Skip to content

build(deps): bump the go-dependencies group across 1 directory with 21 updates #5337

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

build(deps): bump the go-dependencies group across 1 directory with 21 updates #5337

dependabot wants to merge 1 commit into from
+123 −123

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 12, 2026

Bumps the go-dependencies group with 19 updates in the / directory:

Package From To
cloud.google.com/go/storage 1.58.0 1.59.0
github.com/aws/aws-sdk-go-v2 1.41.0 1.41.1
github.com/charmbracelet/bubbletea 1.3.5 1.3.10
github.com/gruntwork-io/terragrunt-engine-go 0.0.16 0.1.0
github.com/gruntwork-io/terratest 0.51.0 0.54.0
github.com/hashicorp/go-getter 1.8.3 1.8.4
github.com/labstack/echo/v4 4.13.4 4.15.0
go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp 1.38.0 1.39.0
golang.org/x/mod 0.30.0 0.32.0
golang.org/x/sys 0.39.0 0.40.0
golang.org/x/term 0.38.0 0.39.0
golang.org/x/text 0.32.0 0.33.0
google.golang.org/api 0.256.0 0.259.0
gopkg.in/ini.v1 1.67.0 1.67.1
github.com/aws/aws-sdk-go-v2/config 1.32.6 1.32.7
github.com/aws/aws-sdk-go-v2/service/dynamodb 1.53.5 1.53.6
github.com/aws/aws-sdk-go-v2/service/iam 1.53.1 1.53.2
github.com/aws/aws-sdk-go-v2/service/s3 1.95.0 1.95.1
github.com/charmbracelet/x/term 0.2.1 0.2.2

Updates cloud.google.com/go/storage from 1.58.0 to 1.59.0

Release notes

Sourced from cloud.google.com/go/storage's releases.

storage 1.59.0

1.59.0 (2026-01-09)

Features

  • add default checksums for appendable writer (excludes appendable takeover writer) (#13379) (647baf32)

Bug Fixes

  • refactor MultiRangeDownloader to resolve deadlock and race conditions (#13524) (1cfd100
Changelog

Sourced from cloud.google.com/go/storage's changelog.

Changes

0.123.0 (2025-09-18)

Features

  • internal/stategen: Populate the latest googleapis commit (#12880) (7b017a0)
  • librariangen: Implement the build command (#12817) (14734c8)

Bug Fixes

  • internal/librariangen: Add link to source commit in release notes (#12881) (1c06cc6)
  • internal/librariangen: Fix CHANGES.md headers (#12849) (baf515d)
  • internal/librariangen: Remove go mod init/tidy from postprocessor (#12832) (1fe506a)
  • internal/librariangen: Test for error path with flags (#12830) (f0da7b2)
  • internal/postprocessor: Add dlp to skip-module-scan-paths (#12857) (45a7d9b)
  • librariangen: Honor original container contract (#12846) (71c8fd3)
  • librariangen: Improvements to release-init (#12842) (0db677a)
  • stategen: Specify an appropriate tag format for google-cloud-go (#12835) (ffcff33)

0.122.0 (2025-09-04)

Features

  • internal/librariangen: Add release-init command (#12751) (52e84cc)

Bug Fixes

  • internal/godocfx: Better support for v2 modules (#12797) (4bc8785)
  • internal/godocfx: Module detection when tidy errors (#12801) (83d46cd)
  • internal/librariangen: Fix goimports errors (#12765) (83bdaa4)

0.121.6 (2025-08-14)

Bug Fixes

  • internal/librariangen: Fix Dockerfile permissions for go mod tidy (#12704) (0e70a0b)

0.121.5 (2025-08-12)

Bug Fixes

... (truncated)

Commits

Updates github.com/aws/aws-sdk-go-v2 from 1.41.0 to 1.41.1

Commits

Updates github.com/charmbracelet/bubbletea from 1.3.5 to 1.3.10

Release notes

Sourced from github.com/charmbracelet/bubbletea's releases.

v1.3.10

Changelog

Bug fixes

  • 9edf69c677c7353eca5fae6d3ea3986af39717b7: fix: handle setWindowTitleMsg and windowSizeMsg in eventLoop (@​aymanbagabas)

Thoughts? Questions? We love hearing from you. Feel free to reach out on X, Discord, Slack, The Fediverse, Bluesky.

v1.3.9

Changelog

New Features

  • 314b50c7b452fd737d28582ae9d27c04ea725001: feat: properly call nested sequenceMsg and batchMsg (@​wolfmagnate)

Bug fixes

  • 9e0e8f0df1c55044ed04bd17f4b460e01e94dc9c: fix: recover from nested panics in Sequence and Batch commands (@​aymanbagabas)

Other work

  • 6e1282a76358cb680de9d4de7520f9f99c9e2903: add example for the nested Sequence and Batch (@​wolfmagnate)
  • 0290af4a499ee6a3e22822cebe1e74fdeac313be: simplify case for BatchMsg (@​wolfmagnate)

Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, Discord, Slack, The Fediverse.

v1.3.8

Changelog

Bug fixes

  • 21eecd586367fd0cd78da6842c48f9c4b1185b6f: fix: send batch commands to cmds channel instead of executing them in event loop (#1473) (@​aymanbagabas)

Thoughts? Questions? We love hearing from you. Feel free to reach out on Twitter, Discord, Slack, The Fediverse.

v1.3.7

Changelog

Bug fixes

  • 28ab4f41b29fef14d900c46a4873a45891a9ee9b: fix(renderer): properly reset cursor position to start of line (#1472) (@​aymanbagabas)
  • c76509a9d4974207cd66255707d14f4f938f7f52: fix: compact sequences like batches (#958) (@​jdhenke)
  • f5da8d068af74764b271a197de54e2bc2bfedb38: fix: handle nested SequenceMsg in event loop and use sync.WaitGroup f… (#1463) (@​aymanbagabas)
  • 80ea844a7650c84e13958de14cdd4f63ac1775aa: fix: lint issues in key_windows.go and tty_windows.go (@​aymanbagabas)

Documentation updates

  • c3136ed49037a096fe05c6cb16f0a14a38e20c58: docs(license): update copyright date range (@​meowgorithm)
  • 919805f8f0d134af7e3569b0054c13b561976dfa: docs(readme): update footer art (@​meowgorithm)
  • f01583bb899e125c7a26d3b870eff585ec0f4816: docs: show the correct branch in the build badge (@​aymanbagabas)

Other work

... (truncated)

Commits
  • 9edf69c fix: handle setWindowTitleMsg and windowSizeMsg in eventLoop
  • 31c0299 chore(deps): bump github.com/lucasb-eyer/go-colorful (#1496)
  • ffa0502 Merge pull request #848 from wolfmagnate/fix-nested-cmd-order
  • 9e0e8f0 fix: recover from nested panics in Sequence and Batch commands
  • 0966c3a Merge branch 'main' into fix-nested-cmd-order
  • 21eecd5 fix: send batch commands to cmds channel instead of executing them in event l...
  • 9aae1f0 chore(examples): go mod tidy
  • 41f3995 chore(deps): bump golang.org/x/sys in the all group (#1492)
  • 3da2d28 chore(deps): bump actions/setup-go from 5 to 6 in the all group (#1491)
  • 28ab4f4 fix(renderer): properly reset cursor position to start of line (#1472)
  • Additional commits viewable in compare view

Updates github.com/gruntwork-io/terragrunt-engine-go from 0.0.16 to 0.1.0

Release notes

Sourced from github.com/gruntwork-io/terragrunt-engine-go's releases.

v0.1.0

🛠️ Breaking Changes

The engine.proto schema has significantly changed

For example, InitResponse now uses oneof.

message InitResponse {
  // Standard output from the initialization process.
  string stdout = 1;
// Standard error output from the initialization process.
string stderr = 2;
// Result code of the initialization process.
int32 result_code = 3;
}

message InitResponse {
  oneof response {
    StdoutMessage stdout = 1;
    StderrMessage stderr = 2;
    ExitResultMessage exit_result = 3;
    LogMessage log = 4;
  }

What's Changed

Full Changelog: gruntwork-io/terragrunt-engine-go@v0.0.16...v0.1.0

Commits
  • 8115864 Merge pull request #54 from gruntwork-io/feat/updating-schema-using-oneof
  • 67fe818 fix: Adding OpenTofu to mise.toml
  • 439719c fix: Addressing pre-commits
  • 3916807 fix: Addressing lints
  • 3db9232 fix: Adding goimports install in mise.toml
  • 2da2f4f fix: Quick lint fixes
  • ff1e8a5 chore: Adding pre-commit
  • 3b5a8eb chore: Bumping mise versions
  • 406f889 chore: Migrating to GHA from CircleCI
  • 7477c98 chore: Updating proto definitions
  • Additional commits viewable in compare view

Updates github.com/gruntwork-io/terratest from 0.51.0 to 0.54.0

Release notes

Sourced from github.com/gruntwork-io/terratest's releases.

v0.54.0

What's Changed

Full Changelog: gruntwork-io/terratest@v0.53.0...v0.54.0

v0.53.0

What's Changed

Full Changelog: gruntwork-io/terratest@v0.52.0...v0.53.0

v0.52.0

What's Changed

New Contributors

Full Changelog: gruntwork-io/terratest@v0.51.0...v0.52.0

Commits
  • e743258 Merge pull request #1627 from gruntwork-io/update-terragrunt-test-version
  • 3ca2be6 Upgrade terragrunt module tests to v0.93.10
  • c45e788 Merge pull request #1622 from gruntwork-io/feat/add-missing-terragrunt-commands
  • efe547b Merge branch 'main' into feat/add-missing-terragrunt-commands
  • 2ff7ab2 Merge pull request #1625 from gruntwork-io/dependabot/go_modules/golang.org/x...
  • 581c427 Bump golang.org/x/crypto from 0.41.0 to 0.45.0
  • 690fade Add missing terragrunt commands and complete test coverage
  • d09e510 Merge pull request #1620 from gruntwork-io/feature/modularize-terragrunt
  • 0b64605 Merge branch 'main' into feature/modularize-terragrunt
  • ac5ebc1 Merge pull request #1621 from gruntwork-io/fix/rename-run-all-functions-1618
  • Additional commits viewable in compare view

Updates github.com/hashicorp/go-getter from 1.8.3 to 1.8.4

Release notes

Sourced from github.com/hashicorp/go-getter's releases.

v1.8.4

What's Changed

New Contributors

Full Changelog: hashicorp/go-getter@v1.8.3...v1.8.4

Commits
  • 576ab86 [chore] : Bump the go group across 1 directory with 12 updates (#575)
  • efec2db Merge pull request #574 from hashicorp/dependabot/github_actions/actions-36c6...
  • 7ccb947 [chore] : Bump the actions group across 1 directory with 6 updates
  • 228ad65 fix: allow downloading S3 files from MinIO over http (#570)
  • 5cb8b18 Merge pull request #567 from hashicorp/dependabot/github_actions/actions-92ca...
  • f358fa6 Merge pull request #571 from hashicorp/compliance/update-headers
  • 376d40c [COMPLIANCE] Update Copyright and License Headers
  • 9d34fba [chore] : Bump the actions group across 1 directory with 3 updates
  • fd63a33 Merge pull request #566 from hashicorp/compliance/update-headers
  • ac8218d [COMPLIANCE] Update Copyright and License Headers
  • Additional commits viewable in compare view

Updates github.com/labstack/echo/v4 from 4.13.4 to 4.15.0

Release notes

Sourced from github.com/labstack/echo/v4's releases.

v4.15.0

Security

WARNING: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

  • same-origin or none: Requests are allowed (exact origin match or direct user navigation)
  • same-site: Falls back to token validation (e.g., subdomain to main domain)
  • cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

  • TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)
  • AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:

e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))

PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

  • Added generic functions for type-safe parameter extraction and context access by @​aldas in labstack/echo#2856

    Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion, eliminating manual string parsing and type assertions.

... (truncated)

Changelog

Sourced from github.com/labstack/echo/v4's changelog.

v4.15.0 - 2026-01-01

Security

NB: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

  • same-origin or none: Requests are allowed (exact origin match or direct user navigation)
  • same-site: Falls back to token validation (e.g., subdomain to main domain)
  • cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

  • TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)
  • AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:

e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))

PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

  • Added generic functions for type-safe parameter extraction and context access by @​aldas in labstack/echo#2856

    Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion,

... (truncated)

Commits
  • 482bb46 v4.15.0 changelog
  • d0f9d1e CRSF with Sec-Fetch-Site=same-site falls back to legacy token
  • f3fc618 CRSF with Sec-Fetch-Site checks
  • 4dcb9b4 licence headers
  • cbc0ac1 Add PathParam(Or)/QueryParam(Or)/FormParam(Or) generic functions
  • 6b14f4e Add Context.Get generic functions
  • 321530d disable test - returns different error under Windows
  • c8abd9f disable flaky test
  • 9fe43f7 fix Rate limiter disallows fractional rates
  • 1b5122a document things to reduce false positives
  • Additional commits viewable in compare view

Updates go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.38.0 to 1.39.0

Changelog

Sourced from go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp's changelog.

[1.39.0/0.61.0/0.15.0/0.0.14] 2025-12-05

Added

  • Greatly reduce the cost of recording metrics in go.opentelemetry.io/otel/sdk/metric using hashing for map keys. (#7175)
  • Add WithInstrumentationAttributeSet option to go.opentelemetry.io/otel/log, go.opentelemetry.io/otel/metric, and go.opentelemetry.io/otel/trace packages. This provides a concurrent-safe and performant alternative to WithInstrumentationAttributes by accepting a pre-constructed attribute.Set. (#7287)
  • Add experimental observability for the Prometheus exporter in go.opentelemetry.io/otel/exporters/prometheus. Check the go.opentelemetry.io/otel/exporters/prometheus/internal/x package documentation for more information. (#7345)
  • Add experimental observability metrics in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc. (#7353)
  • Add temporality selector functions DeltaTemporalitySelector, CumulativeTemporalitySelector, LowMemoryTemporalitySelector to go.opentelemetry.io/otel/sdk/metric. (#7434)
  • Add experimental observability metrics for simple log processor in go.opentelemetry.io/otel/sdk/log. (#7548)
  • Add experimental observability metrics in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc. (#7459)
  • Add experimental observability metrics in go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp. (#7486)
  • Add experimental observability metrics for simple span processor in go.opentelemetry.io/otel/sdk/trace. (#7374)
  • Add experimental observability metrics in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7512)
  • Add experimental observability metrics for manual reader in go.opentelemetry.io/otel/sdk/metric. (#7524)
  • Add experimental observability metrics for periodic reader in go.opentelemetry.io/otel/sdk/metric. (#7571)
  • Support OTEL_EXPORTER_OTLP_LOGS_INSECURE and OTEL_EXPORTER_OTLP_INSECURE environmental variables in go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp. (#7608)
  • Add Enabled method to the Processor interface in go.opentelemetry.io/otel/sdk/log. All Processor implementations now include an Enabled method. (#7639)
  • The go.opentelemetry.io/otel/semconv/v1.38.0 package. The package contains semantic conventions from the v1.38.0 version of the OpenTelemetry Semantic Conventions. See the migration documentation for information on how to upgrade from go.opentelemetry.io/otel/semconv/v1.37.0.(#7648)

Changed

  • Distinct in go.opentelemetry.io/otel/attribute is no longer guaranteed to uniquely identify an attribute set. Collisions between Distinct values for different Sets are possible with extremely high cardinality (billions of series per instrument), but are highly unlikely. (#7175)
  • WithInstrumentationAttributes in go.opentelemetry.io/otel/trace synchronously de-duplicates the passed attributes instead of delegating it to the returned TracerOption. (#7266)
  • WithInstrumentationAttributes in go.opentelemetry.io/otel/meter synchronously de-duplicates the passed attributes instead of delegating it to the returned MeterOption. (#7266)
  • WithInstrumentationAttributes in go.opentelemetry.io/otel/log synchronously de-duplicates the passed attributes instead of delegating it to the returned LoggerOption. (#7266)
  • Rename the OTEL_GO_X_SELF_OBSERVABILITY environment variable to OTEL_GO_X_OBSERVABILITY in go.opentelemetry.io/otel/sdk/trace, go.opentelemetry.io/otel/sdk/log, and go.opentelemetry.io/otel/exporters/stdout/stdouttrace. (#7302)
  • Improve performance of histogram Record in go.opentelemetry.io/otel/sdk/metric when min and max are disabled using NoMinMax. (#7306)
  • Improve error handling for dropped data during translation by using prometheus.NewInvalidMetric in go.opentelemetry.io/otel/exporters/prometheus. ⚠️ Breaking Change: Previously, these cases were only logged and scrapes succeeded. Now, when translation would drop data (e.g., invalid label/value), the exporter emits a NewInvalidMetric, and Prometheus scrapes fail with HTTP 500 by default. To preserve the prior behavior (scrapes succeed while errors are logged), configure your Prometheus HTTP handler with: promhttp.HandlerOpts{ ErrorHandling: promhttp.ContinueOnError }. (#7363)
  • Replace fnv hash with xxhash in go.opentelemetry.io/otel/attribute for better performance. (#7371)
  • The default TranslationStrategy in go.opentelemetry.io/exporters/prometheus is changed from otlptranslator.NoUTF8EscapingWithSuffixes to otlptranslator.UnderscoreEscapingWithSuffixes. (#7421)
  • Improve performance of concurrent measurements in go.opentelemetry.io/otel/sdk/metric. (#7427)
  • Include W3C TraceFlags (bits 0–7) in the OTLP Span.Flags field in go.opentelemetry.io/exporters/otlp/otlptrace/otlptracehttp and go.opentelemetry.io/exporters/otlp/otlptrace/otlptracegrpc. (#7438)
  • The ErrorType function in go.opentelemetry.io/otel/semconv/v1.37.0 now handles custom error types. If an error implements an ErrorType() string method, the return value of that method will be used as the error type. (#7442)

Fixed

  • Fix WithInstrumentationAttributes options in go.opentelemetry.io/otel/trace, go.opentelemetry.io/otel/metric, and go.opentelemetry.io/otel/log to properly merge attributes when passed multiple times instead of replacing them. Attributes with duplicate keys will use the last value passed. (#7300)
  • The equality of attribute.Set when using the Equal method is not affected by the user overriding the empty set pointed to by attribute.EmptySet in go.opentelemetry.io/otel/attribute. (#7357)

... (truncated)

Commits
  • 6ce1429 Release v1.39.0 (#7676)
  • 12e421a sdk/log: move Enabled method from FilterProcessor to Processor (#7639)
  • 5982f16 fix(deps): update module golang.org/x/sys to v0.39.0 (#7684)
  • 9288378 chore(deps): update module golang.org/x/sync to v0.19.0 (#7683)
  • ee3dfef chore(deps): update github.com/securego/gosec/v2 digest to 41f28e2 (#7682)
  • 9345d1f fix(deps): update module github.com/golangci/golangci-lint/v2 to v2.7.2 (#7680)
  • d03b033 Check context prior to delaying retry in OTLP exporters (#7678)
  • 61765e7 Fix flaky TestClientInstrumentation (#7677)
  • a54721c chore(deps): update module github.com/go-git/go-billy/v5 to v5.7.0 (#7679)
  • 746d086 chore(deps): update github/codeql-action action to v4.31.7 (#7675)
  • Additional commits viewable in compare view

Updates golang.org/x/mod from 0.30.0 to 0.32.0

Commits
  • 4c04067 go.mod: update golang.org/x dependencies
  • d271cf3 go.mod: update golang.org/x dependencies
  • 269c237 sumdb/note: delete chop
  • 3f03020 x/mod: apply go fix and go vet
  • See full diff in compare view

Updates golang.org/x/sys from 0.39.0 to 0.40.0

Commits
  • 2f44229 sys/cpu: add symbolic constants for remaining cpuid bits
  • e5770d2 sys/cpu: use symbolic names for masks
  • 714a44c sys/cpu: modify x86 port to match what internal/cpu does
  • See full diff in compare view

Updates golang.org/x/term from 0.38.0 to 0.39.0

Commits

Updates golang.org/x/text from 0.32.0 to 0.33.0

Commits

Updates google.golang.org/api from 0.256.0 to 0.259.0

Release notes

Sourced from google.golang.org/api's releases.

v0.259.0

0.259.0 (2026-01-06)

⚠ BREAKING CHANGES

  • remove firebaseremoteconfig from package list (#3422)

Features

Bug Fixes

@dependabot
build(deps): bump the go-dependencies group across 1 directory with 2…
ad72aad 
…1 updates

Bumps the go-dependencies group with 19 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go) | `1.58.0` | `1.59.0` |
| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.41.0` | `1.41.1` |
| [github.com/charmbracelet/bubbletea](https://github.com/charmbracelet/bubbletea) | `1.3.5` | `1.3.10` |
| [github.com/gruntwork-io/terragrunt-engine-go](https://github.com/gruntwork-io/terragrunt-engine-go) | `0.0.16` | `0.1.0` |
| [github.com/gruntwork-io/terratest](https://github.com/gruntwork-io/terratest) | `0.51.0` | `0.54.0` |
| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.8.3` | `1.8.4` |
| [github.com/labstack/echo/v4](https://github.com/labstack/echo) | `4.13.4` | `4.15.0` |
| [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp](https://github.com/open-telemetry/opentelemetry-go) | `1.38.0` | `1.39.0` |
| [golang.org/x/mod](https://github.com/golang/mod) | `0.30.0` | `0.32.0` |
| [golang.org/x/sys](https://github.com/golang/sys) | `0.39.0` | `0.40.0` |
| [golang.org/x/term](https://github.com/golang/term) | `0.38.0` | `0.39.0` |
| [golang.org/x/text](https://github.com/golang/text) | `0.32.0` | `0.33.0` |
| [google.golang.org/api](https://github.com/googleapis/google-api-go-client) | `0.256.0` | `0.259.0` |
| gopkg.in/ini.v1 | `1.67.0` | `1.67.1` |
| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.32.6` | `1.32.7` |
| [github.com/aws/aws-sdk-go-v2/service/dynamodb](https://github.com/aws/aws-sdk-go-v2) | `1.53.5` | `1.53.6` |
| [github.com/aws/aws-sdk-go-v2/service/iam](https://github.com/aws/aws-sdk-go-v2) | `1.53.1` | `1.53.2` |
| [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.95.0` | `1.95.1` |
| [github.com/charmbracelet/x/term](https://github.com/charmbracelet/x) | `0.2.1` | `0.2.2` |



Updates `cloud.google.com/go/storage` from 1.58.0 to 1.59.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@spanner/v1.58.0...spanner/v1.59.0)

Updates `github.com/aws/aws-sdk-go-v2` from 1.41.0 to 1.41.1
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@v1.41.0...v1.41.1)

Updates `github.com/charmbracelet/bubbletea` from 1.3.5 to 1.3.10
- [Release notes](https://github.com/charmbracelet/bubbletea/releases)
- [Commits](charmbracelet/bubbletea@v1.3.5...v1.3.10)

Updates `github.com/gruntwork-io/terragrunt-engine-go` from 0.0.16 to 0.1.0
- [Release notes](https://github.com/gruntwork-io/terragrunt-engine-go/releases)
- [Commits](gruntwork-io/terragrunt-engine-go@v0.0.16...v0.1.0)

Updates `github.com/gruntwork-io/terratest` from 0.51.0 to 0.54.0
- [Release notes](https://github.com/gruntwork-io/terratest/releases)
- [Commits](gruntwork-io/terratest@v0.51.0...v0.54.0)

Updates `github.com/hashicorp/go-getter` from 1.8.3 to 1.8.4
- [Release notes](https://github.com/hashicorp/go-getter/releases)
- [Commits](hashicorp/go-getter@v1.8.3...v1.8.4)

Updates `github.com/labstack/echo/v4` from 4.13.4 to 4.15.0
- [Release notes](https://github.com/labstack/echo/releases)
- [Changelog](https://github.com/labstack/echo/blob/master/CHANGELOG.md)
- [Commits](labstack/echo@v4.13.4...v4.15.0)

Updates `go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp` from 1.38.0 to 1.39.0
- [Release notes](https://github.com/open-telemetry/opentelemetry-go/releases)
- [Changelog](https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md)
- [Commits](open-telemetry/opentelemetry-go@v1.38.0...v1.39.0)

Updates `golang.org/x/mod` from 0.30.0 to 0.32.0
- [Commits](golang/mod@v0.30.0...v0.32.0)

Updates `golang.org/x/sys` from 0.39.0 to 0.40.0
- [Commits](golang/sys@v0.39.0...v0.40.0)

Updates `golang.org/x/term` from 0.38.0 to 0.39.0
- [Commits](golang/term@v0.38.0...v0.39.0)

Updates `golang.org/x/text` from 0.32.0 to 0.33.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.32.0...v0.33.0)

Updates `google.golang.org/api` from 0.256.0 to 0.259.0
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.256.0...v0.259.0)

Updates `gopkg.in/ini.v1` from 1.67.0 to 1.67.1

Updates `github.com/aws/aws-sdk-go-v2/config` from 1.32.6 to 1.32.7
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@v1.32.6...v1.32.7)

Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.19.6 to 1.19.7
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/m2/v1.19.6...service/m2/v1.19.7)

Updates `github.com/aws/aws-sdk-go-v2/service/dynamodb` from 1.53.5 to 1.53.6
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/ecs/v1.53.5...service/ecs/v1.53.6)

Updates `github.com/aws/aws-sdk-go-v2/service/iam` from 1.53.1 to 1.53.2
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.53.1...service/s3/v1.53.2)

Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.95.0 to 1.95.1
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.95.0...service/s3/v1.95.1)

Updates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.41.5 to 1.41.6
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Changelog](https://github.com/aws/aws-sdk-go-v2/blob/main/changelog-template.json)
- [Commits](aws/aws-sdk-go-v2@service/sts/v1.41.5...service/sts/v1.41.6)

Updates `github.com/charmbracelet/x/term` from 0.2.1 to 0.2.2
- [Commits](charmbracelet/x@ansi/v0.2.1...ansi/v0.2.2)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/storage
  dependency-version: 1.59.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2
  dependency-version: 1.41.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/charmbracelet/bubbletea
  dependency-version: 1.3.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/gruntwork-io/terragrunt-engine-go
  dependency-version: 0.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/gruntwork-io/terratest
  dependency-version: 0.54.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/hashicorp/go-getter
  dependency-version: 1.8.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/labstack/echo/v4
  dependency-version: 4.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp
  dependency-version: 1.39.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/mod
  dependency-version: 0.32.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sys
  dependency-version: 0.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/term
  dependency-version: 0.39.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/text
  dependency-version: 0.33.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.259.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: gopkg.in/ini.v1
  dependency-version: 1.67.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/config
  dependency-version: 1.32.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/credentials
  dependency-version: 1.19.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/service/dynamodb
  dependency-version: 1.53.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/service/iam
  dependency-version: 1.53.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
  dependency-version: 1.95.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/aws/aws-sdk-go-v2/service/sts
  dependency-version: 1.41.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/charmbracelet/x/term
  dependency-version: 0.2.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jan 12, 2026
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Jan 12, 2026
@vercel
Copy link

vercel bot commented Jan 12, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
terragrunt-docs Ready Ready Preview, Comment Jan 12, 2026 2:57am

@coderabbitai
Copy link
Contributor

coderabbitai bot commented Jan 12, 2026

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@denis256 denis256 Awaiting requested review from denis256 denis256 is a code owner

@ThisGuyCodes ThisGuyCodes Awaiting requested review from ThisGuyCodes ThisGuyCodes is a code owner

@yhakbar yhakbar Awaiting requested review from yhakbar yhakbar is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant