Skip to content

chore(deps): bump the golang group with 10 updates#217

Closed
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/go_modules/golang-c5f25de1d8
Closed

chore(deps): bump the golang group with 10 updates#217
dependabot[bot] wants to merge 1 commit into
developfrom
dependabot/go_modules/golang-c5f25de1d8

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 1, 2026
edited
Loading

Bumps the golang group with 10 updates:

Package From To
github.com/fergusstrange/embedded-postgres 1.33.0 1.34.0
github.com/go-jose/go-jose/v4 4.1.3 4.1.4
github.com/lib/pq 1.11.2 1.12.1
github.com/rs/zerolog 1.34.0 1.35.0
github.com/shirou/gopsutil/v4 4.26.2 4.26.3
golang.org/x/oauth2 0.35.0 0.36.0
golang.org/x/term 0.40.0 0.41.0
modernc.org/sqlite 1.46.1 1.48.0
tailscale.com 1.94.2 1.96.5
golang.org/x/crypto 0.48.0 0.49.0

Updates github.com/fergusstrange/embedded-postgres from 1.33.0 to 1.34.0

Release notes

Sourced from github.com/fergusstrange/embedded-postgres's releases.

v1.34.0

What's Changed

New Contributors

Full Changelog: fergusstrange/embedded-postgres@v1.33.0...v1.34.0

Commits

Updates github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4

Commits

Updates github.com/lib/pq from 1.11.2 to 1.12.1

Release notes

Sourced from github.com/lib/pq's releases.

v1.12.1

  • Look for pgpass file in ~/.pgpass instead of ~/.postgresql/pgpass (#1300).

  • Don't clear password if directly set on pq.Config (#1302).

#1300: lib/pq#1300 #1302: lib/pq#1302

v1.12.0

  • The next release may change the default sslmode from require to prefer. See #1271 for details.

  • CopyIn() and CopyInToSchema() have been marked as deprecated. These are simple query builders and not needed for COPY [..] FROM STDIN support (which is not deprecated). (#1279)

    // Old
tx.Prepare(CopyIn("temp", "num", "text", "blob", "nothing"))

    // Replacement
tx.Prepare(copy temp (num, text, blob, nothing) from stdin)

Features

  • Support protocol 3.2, and the min_protocol_version and max_protocol_version DSN parameters (#1258).

  • Support sslmode=prefer and sslmode=allow (#1270).

  • Support ssl_min_protocol_version and ssl_max_protocol_version (#1277).

  • Support connection service file to load connection details (#1285).

  • Support sslrootcert=system and use ~/.postgresql/root.crt as the default value of sslrootcert (#1280, #1281).

  • Add a new pqerror package with PostgreSQL error codes (#1275).

    For example, to test if an error is a UNIQUE constraint violation:

    if pqErr, ok := errors.AsType[*pq.Error](https://github.com/lib/pq/blob/HEAD/err); ok && pqErr.Code == pqerror.UniqueViolation {
    log.Fatalf("email %q already exsts", email)
}

    To make this a bit more convenient, it also adds a pq.As() function:

    pqErr := pq.As(err, pqerror.UniqueViolation)
if pqErr != nil {
    log.Fatalf("email %q already exsts", email)
}

Fixes

  • Fix SSL key permission check to allow modes stricter than 0600/0640 (#1265).

... (truncated)

Changelog

Sourced from github.com/lib/pq's changelog.

v1.12.1 (2026-03-30)

  • Look for pgpass file in ~/.pgpass instead of ~/.postgresql/pgpass (#1300).

  • Don't clear password if directly set on pq.Config (#1302).

#1300: lib/pq#1300 #1302: lib/pq#1302

v1.12.0 (2026-03-18)

  • The next release may change the default sslmode from require to prefer. See #1271 for details.

  • CopyIn() and CopyInToSchema() have been marked as deprecated. These are simple query builders and not needed for COPY [..] FROM STDIN support (which is not deprecated). (#1279)

    // Old
tx.Prepare(CopyIn("temp", "num", "text", "blob", "nothing"))

    // Replacement
tx.Prepare(copy temp (num, text, blob, nothing) from stdin)

Features

  • Support protocol 3.2, and the min_protocol_version and max_protocol_version DSN parameters (#1258).

  • Support sslmode=prefer and sslmode=allow (#1270).

  • Support ssl_min_protocol_version and ssl_max_protocol_version (#1277).

  • Support connection service file to load connection details (#1285).

  • Support sslrootcert=system and use ~/.postgresql/root.crt as the default value of sslrootcert (#1280, #1281).

  • Add a new pqerror package with PostgreSQL error codes (#1275).

    For example, to test if an error is a UNIQUE constraint violation:

    if pqErr, ok := errors.AsType[*pq.Error](https://github.com/lib/pq/blob/master/err); ok && pqErr.Code == pqerror.UniqueViolation {
    log.Fatalf("email %q already exsts", email)
}

    To make this a bit more convenient, it also adds a pq.As() function:

... (truncated)

Commits
  • 1464d69 Release v1.12.1
  • 5a64c11 Fix fromDSN() doc comment
  • 7f79f1b Fix trailing quote in fromDSN() error message
  • e0a292e Don't clear password if directly set on pq.Config
  • ce3c881 Use correct location for default ~/.pgpass location
  • 6d40f13 Release v1.12.0
  • 386fc0e Document NULL behaviour with COPY
  • a62682e Better staticcheck cache 2
  • 87ee06c Better staticcheck cache
  • 0962458 Rewrite tests to use pqerror, pq.As()
  • Additional commits viewable in compare view

Updates github.com/rs/zerolog from 1.34.0 to 1.35.0

Commits
  • 1396655 Bump CI Go matrix minimum from 1.21 to 1.23
  • 4b65a2f Bump actions/cache from 4 to 5 (#741)
  • b835796 Bump actions/setup-go from 5 to 6 (#742)
  • 134caf8 Added sanitization of journald keys (#751)
  • e133b6a Added variadic StrsV, ObjectsV, and StringersV (#752)
  • 82017d8 Bump github.com/coreos/go-systemd/v22 from 22.6.0 to 22.7.0 (#753)
  • 2f5b8a9 fix: UpdateContext skips Nop and zero-value loggers (#754)
  • d64c9a7 Add slog.Handler implementation for zerolog (#755)
  • a0d61dc fix: return dict to Event pool (#749)
  • f6fbd33 Test coverage improvements (#748)
  • Additional commits viewable in compare view

Updates github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3

Release notes

Sourced from github.com/shirou/gopsutil/v4's releases.

v4.26.3

Important Notice

The temporary opt-out option WillBeDeletedOptOutMemAvailableCalc, introduced in v4.25.8, has been removed in this release.

Code that relied on this option may fail to build. If so, please update your code to work with the current VirtualMemoryStat.Used calculation, as the opt-out mechanism is no longer available.

What's Changed

cpu

disk

host

load

mem

net

process

sensors

New Contributors

Full Changelog: shirou/gopsutil@v4.26.2...v4.26.3

Commits
  • c2a1624 Merge pull request #2033 from Dylan-M/dylanmyers/disk-3b-iocounters
  • b32e3a1 Merge pull request #2032 from Dylan-M/dylanmyers/disk-3a-usage-fix
  • 730f763 Merge pull request #2063 from lubeschanin/fix/sensors-darwin-arm64-crash
  • 76137fe Fix SIGBUS/SIGSEGV crash on macOS ARM64: keep libraries open, fix data race
  • be66821 disk: implement IOCountersWithContext for AIX nocgo via iostat
  • 416f4ed disk: use unix.Statfs for fstype in UsageWithContext on AIX nocgo
  • 7661a67 Merge pull request #2031 from shirou/fix/net_linux_connection_unix_socket_dedup
  • 3095963 Merge pull request #2012 from shirou/fix/revert_opt-outed_mem_used_calc
  • bf942de [net][linux]: prevent incorrect deduplication of unnamed UNIX sockets
  • d7abb9a Merge pull request #2029 from skartikey/fix/openbsd-mem-cached
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.35.0 to 0.36.0

Commits
  • 4d954e6 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/term from 0.40.0 to 0.41.0

Commits
  • 9d2dc07 go.mod: update golang.org/x dependencies
  • d954e03 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates modernc.org/sqlite from 1.46.1 to 1.48.0

Changelog

Sourced from modernc.org/sqlite's changelog.

Changelog

  • 2026-03-27 v1.48.0:

    • Add _timezone DSN query parameter to apply IANA timezones (e.g., "America/New_York") to both reads and writes.
    • Writes will convert time.Time values to the target timezone before formatting as a string.
    • Reads will interpret timezone-less strings as being in the target timezone.
    • Does not impact _inttotime integer values, which will always safely evaluate as UTC.
    • Add support for _time_format=datetime URI parameter to format time.Time values identically to SQLite's native datetime() function and CURRENT_TIMESTAMP (YYYY-MM-DD HH:MM:SS).
    • See [GitLab merge request #94](https://gitlab.com/cznic/sqlite/-/merge_requests/94) and [GitLab merge request #95](https://gitlab.com/cznic/sqlite/-/merge_requests/95), thanks Josh Bleecher Snyder!

  • 2026-03-17 v1.47.0: Add CGO-free version of the vector extensions from https://github.com/asg017/sqlite-vec. See vec_test.go for example usage. From the GitHub project page:

    • Important: sqlite-vec is a pre-v1, so expect breaking changes!
    • Store and query float, int8, and binary vectors in vec0 virtual tables
    • Written in pure C, no dependencies, runs anywhere SQLite runs (Linux/MacOS/Windows, in the browser with WASM, Raspberry Pis, etc.)
    • Store non-vector data in metadata, auxiliary, or partition key columns
    • See [GitLab merge request #93](https://gitlab.com/cznic/sqlite/-/merge_requests/93), thanks Zhenghao Zhang!

  • 2026-03-16 v1.46.2: Upgrade to SQLite 3.51.3.

  • 2026-02-17 v1.46.1:

    • Ensure connection state is reset if Tx.Commit fails. Previously, errors like SQLITE_BUSY during COMMIT could leave the underlying connection inside a transaction, causing errors when the connection was reused by the database/sql pool. The driver now detects this state and forces a rollback internally.
    • Fixes [GitHub issue #2](modernc-org/sqlite#2), thanks Edoardo Spadolini!

  • 2026-02-17 v1.46.0:

    • Enable ColumnTypeScanType to report time.Time instead of string for TEXT columns declared as DATE, DATETIME, TIME, or TIMESTAMP via a new _texttotime URI parameter.
    • See [GitHub pull request #1](modernc-org/sqlite#1), thanks devhaozi!

  • 2026-02-09 v1.45.0:

    • Introduce vtab subpackage (modernc.org/sqlite/vtab) exposing Module, Table, Cursor, and IndexInfo API for Go virtual tables.
    • Wire vtab registration into the driver: vtab.RegisterModule installs modules globally and each new connection calls sqlite3_create_module_v2.
    • Implement vtab trampolines for xCreate/xConnect/xBestIndex/xDisconnect/xDestroy/xOpen/xClose/xFilter/xNext/xEof/xColumn/xRowid.
    • Map SQLite’s sqlite3_index_info into vtab.IndexInfo, including constraints, ORDER BY terms, and constraint usage (ArgIndex → xFilter argv[]).
    • Add an in‑repo dummy vtab module and test (module_test.go) that validates registration, basic scanning, and constraint visibility.
    • See [GitLab merge request #90](https://gitlab.com/cznic/sqlite/-/merge_requests/90), thanks Adrian Witas!

  • 2026-01-19 v1.44.3: Resolves [GitLab issue #243](https://gitlab.com/cznic/sqlite/-/issues/243).

  • 2026-01-18 v1.44.2: Upgrade to SQLite 3.51.2.

  • 2026-01-13 v1.44.0: Upgrade to SQLite 3.51.1.

  • 2025-10-10 v1.39.1: Upgrade to SQLite 3.50.4.

  • 2025-06-09 v1.38.0: Upgrade to SQLite 3.50.1.

  • 2025-02-26 v1.36.0: Upgrade to SQLite 3.49.0.

  • 2024-11-16 v1.34.0: Implement ResetSession and IsValid methods in connection

  • 2024-07-22 v1.31.0: Support windows/386.

... (truncated)

Commits
  • 19b8429 update {CHANGELOG,README}.md
  • 78ddab8 Merge branch 'datetime-format' into 'master'
  • 2e04523 Merge branch 'add-timezone' into 'master'
  • 77706c1 add _time_format=datetime support
  • 1895822 add _timezone DSN query parameter
  • c2c6272 CHANGELOG.md: fix formatting
  • 2942e46 restore logo.png
  • b4deaee include Zhenghao Zhang in CHANGELOG, AUTHORS, CONTRIBUTORS, updates !93
  • ba4fc0b add sqlite_vec extension, updates !93
  • 8b9ffba Merge branch 'windows' into 'master'
  • Additional commits viewable in compare view

Updates tailscale.com from 1.94.2 to 1.96.5

Release notes

Sourced from tailscale.com's releases.

v1.96.4

Please refer to the changelog available at https://tailscale.com/changelog

v1.96.3

Please refer to the changelog available at https://tailscale.com/changelog

v1.96.2

Please refer to the changelog available at https://tailscale.com/changelog

Commits
  • 88200db VERSION.txt: this is v1.96.5
  • d15a565 release/dist/unixpkgs: include tailscale-online.target in packages
  • 41cb72f VERSION.txt: this is v1.96.4
  • bb055ff go.toolchain.*: bump for mips and synology segmentation violation fixes
  • bf309e4 VERSION.txt: this is v1.96.3
  • 41061fa feature/featuretags: skip TestAllOmitBuildTagsDeclared when not in a git repo
  • a330ce9 net/dns: use the correct separator for multiple servers in the same NRPT rule...
  • 044221b kube/certs: discover TLS domains from TCP TerminateTLS handlers (#19020) (#19...
  • 17a4f58 VERISON.txt this is v1.96.2
  • c25843e cmd/{containerboot,k8s-operator}: reissue auth keys for broken proxies (#1645...
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.48.0 to 0.49.0

Commits
  • 982eaa6 go.mod: update golang.org/x dependencies
  • 159944f ssh,acme: clean up tautological/impossible nil conditions
  • a408498 acme: only require prompt if server has terms of service
  • cab0f71 all: upgrade go directive to at least 1.25.0 [generated]
  • 2f26647 x509roots/fallback: update bundle
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the golang group with 10 updates
71035d1 
Bumps the golang group with 10 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/fergusstrange/embedded-postgres](https://github.com/fergusstrange/embedded-postgres) | `1.33.0` | `1.34.0` |
| [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) | `4.1.3` | `4.1.4` |
| [github.com/lib/pq](https://github.com/lib/pq) | `1.11.2` | `1.12.1` |
| [github.com/rs/zerolog](https://github.com/rs/zerolog) | `1.34.0` | `1.35.0` |
| [github.com/shirou/gopsutil/v4](https://github.com/shirou/gopsutil) | `4.26.2` | `4.26.3` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.35.0` | `0.36.0` |
| [golang.org/x/term](https://github.com/golang/term) | `0.40.0` | `0.41.0` |
| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.46.1` | `1.48.0` |
| [tailscale.com](https://github.com/tailscale/tailscale) | `1.94.2` | `1.96.5` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.48.0` | `0.49.0` |


Updates `github.com/fergusstrange/embedded-postgres` from 1.33.0 to 1.34.0
- [Release notes](https://github.com/fergusstrange/embedded-postgres/releases)
- [Commits](fergusstrange/embedded-postgres@v1.33.0...v1.34.0)

Updates `github.com/go-jose/go-jose/v4` from 4.1.3 to 4.1.4
- [Release notes](https://github.com/go-jose/go-jose/releases)
- [Commits](go-jose/go-jose@v4.1.3...v4.1.4)

Updates `github.com/lib/pq` from 1.11.2 to 1.12.1
- [Release notes](https://github.com/lib/pq/releases)
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md)
- [Commits](lib/pq@v1.11.2...v1.12.1)

Updates `github.com/rs/zerolog` from 1.34.0 to 1.35.0
- [Commits](rs/zerolog@v1.34.0...v1.35.0)

Updates `github.com/shirou/gopsutil/v4` from 4.26.2 to 4.26.3
- [Release notes](https://github.com/shirou/gopsutil/releases)
- [Commits](shirou/gopsutil@v4.26.2...v4.26.3)

Updates `golang.org/x/oauth2` from 0.35.0 to 0.36.0
- [Commits](golang/oauth2@v0.35.0...v0.36.0)

Updates `golang.org/x/term` from 0.40.0 to 0.41.0
- [Commits](golang/term@v0.40.0...v0.41.0)

Updates `modernc.org/sqlite` from 1.46.1 to 1.48.0
- [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md)
- [Commits](https://gitlab.com/cznic/sqlite/compare/v1.46.1...v1.48.0)

Updates `tailscale.com` from 1.94.2 to 1.96.5
- [Release notes](https://github.com/tailscale/tailscale/releases)
- [Commits](tailscale/tailscale@v1.94.2...v1.96.5)

Updates `golang.org/x/crypto` from 0.48.0 to 0.49.0
- [Commits](golang/crypto@v0.48.0...v0.49.0)

---
updated-dependencies:
- dependency-name: github.com/fergusstrange/embedded-postgres
  dependency-version: 1.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: github.com/go-jose/go-jose/v4
  dependency-version: 4.1.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: github.com/lib/pq
  dependency-version: 1.12.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: github.com/rs/zerolog
  dependency-version: 1.35.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: github.com/shirou/gopsutil/v4
  dependency-version: 4.26.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: golang
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: golang.org/x/term
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: modernc.org/sqlite
  dependency-version: 1.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: tailscale.com
  dependency-version: 1.96.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
- dependency-name: golang.org/x/crypto
  dependency-version: 0.49.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: golang
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Apr 1, 2026
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github May 1, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this May 1, 2026
@dependabot dependabot Bot deleted the dependabot/go_modules/golang-c5f25de1d8 branch May 1, 2026 17:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants