">go-viper/mapstructure#115</a></li> <li>build(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a>[bot] in <a href="https://redirect.github.com/go-viper/mapstructure/pull/114">go-viper/mapstructure#114</a></li> <li>Generic tests by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/118">go-viper/mapstructure#118</a></li> <li>Fix godoc reference link in README.md by <a href="https://github.com/peczenyj"><code>@​peczenyj</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/107">go-viper/mapstructure#107</a></li> <li>feat: add StringToTimeLocationHookFunc to convert strings to *time.Location by <a href="https://github.com/ErfanMomeniii"><code>@​ErfanMomeniii</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/117">go-viper/mapstructure#117</a></li> <li>feat: add back previous StringToSlice as a weak function by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/119">go-viper/mapstructure#119</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/ErfanMomeniii"><code>@​ErfanMomeniii</code></a> made their first contribution in <a href="https://redirect.github.com/go-viper/mapstructure/pull/117">go-viper/mapstructure#117</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0">https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0</a></p> <h2>v2.3.0</h2> <h2>What's Changed</h2> <ul> <li>build(deps): bump actions/checkout from 4.1.7 to 4.2.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/46">go-viper/mapstructure#46</a></li> <li>build(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/47">go-viper/mapstructure#47</a></li> <li>[enhancement] Add check for <code>reflect.Value</code> in <code>ComposeDecodeHookFunc</code> by <a href="https://github.com/mahadzaryab1"><code>@​mahadzaryab1</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/52">go-viper/mapstructure#52</a></li> <li>build(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/51">go-viper/mapstructure#51</a></li> <li>build(deps): bump actions/checkout from 4.2.0 to 4.2.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/50">go-viper/mapstructure#50</a></li> <li>build(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/55">go-viper/mapstructure#55</a></li> <li>build(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/58">go-viper/mapstructure#58</a></li> <li>ci: add Go 1.24 to the test matrix by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/74">go-viper/mapstructure#74</a></li> <li>build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/72">go-viper/mapstructure#72</a></li> <li>build(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/76">go-viper/mapstructure#76</a></li> <li>build(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/78">go-viper/mapstructure#78</a></li> <li>feat: add decode hook for netip.Prefix by <a href="https://github.com/tklauser"><code>@​tklauser</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/85">go-viper/mapstructure#85</a></li> <li>Updates by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/86">go-viper/mapstructure#86</a></li> <li>build(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/87">go-viper/mapstructure#87</a></li> <li>build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/93">go-viper/mapstructure#93</a></li> <li>build(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/92">go-viper/mapstructure#92</a></li> <li>build(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/97">go-viper/mapstructure#97</a></li> <li>build(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/96">go-viper/mapstructure#96</a></li> <li>Update README.md by <a href="https://github.com/peczenyj"><code>@​peczenyj</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/90">go-viper/mapstructure#90</a></li> <li>Add omitzero tag. by <a href="https://github.com/Crystalix007"><code>@​Crystalix007</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/98">go-viper/mapstructure#98</a></li> <li>Use error structs instead of duplicated strings by <a href="https://github.com/m1k1o"><code>@​m1k1o</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/102">go-viper/mapstructure#102</a></li> <li>build(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by <a href="https://github.com/dependabot"><code>@​dependabot</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/101">go-viper/mapstructure#101</a></li> <li>feat: add common error interface by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/105">go-viper/mapstructure#105</a></li> <li>update linter by <a href="https://github.com/sagikazarmark"><code>@​sagikazarmark</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/106">go-viper/mapstructure#106</a></li> <li>Feature allow unset pointer by <a href="https://github.com/rostislaved"><code>@​rostislaved</code></a> in <a href="https://redirect.github.com/go-viper/mapstructure/pull/80">go-viper/mapstructure#80</a></li> </ul> <h2>New Contributors</h2> <ul> <li><a href="https://github.com/tklauser"><code>@​tklauser</code></a> made their first contribution in <a href="https://redirect.github.com/go-viper/mapstructure/pull/85">go-viper/mapstructure#85</a></li> <li><a href="https://github.com/peczenyj"><code>@​peczenyj</code></a> made their first contribution in <a href="https://redirect.github.com/go-viper/mapstructure/pull/90">go-viper/mapstructure#90</a></li> <li><a href="https://github.com/Crystalix007"><code>@​Crystalix007</code></a> made their first contribution in <a href="https://redirect.github.com/go-viper/mapstructure/pull/98">go-viper/mapstructure#98</a></li> <li><a href="https://github.com/rostislaved"><code>@​rostislaved</code></a> made their first contribution in <a href="https://redirect.github.com/go-viper/mapstructure/pull/80">go-viper/mapstructure#80</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0">https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5"><code>b9794a5</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/119">#119</a> from go-viper/string-to-weak-slice</li> <li><a href="https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30"><code>17cdcb0</code></a> feat: add back previous StringToSlice as a weak function</li> <li><a href="https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19"><code>3caca36</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/117">#117</a> from ErfanMomeniii/main</li> <li><a href="https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a"><code>9a861bc</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/107">#107</a> from peczenyj/patch-2</li> <li><a href="https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c"><code>86ed5b5</code></a> refactor: update</li> <li><a href="https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6"><code>ace5b4e</code></a> chore: add interface any linter</li> <li><a href="https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e"><code>1a4f1ae</code></a> Merge pull request <a href="https://redirect.github.com/go-viper/mapstructure/issues/118">#118</a> from go-viper/generic-tests</li> <li><a href="https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63"><code>a268909</code></a> fix: lint</li> <li><a href="https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd"><code>17f1fd4</code></a> test: add more comments</li> <li><a href="https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f"><code>b48c856</code></a> test: expand tests</li> <li>Additional commits viewable in <a href="https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0">compare view</a></li> </ul> </details> <br /> Updates `github.com/jackc/pgx/v5` from 5.7.2 to 5.9.0 <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/jackc/pgx/blob/master/CHANGELOG.md">github.com/jackc/pgx/v5's changelog</a>.</em></p> <blockquote> <h1>5.9.0 (March 21, 2026)</h1> <p>This release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and PostgreSQL protocol 3.2 support.</p> <p>It significantly reduces the amount of network traffic when using prepared statements (which are used automatically by default) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.</p> <p>It also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends deliberately malformed messages.</p> <ul> <li>Require Go 1.25+</li> <li>Add SCRAM-SHA-256-PLUS support (Adam Brightwell)</li> <li>Add OAuth authentication support for PostgreSQL 18 (David Schneider)</li> <li>Add PostgreSQL protocol 3.2 support (Dirkjan Bussink)</li> <li>Add tsvector type support (Adam Brightwell)</li> <li>Skip Describe Portal for cached prepared statements reducing network round trips</li> <li>Make LoadTypes query easier to support on &quot;postgres-like&quot; servers (Jelte Fennema-Nio)</li> <li>Default empty user to current OS user matching libpq behavior (ShivangSrivastava)</li> <li>Optimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)</li> <li>Optimize date scanning by replacing regex with manual parsing (Mathias Bogaert)</li> <li>Optimize pgio append/set functions with direct byte shifts (Mathias Bogaert)</li> <li>Make RowsAffected faster (Abhishek Chanda)</li> <li>Fix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)</li> <li>Fix: ContextWatcher goroutine leak (Hank Donnay)</li> <li>Fix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)</li> <li>Fix: pipelineBatchResults.Exec silently swallowing lastRows error</li> <li>Fix: ColumnTypeLength using BPCharArrayOID instead of BPCharOID</li> <li>Fix: TSVector text encoding returning nil for valid empty tsvector</li> <li>Fix: wrong error messages for Int2 and Int4 underflow</li> <li>Fix: Numeric nil Int pointer dereference with Valid: true</li> <li>Fix: reversed strings.ContainsAny arguments in Numeric.ScanScientific</li> <li>Fix: message length parsing on 32-bit platforms</li> <li>Fix: FunctionCallResponse.Decode mishandling of signed result size</li> <li>Fix: returning wrong error in configTLS when DecryptPEMBlock fails (Maxim Motyshen)</li> <li>Fix: misleading ParseConfig error when default_query_exec_mode is invalid (Skarm)</li> <li>Fix: missed Unwatch in Pipeline error paths</li> <li>Clarify too many failed acquire attempts error message</li> <li>Better error wrapping with context and SQL statement (Aneesh Makala)</li> <li>Enable govet and ineffassign linters (Federico Guerinoni)</li> <li>Guard against various malformed binary messages (arrays, hstore, multirange, protocol messages)</li> <li>Fix various godoc comments (ferhat elmas)</li> <li>Fix typos in comments (Oleksandr Redko)</li> </ul> <h1>5.8.0 (December 26, 2025)</h1> <ul> <li>Require Go 1.24+</li> <li>Remove golang.org/x/crypto dependency</li> <li>Add OptionShouldPing to control ResetSession ping behavior (ilyam8)</li> <li>Fix: Avoid overflow when MaxConns is set to MaxInt32</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/jackc/pgx/commit/b4d8e62b6616d0c09c5021500363de0c56e01631"><code>b4d8e62</code></a> Release v5.9.0</li> <li><a href="https://github.com/jackc/pgx/commit/c227cd4f76fa2b1a47c0156621e05c076f4cf5c9"><code>c227cd4</code></a> Bump minimum Go version from 1.24 to 1.25</li> <li><a href="https://github.com/jackc/pgx/commit/f492c14836d7d442e8103b09f2c0c74a80c56347"><code>f492c14</code></a> Use reflect.TypeFor instead of reflect.TypeOf for static types</li> <li><a href="https://github.com/jackc/pgx/commit/ad8fb08d3f1a36c0e475c9f80dc9bb19d075d8e2"><code>ad8fb08</code></a> Use sync.WaitGroup.Go to simplify goroutine spawning</li> <li><a href="https://github.com/jackc/pgx/commit/303377376df43ba3d1a99728eaa9f9a6bcaab767"><code>3033773</code></a> Remove go1.26 build tag from synctest test</li> <li><a href="https://github.com/jackc/pgx/commit/83ffb3c2220737cf11c7dd88c80be9166753102f"><code>83ffb3c</code></a> Validate multirange element count against source length before allocating</li> <li><a href="https://github.com/jackc/pgx/commit/828f2147a2d4355e5cf4beac0f542f9c6bbd6709"><code>828f214</code></a> Fix message length parsing on 32-bit platforms</li> <li><a href="https://github.com/jackc/pgx/commit/e196a39add04a887b20a0aac58b7be333273a03a"><code>e196a39</code></a> Add fuzz test for SQL lexer in sanitize package</li> <li><a href="https://github.com/jackc/pgx/commit/7f969f8da50be0dba69f509f9a30f1084d0feabf"><code>7f969f8</code></a> Rename TraceQueryute to traceExecute</li> <li><a href="https://github.com/jackc/pgx/commit/ab523919740a5d83f7613adc3604192f5f653bc4"><code>ab52391</code></a> Use single Stat snapshot in checkMinConns</li> <li>Additional commits viewable in <a href="https://github.com/jackc/pgx/compare/v5.7.2...v5.9.0">compare view</a></li> </ul> </details> <br /> Updates `filippo.io/edwards25519` from 1.1.0 to 1.1.1 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb"><code>d1c650a</code></a> extra: initialize receiver in MultiScalarMult</li> <li>See full diff in <a href="https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1">compare view</a></li> </ul> </details> <br /> Updates `golang.org/x/crypto` from 0.33.0 to 0.41.0 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/crypto/commit/ef5341b70697ceb55f904384bd982587224e8b0c"><code>ef5341b</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/crypto/commit/b999374650442ee37e9bbd97d6a11ad7ed999b98"><code>b999374</code></a> acme: fix pebble subprocess output data race</li> <li><a href="https://github.com/golang/crypto/commit/c247dead11de7671a21a6c5169555e2aa5313caa"><code>c247dea</code></a> x509roots/fallback: store bundle certs directly in DER</li> <li><a href="https://github.com/golang/crypto/commit/1fda73153feef7b246f24005838c387e354e5e3b"><code>1fda731</code></a> acme: increase pebble test waitForServer attempts</li> <li><a href="https://github.com/golang/crypto/commit/1b4c3d2e8c8be172c6af8f2f72778e69e74d2e78"><code>1b4c3d2</code></a> x509roots/fallback: update bundle</li> <li><a href="https://github.com/golang/crypto/commit/b903b535d3ef82fab12a9cc0fa50fccc396ced55"><code>b903b53</code></a> acme: capture pebble test subprocess stdout/stderr</li> <li><a href="https://github.com/golang/crypto/commit/459a9db11b9c43bb1d61722bfd371751d6de05c9"><code>459a9db</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/crypto/commit/74e709ad8a8068445173aa5f3e8d7c89caf510c3"><code>74e709a</code></a> ssh: add AlgorithmNegotiationError</li> <li><a href="https://github.com/golang/crypto/commit/b3790b8d914304c8187dc2c86800101c329d77cd"><code>b3790b8</code></a> acme: fix TLSALPN01ChallengeCert for IP address identifiers</li> <li><a href="https://github.com/golang/crypto/commit/1dc4269656dd23b2c4e71c51b8af6bc2b63eecb7"><code>1dc4269</code></a> acme: add Pebble integration testing</li> <li>Additional commits viewable in <a href="https://github.com/golang/crypto/compare/v0.33.0...v0.41.0">compare view</a></li> </ul> </details> <br /> Updates `golang.org/x/net` from 0.35.0 to 0.43.0 <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/golang/net/commit/e74bc31d69f225b635e065a602db3fbfa9850f93"><code>e74bc31</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/af6926ea18d0703b9f24713074bc7079cf50a744"><code>af6926e</code></a> http2: remove references to defunct http2.golang.org test server</li> <li><a href="https://github.com/golang/net/commit/76358aa57e0c5fa267fe08795631a173d0cec833"><code>76358aa</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/6e41caea7e521db69a7de02895624c195575ed63"><code>6e41cae</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/15f7d40345230297a2172897200715909e359dd4"><code>15f7d40</code></a> http2: correctly wrap ErrFrameTooLarge in Framer.ReadFrame</li> <li><a href="https://github.com/golang/net/commit/ef33bc08f8e2986804d7a70cc58a40f437bf5205"><code>ef33bc0</code></a> internal/http3: use bubbled context in synctest tests</li> <li><a href="https://github.com/golang/net/commit/919c6bc7ad594b151348609479daf6d6d388c01e"><code>919c6bc</code></a> http2: use an array instead of a map in typeFrameParser</li> <li><a href="https://github.com/golang/net/commit/bae01a7353ec2859fef5173ae4a2cfec0d5ce017"><code>bae01a7</code></a> trace: add missing td tag</li> <li><a href="https://github.com/golang/net/commit/7d6e62ace5ed100018bd82d1967d2d98cff6fbae"><code>7d6e62a</code></a> go.mod: update golang.org/x dependencies</li> <li><a href="https://github.com/golang/net/commit/ea0c1d94f5e0c4b4c18b927e26e188ad8fadb38e"><code>ea0c1d9</code></a> internal/timeseries: use built-in max/min to simplify the code</li> <li>Additional commits viewable in <a href="https://github.com/golang/net/compare/v0.35.0...v0.43.0">compare view</a></li> </ul> </details> <br /> Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/shafiqalibhai/bitmagnet/network/alerts). </details>
This pull request can be merged automatically.
This branch is out-of-date with the base branch
You are not authorized to merge this pull request.
View command line instructions

Checkout

From your project repository, check out a new branch and test the changes.
git fetch -u origin dependabot/go_modules/go_modules-15fc4e63e8:dependabot/go_modules/go_modules-15fc4e63e8
git switch dependabot/go_modules/go_modules-15fc4e63e8

Merge

Merge the changes and update on Forgejo.

Warning: The "Autodetect manual merge" setting is not enabled for this repository, you will have to mark this pull request as manually merged afterwards.

git switch main
git merge --no-ff dependabot/go_modules/go_modules-15fc4e63e8
git switch dependabot/go_modules/go_modules-15fc4e63e8
git rebase main
git switch main
git merge --ff-only dependabot/go_modules/go_modules-15fc4e63e8
git switch dependabot/go_modules/go_modules-15fc4e63e8
git rebase main
git switch main
git merge --no-ff dependabot/go_modules/go_modules-15fc4e63e8
git switch main
git merge --squash dependabot/go_modules/go_modules-15fc4e63e8
git switch main
git merge --ff-only dependabot/go_modules/go_modules-15fc4e63e8
git switch main
git merge dependabot/go_modules/go_modules-15fc4e63e8
git push origin main
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
bug
Something isn't working

  
dependencies
Pull requests that update a dependency file

  
documentation
Improvements or additions to documentation

  
duplicate
This issue or pull request already exists

  
enhancement
New feature or request

  
go
Pull requests that update go code

  
good first issue
Good for newcomers

  
help wanted
Extra attention is needed

  
invalid
This doesn't seem right

  
javascript
Pull requests that update javascript code

  
question
Further information is requested

  
ruby
Pull requests that update ruby code

  
wontfix
This will not be worked on

No labels
bug
dependencies
documentation
duplicate
enhancement
go
good first issue
help wanted
invalid
javascript
question
ruby
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
ssa/bitmagnet!4
No description provided.