chore(deps): bump github.com/crowdsecurity/crowdsec from 1.7.3 to 1.7.8 by dependabot[bot] · Pull Request #161 · crowdsecurity/cs-haproxy-spoa-bouncer

dependabot · 2026-05-27T19:58:27Z

Bumps github.com/crowdsecurity/crowdsec from 1.7.3 to 1.7.8.

Release notes

Sourced from github.com/crowdsecurity/crowdsec's releases.

v1.7.8

New Features

WAF: OpenAPI schema validation (#4097) @blotus

Improvements

WAF: enforce body size limitation (#4355) @blotus

Decision stream: move to chunked transfer by default (#4413) @blotus

cscli: add --quick flag to enroll command (#4350) @blotus

propose an alternative, cleaner configuration for appsec-config (#4397) @buixor

Bug Fixes

cscli metrics: don't attempt to create a DB client if there's no DB config (#4451) @blotus

papi: don't spam logs if chan is closed (#4439) @blotus

alerts: use single transaction when creating alert and all related items (#4438) @blotus

LAPI: enforce maximum body size for decompression

Chore / Deps

build(deps): bump the gomod group across 1 directory with 34 updates (#4453) @dependabot[bot]

build(deps): bump the github-actions group with 2 updates (#4447) @dependabot[bot]

build(deps): bump alpine from 3.21 to 3.23 in /build/docker in the docker group across 1 directory (#4441) @dependabot[bot]

build(deps): bump the github-actions group with 7 updates (#4443) @dependabot[bot]

build(deps): bump the uv group in /build/docker/test with 3 updates (#4442) @dependabot[bot]

db: add some missing indexes (#4435) @blotus

Dependencies update (#4412) @blotus

add PAPI metrics (#4411) @blotus

build(deps): bump github.com/aws/aws-lambda-go from 1.47.0 to 1.54.0 (#4402) @dependabot[bot]

build(deps): bump docker/login-action from 4.0.0 to 4.1.0 (#4403) @dependabot[bot]

build(deps): bump github.com/google/go-querystring from 1.1.0 to 1.2.0 (#4400) @dependabot[bot]

build(deps): bump actions/setup-go from 6.3.0 to 6.4.0 (#4404) @dependabot[bot]

build(deps): bump github.com/aws/aws-sdk-go-v2/service/sqs from 1.42.3 to 1.42.25 (#4405) @dependabot[bot]

build(deps): bump release-drafter/release-drafter from 6.4.0 to 7.1.1 (#4381) @dependabot[bot]

build(deps): bump codecov/codecov-action from 5.5.2 to 6.0.0 (#4388) @dependabot[bot]

build(deps): bump schneegans/dynamic-badges-action from 1.7.0 to 1.8.0 (#4393) @dependabot[bot]

build(deps): bump astral-sh/setup-uv from 7.6.0 to 8.0.0 (#4394) @dependabot[bot]

build(deps): bump github/codeql-action from 4.33.0 to 4.35.1 (#4395) @dependabot[bot]

update dependabot config (#4440) @blotus

build(deps): bump requests from 2.32.5 to 2.33.0 in /build/docker/test (#4389) @dependabot[bot]

build(deps): bump cryptography from 46.0.5 to 46.0.6 in /build/docker/test (#4391) @dependabot[bot]

build(deps): bump pygments from 2.19.2 to 2.20.0 in /build/docker/test (#4396) @dependabot[bot]

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

... (truncated)

Commits

6322745 LAPI body limit linting (#4462)
54a0dfe Merge commit from fork
b381500 build(deps): bump github.com/quic-go/quic-go from 0.54.0 to 0.57.0 (#4454)
cd4cf41 build(deps): bump the gomod group across 1 directory with 34 updates (#4453)
4c2896d build(deps): bump the github-actions group with 2 updates (#4447)
f3bd69b WAF: OpenAPI schema validation (#4097)
4f88233 cscli metrics: don't attempt to create a DB client if there's no DB config (#...
9caee11 build(deps): bump alpine (#4441)
f39e8e4 build(deps): bump the github-actions group with 7 updates (#4443)
fb9b655 build(deps): bump the uv group in /build/docker/test with 3 updates (#4442)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [github.com/crowdsecurity/crowdsec](https://github.com/crowdsecurity/crowdsec) from 1.7.3 to 1.7.8. - [Release notes](https://github.com/crowdsecurity/crowdsec/releases) - [Commits](crowdsecurity/crowdsec@v1.7.3...v1.7.8) --- updated-dependencies: - dependency-name: github.com/crowdsecurity/crowdsec dependency-version: 1.7.8 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels May 27, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump github.com/crowdsecurity/crowdsec from 1.7.3 to 1.7.8#161

chore(deps): bump github.com/crowdsecurity/crowdsec from 1.7.3 to 1.7.8#161
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/github.com/crowdsecurity/crowdsec-1.7.8

dependabot Bot commented on behalf of github May 27, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github May 27, 2026

v1.7.8

New Features

Improvements

Bug Fixes

Chore / Deps

Geolite2 notice

Installation

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants