Skip to content

rebase: bump the github-dependencies group across 1 directory with 10 updates#271

Open
dependabot[bot] wants to merge 1 commit intodevelfrom
dependabot/go_modules/github-dependencies-716cb2c55c
Open

rebase: bump the github-dependencies group across 1 directory with 10 updates#271
dependabot[bot] wants to merge 1 commit intodevelfrom
dependabot/go_modules/github-dependencies-716cb2c55c

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github Nov 10, 2025
edited
Loading

Bumps the github-dependencies group with 9 updates in the / directory:

Package From To
github.com/Azure/azure-sdk-for-go/sdk/azidentity 1.10.1 1.13.0
github.com/aws/aws-sdk-go 1.55.7 1.55.8
github.com/aws/aws-sdk-go-v2/service/sts 1.33.21 1.39.1
github.com/csi-addons/kubernetes-csi-addons 0.12.0 0.13.0
github.com/gemalto/kmip-go 0.0.10 0.1.0
github.com/google/fscrypt 0.3.6-0.20240502174735-068b9f8f5dec 0.3.6
github.com/hashicorp/vault/api 1.20.0 1.22.0
github.com/pkg/xattr 0.4.11 0.4.12
github.com/prometheus/client_golang 1.22.0 1.23.2

Updates github.com/Azure/azure-sdk-for-go/sdk/azidentity from 1.10.1 to 1.13.0

Release notes

Sourced from github.com/Azure/azure-sdk-for-go/sdk/azidentity's releases.

sdk/azidentity/v1.13.0

1.13.0 (2025-10-07)

Features Added

  • Added AzurePowerShellCredential, which authenticates as the identity logged in to Azure PowerShell (thanks ArmaanMcleod)
  • When AZURE_TOKEN_CREDENTIALS is set to ManagedIdentityCredential, DefaultAzureCredential behaves the same as does ManagedIdentityCredential when used directly. It doesn't apply special retry configuration or attempt to determine whether IMDS is available. (#25265)

Breaking Changes

  • Removed the WorkloadIdentityCredential support for identity binding mode added in v1.13.0-beta.1. It will return in v1.14.0-beta.1

sdk/azidentity/v1.13.0-beta.1

1.13.0-beta.1 (2025-09-17)

Features Added

  • Added AzurePowerShellCredential, which authenticates as the identity logged in to Azure PowerShell (thanks ArmaanMcleod)
  • WorkloadIdentityCredential supports identity binding mode (#25056)

sdk/azidentity/v1.12.0

1.12.0 (2025-09-16)

Features Added

  • Added DefaultAzureCredentialOptions.RequireAzureTokenCredentials. NewDefaultAzureCredential returns an error when this option is true and the environment variable AZURE_TOKEN_CREDENTIALS has no value.

Other Changes

  • AzureDeveloperCLICredential no longer hangs when AZD_DEBUG is set
  • GetToken methods of AzureCLICredential and AzureDeveloperCLICredential return an error when TokenRequestOptions.Claims has a value because these credentials can't acquire a token in that case. The error messages describe the action required to get a token.

sdk/internal/v1.11.2

1.11.2 (2025-07-30)

Other Changes

  • errorinfo.NonRetriable() doesn't wrap errors which are already NonRetriable

sdk/azidentity/v1.11.0

1.11.0 (2025-08-05)

Other Changes

  • DefaultAzureCredential tries its next credential when a dev tool credential such as

... (truncated)

Commits
  • 94c22e6 [azcore] prepping for release (#23192)
  • c5213b1 Redesign persistent token cache API (#23114)
  • 5df73f9 [azopenai]: Update custom_client.go to enable insecure credential with HTTP (...
  • b4b4721 [azcore] Adding in a function create a policy.Request using an existing *http...
  • 80dbc7d Update CODEOWNERS_baseline_errors.txt (#23191)
  • d254d11 Increment package version after release of internal (#23190)
  • 62f7a3d Test credential factory supports Pipelines federated auth (#23184)
  • 5aaedf4 [Release] sdk/resourcemanager/informaticadatamgmt/arminformaticadatamgmt/1.0....
  • ce39ed9 Sync eng/common directory with azure-sdk-tools for PR 8598 (#23175)
  • 75d30bb Enable use of pipeline credential. Fixes https://github.com/microsoft/azure-p...
  • Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go from 1.55.7 to 1.55.8

Release notes

Sourced from github.com/aws/aws-sdk-go's releases.

Release v1.55.8 (2025-07-31)

SDK Features

  • Mark the module and all packages as deprecated.
    • This SDK has entered end-of-support.
Commits

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.33.21 to 1.39.1

Commits

Updates github.com/csi-addons/kubernetes-csi-addons from 0.12.0 to 0.13.0

Release notes

Sourced from github.com/csi-addons/kubernetes-csi-addons's releases.

v0.13.0

Features

  • Allow override of precedence of key rotation and reclaim space related annotations using a ConfigMap key schedule-precedence. The default is pvc which reads the annotations in order of PVC > NS > SC. It can be set to storageclass to respect only the annotations found on the Storage Classes.
  • Allow VolumeGroupReplication to be managed by a storage vendor specific implementation of the controller by specifying external as true in the VGR's spec. The default is false, which means VolumeGroupReplication will be reconciled by the csi-addons controller.
  • The sidecar now has the capability to report the volume condition in the logs of the sidecar, and as an Event towards the PersistentVolumeClaim. This feature can be enabled by passing the --enable-volume-condition=true command line flag to the sidecar. The CSI-driver needs to support the VOLUME_CONDITION Node capability for this to work.

NOTE

  • sc-only, a once valid value for schedule-precedence key is being deprecated in favor of storageclass and will be removed in a later release.

What's Changed

... (truncated)

Changelog

Sourced from github.com/csi-addons/kubernetes-csi-addons's changelog.

v0.13.0 Pending Release Notes

Breaking changes

Features

  • Allow override of precedence of key rotation and reclaim space related annotations using a ConfigMap key schedule-precedence. The default is pvc which reads the annotations in order of PVC > NS > SC. It can be set to storageclass to respect only the annotations found on the Storage Classes.
  • Allow VolumeGroupReplication to be managed by a storage vendor specific implementation of the controller by specifying external as true in the VGR's spec. The default is false, which means VolumeGroupReplication will be reconciled by the csi-addons controller.
  • The sidecar now has the capability to report the volume condition in the logs of the sidecar, and as an Event towards the PersistentVolumeClaim. This feature can be enabled by passing the --enable-volume-condition=true command line flag to the sidecar. The CSI-driver needs to support the VOLUME_CONDITION Node capability for this to work.

NOTE

  • sc-only, a once valid value for schedule-precedence key is being deprecated in favor of storageclass and will be removed in a later release.
Commits
  • dc2e91d release v0.13.0
  • bd28a1c ci: bump actions/checkout from 4 to 5
  • fbd7b9e vendor: bump the golang-dependencies group across 1 directory with 2 updates
  • 7478976 volume-condition: fail when passing an unknown recorder
  • 99f509f volume-condition: log an error when recording a condition fails
  • d4047d7 volume-condition: use constants for flag values for recorders
  • 72a66b0 vendor: bump k8s.io/mount-utils in the k8s-dependencies group
  • 6df7eae volume-condition: prevent volume access in isMountpoint()
  • aee61a6 ci: wait for the controller pod creation before checking status
  • 3b3228a config: add terminationMessagePolicy to csi-addons
  • Additional commits viewable in compare view

Updates github.com/gemalto/kmip-go from 0.0.10 to 0.1.0

Release notes

Sourced from github.com/gemalto/kmip-go's releases.

Release 0.1.0

Updates dependencies and go version to 1.24

Commits

Updates github.com/google/fscrypt from 0.3.6-0.20240502174735-068b9f8f5dec to 0.3.6

Changelog

Sourced from github.com/google/fscrypt's changelog.

Version 0.3.6

  • Upgraded various dependencies, including golang.org/x/crypto where the upgrade resolves CVE-2024-45337 and CVE-2025-22869. (These vulnerabilities didn't actually affect fscrypt, as it doesn't use the relevant features.)

  • fscrypt now requires Go 1.23 or later to build.

  • Added fallback logic for when sysfs is not mounted.

  • Other minor fixes and documentation improvements.

Version 0.3.5

  • Upgraded various dependencies, resolving two security alerts from GitHub.

  • fscrypt now requires Go 1.18 or later to build.

  • fscrypt now provides a better error message when it's asked to operate on a locked regular file.

  • Made some improvements to the documentation.

Version 0.3.4

  • fscrypt now requires Go 1.16 or later to build.

  • pam_fscrypt now supports the option unlock_only to disable locking of directories on logout.

  • Fixed a bug where the number of CPUs used in the passphrase hash would be calculated incorrectly on systems with more than 255 CPUs.

  • Added support for AES-256-HCTR2 filenames encryption.

  • Directories are now synced immediately after an encryption policy is applied, reducing the chance of an inconsistency after a sudden crash.

  • Added Lustre to the list of allowed filesystems.

  • Added a NEWS.md file that contains the release notes, and backfilled it from the GitHub release notes.

Version 0.3.3

This release contains fixes for three security vulnerabilities and related security hardening:

  • Correctly handle malicious mountpoint paths in the fscrypt bash completion script (CVE-2022-25328, command injection).

... (truncated)

Commits

Updates github.com/hashicorp/vault/api from 1.20.0 to 1.22.0

Release notes

Sourced from github.com/hashicorp/vault/api's releases.

v1.21.0

No release notes provided.

v1.21.0-rc1

No release notes provided.

v1.20.4

No release notes provided.

v1.20.3

No release notes provided.

v1.20.2

August 06, 2025

SECURITY:

BUG FIXES:

  • agent/template: Fixed issue where templates would not render correctly if namespaces was provided by config, and the namespace and mount path of the secret were the same. [GH-31392]
  • identity/mfa: revert cache entry change from #31217 and document cache entry values [GH-31421]

v1.20.1

No release notes provided.

Changelog

Sourced from github.com/hashicorp/vault/api's changelog.

Previous versions

1.21.0

October 22, 2025

SECURITY:

  • auth/aws: fix an issue where a user may be able to bypass authentication to Vault due to incorrect caching of the AWS client
  • auth/ldap: fix MFA/TOTP enforcement bypass when username_as_alias is enabled.
  • core: Update github.com/hashicorp/go-getter to fix security vulnerability GHSA-wjrx-6529-hcj3.
  • core: Update github.com/ulikunitz/xz to fix security vulnerability GHSA-25xm-hr59-7c27.
  • ui: disable scarf analytics for ui builds

CHANGES:

  • Secrets Recovery (enterprise): Deprecate the recover_snapshot_id query parameter to pass the snapshot ID for recover operations, in favor of a X-Vault-Recover-Snapshot-Id header. Vault will still accept the query parameter for backward compatibility. Also support setting the HTTP method to RECOVER for recover operations, in addition to POST and PUT.
  • activity: Renamed timestamp in export API response to token_creation_time.
  • auth/alicloud: Update plugin to v0.22.0
  • auth/azure: Update plugin to v0.22.0
  • auth/cf: Update plugin to v0.22.0
  • auth/gcp: Update plugin to v0.22.0
  • auth/jwt: Update plugin to v0.25.0
  • auth/kerberos: Update plugin to v0.16.0
  • auth/kubernetes: Update plugin to v0.23.0
  • auth/oci: Update plugin to v0.20.0
  • auth/saml: Update plugin to v0.7.0
  • core: Updates post-install script to print updated license information
  • database/couchbase: Update plugin to v0.15.0
  • database/elasticsearch: Update plugin to v0.19.0
  • database/mongodbatlas: Update plugin to v0.16.0
  • database/redis-elasticache: Update plugin to v0.8.0
  • database/redis: Update plugin to v0.7.0
  • database/snowflake: Update plugin to v0.15.0
  • http: Add JSON configurable limits to HTTP handling for JSON payloads: max_json_depth, max_json_string_value_length, max_json_object_entry_count, max_json_array_element_count.
  • http: Evaluate rate limit quotas before checking JSON limits during request handling.
  • policies: change list comparison to allowed_parameters and denied_parameters from "exact match" to "contains all"
  • sdk: Upgrade to go-secure-stdlib/plugincontainer@v0.4.2, which also bumps github.com/docker/docker to v28.3.3+incompatible
  • secrets/alicloud: Update plugin to v0.21.0
  • secrets/azure: Update azure enterprise secrets plugin to include static roles.
  • secrets/azure: Update plugin to v0.23.0
  • secrets/gcp: Update plugin to v0.23.0
  • secrets/kubernetes: Update plugin to v0.12.0
  • secrets/kv: Update plugin to v0.25.0
  • secrets/mongodbatlas: Update plugin to v0.16.0
  • secrets/openldap: Update plugin to v0.17.0
  • secrets/terraform: Update plugin to v0.13.0
  • ui/client-counts: removes tabs for each client count type and adds split view for counts per type in overview stacked bar chart

... (truncated)

Commits
  • 526ac82 Merge remote-tracking branch 'remotes/from/ce/main'
  • 8041281 Backport Update vault-plugin-secrets-terraform to v0.13.0 into ce/main (#9814)
  • dce7d8a Backport Update vault-plugin-secrets-kubernetes to v0.12.0 into ce/main (#9811)
  • 9cae193 Merge remote-tracking branch 'remotes/from/ce/main'
  • abde734 UI: Fix MFA validation timing issue (#9774) (#9799)
  • da04c45 Merge remote-tracking branch 'remotes/from/ce/main'
  • bf32d52 [UI] Ember Data Migration - KV Cleanup (#9623) (#9794)
  • 0c3dcbc Backport Update vault-plugin-auth-azure to v0.22.0 into ce/main (#9782)
  • 69b8abb Merge remote-tracking branch 'remotes/from/ce/main'
  • 8cf2228 Fix auth method config submit following ember data migration (#9755) (#9793)
  • Additional commits viewable in compare view

Updates github.com/pkg/xattr from 0.4.11 to 0.4.12

Release notes

Sourced from github.com/pkg/xattr's releases.

v0.4.12

What's Changed

Full Changelog: pkg/xattr@v0.4.11...v0.4.12

Commits

Updates github.com/prometheus/client_golang from 1.22.0 to 1.23.2

Release notes

Sourced from github.com/prometheus/client_golang's releases.

v1.23.2 - 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

Full Changelog: prometheus/client_golang@v1.23.1...v1.23.2

v1.23.1 - 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

Full Changelog: prometheus/client_golang@v1.23.0...v1.23.1

v1.23.0 - 2025-07-30

  • [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. #1812
  • [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix #1766
  • [FEATURE] Add exemplars for native histograms #1686
  • [ENHANCEMENT] exp/api: Bubble up status code from writeResponse #1823
  • [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 #1833
  • [BUGFIX] exp/api: client prompt return on context cancellation #1729

... (truncated)

Changelog

Sourced from github.com/prometheus/client_golang's changelog.

1.23.2 / 2025-09-05

This release is made to upgrade to prometheus/common v0.66.1, which drops the dependencies github.com/grafana/regexp and go.uber.org/atomic and replaces gopkg.in/yaml.v2 with go.yaml.in/yaml/v2 (a drop-in replacement). There are no functional changes.

1.23.1 / 2025-09-04

This release is made to be compatible with a backwards incompatible API change in prometheus/common v0.66.0. There are no functional changes.

1.23.0 / 2025-07-30

  • [CHANGE] Minimum required Go version is now 1.23, only the two latest Go versions are supported from now on. #1812
  • [FEATURE] Add WrapCollectorWith and WrapCollectorWithPrefix #1766
  • [FEATURE] Add exemplars for native histograms #1686
  • [ENHANCEMENT] exp/api: Bubble up status code from writeResponse #1823
  • [ENHANCEMENT] collector/go: Update runtime metrics for Go v1.23 and v1.24 #1833
  • [BUGFIX] exp/api: client prompt return on context cancellation #1729
Commits

Updates github.com/stretchr/testify from 1.10.0 to 1.11.1

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.11.1

This release fixes #1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.

What's Changed

Full Changelog: stretchr/testify@v1.11.0...v1.11.1

v1.11.0

What's Changed

Functional Changes

v1.11.0 Includes a number of performance improvements.

Fixes

Documentation, Build & CI

... (truncated)

Commits
  • 2a57335 Merge pull request #1788 from brackendawson/1785-backport-1.11
  • af8c912 Backport #1786 to release/1.11
  • b7801fb Merge pull request #1778 from stretchr/dependabot/github_actions/actions/chec...
  • 69831f3 build(deps): bump actions/checkout from 4 to 5
  • a53be35 Improve captureTestingT helper
  • aafb604 mock: improve formatting of error message
  • 7218e03 improve error msg
  • 929a212 Merge pull request #1758 from stretchr/dolmen/suite-faster-method-filtering
  • bc7459e suite: faster filtering of methods (-testify.m)
  • 7d37b5c suite: refactor methodFilter
  • Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
rebase: bump the github-dependencies group across 1 directory with 10…
ea84d16 
… updates

Bumps the github-dependencies group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.0` |
| [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) | `1.55.7` | `1.55.8` |
| [github.com/aws/aws-sdk-go-v2/service/sts](https://github.com/aws/aws-sdk-go-v2) | `1.33.21` | `1.39.1` |
| [github.com/csi-addons/kubernetes-csi-addons](https://github.com/csi-addons/kubernetes-csi-addons) | `0.12.0` | `0.13.0` |
| [github.com/gemalto/kmip-go](https://github.com/gemalto/kmip-go) | `0.0.10` | `0.1.0` |
| [github.com/google/fscrypt](https://github.com/google/fscrypt) | `0.3.6-0.20240502174735-068b9f8f5dec` | `0.3.6` |
| [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault) | `1.20.0` | `1.22.0` |
| [github.com/pkg/xattr](https://github.com/pkg/xattr) | `0.4.11` | `0.4.12` |
| [github.com/prometheus/client_golang](https://github.com/prometheus/client_golang) | `1.22.0` | `1.23.2` |



Updates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.0
- [Release notes](https://github.com/Azure/azure-sdk-for-go/releases)
- [Commits](Azure/azure-sdk-for-go@sdk/azidentity/v1.10.1...sdk/azcore/v1.13.0)

Updates `github.com/aws/aws-sdk-go` from 1.55.7 to 1.55.8
- [Release notes](https://github.com/aws/aws-sdk-go/releases)
- [Changelog](https://github.com/aws/aws-sdk-go/blob/main/CHANGELOG_PENDING.md)
- [Commits](aws/aws-sdk-go@v1.55.7...v1.55.8)

Updates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.33.21 to 1.39.1
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/sts/v1.33.21...v1.39.1)

Updates `github.com/csi-addons/kubernetes-csi-addons` from 0.12.0 to 0.13.0
- [Release notes](https://github.com/csi-addons/kubernetes-csi-addons/releases)
- [Changelog](https://github.com/csi-addons/kubernetes-csi-addons/blob/main/PendingReleaseNotes.md)
- [Commits](csi-addons/kubernetes-csi-addons@v0.12.0...v0.13.0)

Updates `github.com/gemalto/kmip-go` from 0.0.10 to 0.1.0
- [Release notes](https://github.com/gemalto/kmip-go/releases)
- [Commits](ThalesGroup/kmip-go@v0.0.10...v0.1.0)

Updates `github.com/google/fscrypt` from 0.3.6-0.20240502174735-068b9f8f5dec to 0.3.6
- [Release notes](https://github.com/google/fscrypt/releases)
- [Changelog](https://github.com/google/fscrypt/blob/master/NEWS.md)
- [Commits](https://github.com/google/fscrypt/commits/v0.3.6)

Updates `github.com/hashicorp/vault/api` from 1.20.0 to 1.22.0
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG.md)
- [Commits](hashicorp/vault@v1.20.0...api/v1.22.0)

Updates `github.com/pkg/xattr` from 0.4.11 to 0.4.12
- [Release notes](https://github.com/pkg/xattr/releases)
- [Commits](pkg/xattr@v0.4.11...v0.4.12)

Updates `github.com/prometheus/client_golang` from 1.22.0 to 1.23.2
- [Release notes](https://github.com/prometheus/client_golang/releases)
- [Changelog](https://github.com/prometheus/client_golang/blob/main/CHANGELOG.md)
- [Commits](prometheus/client_golang@v1.22.0...v1.23.2)

Updates `github.com/stretchr/testify` from 1.10.0 to 1.11.1
- [Release notes](https://github.com/stretchr/testify/releases)
- [Commits](stretchr/testify@v1.10.0...v1.11.1)

---
updated-dependencies:
- dependency-name: github.com/Azure/azure-sdk-for-go/sdk/azidentity
  dependency-version: 1.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
- dependency-name: github.com/aws/aws-sdk-go
  dependency-version: 1.55.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/service/sts
  dependency-version: 1.39.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
- dependency-name: github.com/csi-addons/kubernetes-csi-addons
  dependency-version: 0.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
- dependency-name: github.com/gemalto/kmip-go
  dependency-version: 0.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
- dependency-name: github.com/google/fscrypt
  dependency-version: 0.3.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-dependencies
- dependency-name: github.com/hashicorp/vault/api
  dependency-version: 1.22.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
- dependency-name: github.com/pkg/xattr
  dependency-version: 0.4.12
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: github-dependencies
- dependency-name: github.com/prometheus/client_golang
  dependency-version: 1.23.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
- dependency-name: github.com/stretchr/testify
  dependency-version: 1.11.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: github-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github Nov 10, 2025

Labels

The following labels could not be found: rebase. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot @github
Copy link
Copy Markdown
Author

dependabot Bot commented on behalf of github Nov 17, 2025

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot recreate.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants