chore(deps): bump the golang-x group across 1 directory with 6 updates #3898

dependabot · 2025-03-10T02:25:58Z

Bumps the golang-x group with 4 updates in the / directory: golang.org/x/crypto, golang.org/x/mod, golang.org/x/net and golang.org/x/tools.

Updates golang.org/x/crypto from 0.32.0 to 0.36.0

Commits

49bf5b8 go.mod: update golang.org/x dependencies
24852b6 ssh: add decode support for banners
bbc689c ssh: use a more straightforward return value
7292932 ssh: limit the size of the internal packet queue while waiting for KEX
f66f74b acme/autocert: check host policy before probing the cache
b0784b7 x509roots/fallback: drop obsolete build constraint
911360c all: bump golang.org/x/crypto dependencies of asm generators
89ff08d all: upgrade go directive to at least 1.23.0 [generated]
e47973b all: update certs for go1.24
9290511 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/mod from 0.22.0 to 0.24.0

Commits

dc121ce all: upgrade go directive to at least 1.23.0 [generated]
52289f1 modfile: fix trailing empty lines in require blocks
See full diff in compare view

Updates golang.org/x/net from 0.34.0 to 0.37.0

Commits

99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
cde1dda proxy, http/httpproxy: do not mismatch IPv6 zone ids against hosts
fe7f039 publicsuffix: spruce up code gen and speed up PublicSuffix
459513d internal/http3: move more common stream processing to genericConn
aad0180 http2: fix flakiness from t.Log when GOOS=js
b73e574 http2: don't log expected errors from writing invalid trailers
5f45c77 internal/http3: make read-data tests usable for server handlers
43c2540 http2, internal/httpcommon: reject userinfo in :authority
1d78a08 http2, internal/httpcommon: factor out server header logic for h2/h3
Additional commits viewable in compare view

Updates golang.org/x/sync from 0.10.0 to 0.12.0

Commits

b637f27 errgroup: drop support for Go versions before 1.20
960bf1f all: upgrade go directive to at least 1.23.0 [generated]
fe3591b sync/errgroup: improve documentation for semaphore limit behavior
See full diff in compare view

Updates golang.org/x/term from 0.28.0 to 0.30.0

Commits

04218fd go.mod: update golang.org/x dependencies
208db03 all: upgrade go directive to at least 1.23.0 [generated]
743b270 go.mod: update golang.org/x dependencies
See full diff in compare view

Updates golang.org/x/tools from 0.29.0 to 0.31.0

Commits

6a5b66b go.mod: update golang.org/x dependencies
25a90be gopls/internal/golang: Implementations for func types
db6008c go/types/internal/play: show Cursor.Stack of selected node
ece9e9b gopls/doc/generate: add status in codelenses and inlayhints
340f21a gopls: move gopls/doc/generate package
0721940 gopls/internal/analysis/modernize: strings.Fields -> FieldsSeq
8d38122 gopls/internal/cache: reproduce and fix crash on if cond overflow
d81d6fc gopls/internal/util/asm: better assembly parsing
455db21 gopls/internal/cache/parsego: fix OOB crash in fixInitStmt
2b1f550 gopls/internal/analysis/gofix: allow literal array lengths
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the golang-x group with 4 updates in the / directory: [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/mod](https://github.com/golang/mod), [golang.org/x/net](https://github.com/golang/net) and [golang.org/x/tools](https://github.com/golang/tools). Updates `golang.org/x/crypto` from 0.32.0 to 0.36.0 - [Commits](golang/crypto@v0.32.0...v0.36.0) Updates `golang.org/x/mod` from 0.22.0 to 0.24.0 - [Commits](golang/mod@v0.22.0...v0.24.0) Updates `golang.org/x/net` from 0.34.0 to 0.37.0 - [Commits](golang/net@v0.34.0...v0.37.0) Updates `golang.org/x/sync` from 0.10.0 to 0.12.0 - [Commits](golang/sync@v0.10.0...v0.12.0) Updates `golang.org/x/term` from 0.28.0 to 0.30.0 - [Commits](golang/term@v0.28.0...v0.30.0) Updates `golang.org/x/tools` from 0.29.0 to 0.31.0 - [Release notes](https://github.com/golang/tools/releases) - [Commits](golang/tools@v0.29.0...v0.31.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang-x - dependency-name: golang.org/x/mod dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang-x - dependency-name: golang.org/x/net dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang-x - dependency-name: golang.org/x/sync dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang-x - dependency-name: golang.org/x/term dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang-x - dependency-name: golang.org/x/tools dependency-type: direct:production update-type: version-update:semver-minor dependency-group: golang-x ... Signed-off-by: dependabot[bot] <[email protected]>

Gno2D2 · 2025-03-10T02:26:59Z

🛠 PR Checks Summary

🔴 Pending initial approval by a review team member, or review from tech-staff

Manual Checks (for Reviewers):

IGNORE the bot requirements for this PR (force green CI check)

✅ Automated Checks (for Contributors):

🔴 Pending initial approval by a review team member, or review from tech-staff

☑️ Contributor Actions:

Fix any issues flagged by automated checks.
Follow the Contributor Checklist to ensure your PR is ready for review.
- Add new tests, or document why they are unnecessary.
- Provide clear examples/screenshots, if necessary.
- Update documentation, if required.
- Ensure no breaking changes, or include BREAKING CHANGE notes.
- Link related issues/PRs, where applicable.

☑️ Reviewer Actions:

Complete manual checks for the PR, including the guidelines and additional checks if applicable.

📚 Resources:

Debug

Automated Checks

Pending initial approval by a review team member, or review from tech-staff

If

🟢 Condition met
└── 🟢 And
    ├── 🟢 The base branch matches this pattern: ^master$
    └── 🟢 Not (🔴 Pull request author is a member of the team: tech-staff)

Then

🔴 Requirement not satisfied
└── 🔴 If
    ├── 🔴 Condition
    │   └── 🔴 Or
    │       ├── 🔴 At least 1 user(s) of the organization reviewed the pull request (with state "APPROVED")
    │       ├── 🔴 At least 1 user(s) of the team tech-staff reviewed pull request
    │       └── 🔴 This pull request is a draft
    └── 🔴 Else
        └── 🔴 And
            ├── 🟢 This label is applied to pull request: review/triage-pending
            └── 🔴 On no pull request

Manual Checks

**IGNORE** the bot requirements for this PR (force green CI check)
If
🟢 Condition met
└── 🟢 On every pull request
Can be checked by

Any user with comment edit permission

dependabot bot added the dependencies Update to the dependencies label Mar 10, 2025

dependabot bot requested a review from moul March 10, 2025 02:25

Run 'go mod tidy' via GitHub Actions

a62e1e3

Gno2D2 added the review/triage-pending PRs opened by external contributors that are waiting for the 1st review label Mar 10, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump the golang-x group across 1 directory with 6 updates #3898

chore(deps): bump the golang-x group across 1 directory with 6 updates #3898

dependabot bot commented on behalf of github Mar 10, 2025 •

edited

Loading

Gno2D2 commented Mar 10, 2025 •

edited

Loading

✅ Automated Checks (for Contributors):

☑️ Contributor Actions:

☑️ Reviewer Actions:

📚 Resources:

If

Then

If

Can be checked by

chore(deps): bump the golang-x group across 1 directory with 6 updates #3898

Are you sure you want to change the base?

chore(deps): bump the golang-x group across 1 directory with 6 updates #3898

Conversation

dependabot bot commented on behalf of github Mar 10, 2025 • edited Loading

Gno2D2 commented Mar 10, 2025 • edited Loading

🛠 PR Checks Summary

Manual Checks (for Reviewers):

✅ Automated Checks (for Contributors):

☑️ Contributor Actions:

☑️ Reviewer Actions:

📚 Resources:

If

Then

If

Can be checked by

dependabot bot commented on behalf of github Mar 10, 2025 •

edited

Loading

Gno2D2 commented Mar 10, 2025 •

edited

Loading