Bump the all-updates group across 1 directory with 11 updates

[dependabot]

Bumps the all-updates group with 8 updates in the / directory:

Package	From	To
github.com/docker/cli	29.3.0+incompatible	29.5.3+incompatible
github.com/getsentry/sentry-go	0.43.0	0.46.2
github.com/hashicorp/go-version	1.8.0	1.9.0
github.com/pierrec/lz4/v4	4.1.26	4.1.27
github.com/regclient/regclient	0.11.2	0.11.5
github.com/testcontainers/testcontainers-go	0.41.0	0.42.0
golang.org/x/sync	0.20.0	0.21.0
[pault.ag/go/debian](https://github.com/paultag/go-debian)	0.19.0	0.20.0

Updates github.com/docker/cli from 29.3.0+incompatible to 29.5.3+incompatible

Commits

• d1c06ef Merge pull request #7022 from mickael-docker/docs-request-field
• 7dd053b Merge pull request #7003 from thaJeztah/logs_links
• 37c3d31 Merge pull request #7024 from thaJeztah/add_zizmor
• 45f10f2 Merge pull request #7025 from vvoland/update-go
• b458dc9 update to go1.26.4
• 1953194 gha: apply zizmor fixes
• ac0419e gha: add zizmor workflow
• 1aa0416 docs: recommend default deny and clarify requesturi field
• 3a85952 Merge pull request #7020 from thaJeztah/full_semver
• 8d3fbdf Merge pull request #7019 from thaJeztah/dependabot_labels
• Additional commits viewable in compare view

Updates github.com/getsentry/sentry-go from 0.43.0 to 0.46.2

Release notes

Sourced from github.com/getsentry/sentry-go's releases.

0.46.2

Bug Fixes 🐛

• Add attachments to new event path by @​giortzisg in #1295

0.46.1

Bug Fixes 🐛

• Correctly capture request body for fasthttp and fiber by @​giortzisg in #1284
• (http) Avoid async transport shutdown panics by @​giortzisg in #1288
• (httpclient) Clone request before adding trace headers by @​giortzisg in #1290
• (scope) Use scoped client for request PII by @​giortzisg in #1289
• Safe concurrent access for span and scope by @​giortzisg in #1285

0.46.0

Breaking Changes 🛠

• Remove SetExtra by @​giortzisg in #1274
• Update compatibility policy to align with Go, supporting only the last two major Go versions by @​giortzisg in #1264
• Drop support for Go 1.24 by @​giortzisg in #1264

New Features ✨

• Add internal_sdk_error client report on serialization fail by @​giortzisg in #1273
• Add grpc integration support by @​ribice in #938
• Re-enable Telemetry Processor by default. To disable the behavior use the DisableTelemetryBuffer flag by @​giortzisg in #1254
• Simplify client DSN storage to internal/protocol.Dsn and make it safe to access by @​giortzisg in #1254

Internal Changes 🔧

Deps

• Bump github.com/labstack/echo/v5 from 5.0.0 to 5.0.3 in /echo by @​dependabot in #1253
• Bump github.com/labstack/echo/v5 from 5.0.0 to 5.0.3 in /crosstest by @​dependabot in #1272
• Bump golangci-lint action from 2.1.1 to 2.11.4 by @​giortzisg in #1265
• Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 in /otel by @​dependabot in #1256
• Bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.40.0 to 1.43.0 in /otel/otlp by @​dependabot in #1255

Other

• Improve ci by @​giortzisg in #1271
• Add crosstest package by @​giortzisg in #1269
• Add sentrytest package by @​giortzisg in #1267

0.45.1

Bug Fixes 🐛

• Add missing TracesSampler fields for SamplingContext by @​giortzisg in #1259

0.45.0

... (truncated)

Changelog

Sourced from github.com/getsentry/sentry-go's changelog.

0.46.2

Bug Fixes 🐛

• Add attachments to new event path by @​giortzisg in #1295

0.46.1

Bug Fixes 🐛

• Correctly capture request body for fasthttp and fiber. by @​giortzisg in #1284
• (http) Avoid async transport shutdown panics by @​giortzisg in #1288
• (httpclient) Clone request before adding trace headers by @​giortzisg in #1290
• (scope) Use scoped client for request PII by @​giortzisg in #1289
• Safe concurrent access for span and scope by @​giortzisg in #1285

0.46.0

Breaking Changes 🛠

• Remove SetExtra by @​giortzisg in #1274
• Update compatibility policy to align with Go, supporting only the last two major Go versions by @​giortzisg in #1264
• Drop support for Go 1.24 by @​giortzisg in #1264

New Features ✨

• Add internal_sdk_error client report on serialization fail by @​giortzisg in #1273
• Add grpc integration support by @​ribice in #938
• Re-enable Telemetry Processor by default. To disable the behavior use the DisableTelemetryBuffer flag by @​giortzisg in #1254
• Simplify client DSN storage to internal/protocol.Dsn and make it safe to access by @​giortzisg in #1254

Internal Changes 🔧

Deps

• Bump github.com/labstack/echo/v5 from 5.0.0 to 5.0.3 in /echo by @​dependabot in #1253
• Bump github.com/labstack/echo/v5 from 5.0.0 to 5.0.3 in /crosstest by @​dependabot in #1272
• Bump golangci-lint action from 2.1.1 to 2.11.4 by @​giortzisg in #1265
• Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 in /otel by @​dependabot in #1256
• Bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.40.0 to 1.43.0 in /otel/otlp by @​dependabot in #1255

Other

• Improve ci by @​giortzisg in #1271
• Add crosstest package by @​giortzisg in #1269
• Add sentrytest package by @​giortzisg in #1267

0.45.1

Bug Fixes 🐛

... (truncated)

Commits

• 1d2598e release: 0.46.2
• 57175c6 fix: flaky attachment test (#1296)
• 8d21468 fix: add attachments to new event path (#1295)
• e4bcedd Merge branch 'release/0.46.1'
• e972183 release: 0.46.1
• 6b9885c fix(http): avoid async transport shutdown panics (#1288)
• 79947a7 fix: safe concurrent access for span and scope (#1285)
• c8ea578 fix(scope): use scoped client for request PII (#1289)
• 0bb583e fix(httpclient): clone request before adding trace headers (#1290)
• bd20df0 fix(fasthttp,fiber): correctly capture request body on scope (#1284)
• Additional commits viewable in compare view

Updates github.com/hashicorp/go-version from 1.8.0 to 1.9.0

Release notes

Sourced from github.com/hashicorp/go-version's releases.

v1.9.0

What's Changed

Enhancements

• Add support for prefix of any character by @​brondum in hashicorp/go-version#79

Internal

• Update CHANGELOG for version 1.8.0 enhancements by @​sonamtenzin2 in hashicorp/go-version#178
• Bump the github-actions-backward-compatible group across 1 directory with 2 updates by @​dependabot[bot] in hashicorp/go-version#179
• Bump the github-actions-breaking group with 4 updates by @​dependabot[bot] in hashicorp/go-version#180
• Bump the github-actions-backward-compatible group with 3 updates by @​dependabot[bot] in hashicorp/go-version#182
• Update GitHub Actions to trigger on pull requests and update go version by @​ssagarverma in hashicorp/go-version#185
• Bump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaking group across 1 directory by @​dependabot[bot] in hashicorp/go-version#183
• Bump the github-actions-backward-compatible group across 1 directory with 2 updates by @​dependabot[bot] in hashicorp/go-version#186

New Contributors

• @​sonamtenzin2 made their first contribution in hashicorp/go-version#178
• @​brondum made their first contribution in hashicorp/go-version#79
• @​ssagarverma made their first contribution in hashicorp/go-version#185

Full Changelog: hashicorp/go-version@v1.8.0...v1.9.0

Changelog

Sourced from github.com/hashicorp/go-version's changelog.

1.9.0 (Mar 30, 2026)

ENHANCEMENTS:

Support parsing versions with custom prefixes via opt-in option in hashicorp/go-version#79

INTERNAL:

• Bump the github-actions-backward-compatible group across 1 directory with 2 updates in hashicorp/go-version#179
• Bump the github-actions-breaking group with 4 updates in hashicorp/go-version#180
• Bump the github-actions-backward-compatible group with 3 updates in hashicorp/go-version#182
• Update GitHub Actions to trigger on pull requests and update go version in hashicorp/go-version#185
• Bump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaking group across 1 directory in hashicorp/go-version#183
• Bump the github-actions-backward-compatible group across 1 directory with 2 updates in hashicorp/go-version#186

Commits

• b80b1e6 Update CHANGELOG for version 1.9.0 (#187)
• e93736f Bump the github-actions-backward-compatible group across 1 directory with 2 u...
• c009de0 Bump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaki...
• 0474357 Update GitHub Actions to trigger on pull requests and update go version (#185)
• b4ab5fc Support parsing versions with custom prefixes via opt-in option (#79)
• 25c683b Merge pull request #182 from hashicorp/dependabot/github_actions/github-actio...
• 4f2bcd8 Bump the github-actions-backward-compatible group with 3 updates
• acb8b18 Merge pull request #180 from hashicorp/dependabot/github_actions/github-actio...
• 0394c4f Merge pull request #179 from hashicorp/dependabot/github_actions/github-actio...
• b2fbaa7 Bump the github-actions-backward-compatible group across 1 directory with 2 u...
• Additional commits viewable in compare view

Updates github.com/pierrec/lz4/v4 from 4.1.26 to 4.1.27

Release notes

Sourced from github.com/pierrec/lz4/v4's releases.

v4.1.27

What's Changed

• ci: refresh Go matrix to 1.24-1.26 and bump actions by @​lizthegrey in pierrec/lz4#244
• set err to nil after ReadFull returns io.EOF by @​serprex in pierrec/lz4#245
• arm64: major decodeBlock performance rework by @​lizthegrey in pierrec/lz4#243

New Contributors

• @​serprex made their first contribution in pierrec/lz4#245

Full Changelog: pierrec/lz4@v4.1.26...v4.1.27

Commits

• a296161 Merge pull request #243 from honeycombio/lizf.arm64-shortcut
• 17a7cd8 Merge pull request #245 from serprex/fix-read-eof-regression
• a9333c3 set err to nil after ReadFull returns io.EOF
• 903773a Merge branch 'v4' into lizf.arm64-shortcut
• 2f2b6bb Merge pull request #244 from honeycombio/lizf.ci-refresh
• 91e8b6f arm64: call runtime·memmove for long, non-overlapping match copies
• 0894170 arm64: widen copyMatchLoop8 to 16 bytes/iter for offset >= 32
• f6dea62 arm64: LDP/STP fast path for shortcut match copy when offset >= 18
• 4ce77f3 arm64: widen splat store from 8 to 16 bytes per iter
• 5f0a641 ci: refresh Go matrix to 1.24-1.26 and bump actions
• Additional commits viewable in compare view

Updates github.com/regclient/regclient from 0.11.2 to 0.11.5

Release notes

Sourced from github.com/regclient/regclient's releases.

v0.11.5

Release v0.11.5

Security:

• Prevent https to non-https downgrades and localhost redirects. (PR 1093)
• Forbid sending auth on redirects. (PR 1095)

Features:

• Add regbot manifest.descriptor to the sandbox. (PR 1091)

Contributors:

• @​GimmyDatBeeR
• @​sudo-bmitch

v0.11.4

Release v0.11.4

Security:

• Validate server URL in token auth. (PR 1075)
• Upgrading Go fixes CVE-2026-33814 and CVE-2026-39836, other vulnerabilities fixed in 1.26.3 were not called by this project. (PR 1084)

Features:

• Support scanning OCI Layout for referrers. (PR 1074)
• Add created timestamp in OCI Layout entries. (PR 1081)
• tag.ls now accepts the same pagination parameters as repo.ls. (PR 1086)

Fixes:

• Push tags for minor and major releases on Docker Hub. (PR 1087)

Contributors:

• @​ffried
• @​sudo-bmitch

... (truncated)

Changelog

Sourced from github.com/regclient/regclient's changelog.

Release v0.11.5

Security:

• Prevent https to non-https downgrades and localhost redirects. (PR 1093)
• Forbid sending auth on redirects. (PR 1095)

Features:

• Add regbot manifest.descriptor to the sandbox. (PR 1091)

Contributors:

• @​GimmyDatBeeR
• @​sudo-bmitch

Commits

• 2bc542b Release v0.11.5
• 1a6316a Merge for release v0.11.5
• bb093cf Merge pull request #1095 from sudo-bmitch/pr-forbid-auth-on-redirect
• 746d6cf Sec: Forbid sending auth on redirects
• c439fbf Merge pull request #1094 from sudo-bmitch/pr-update-20260524
• 2afb750 Version bump
• 139138e Merge pull request #1093 from sudo-bmitch/pr-prevent-bad-redirect
• 1a80807 Sec: Prevent https to non-https downgrades and localhost redirects
• 65a279a Merge pull request #1092 from sudo-bmitch/pr-update-20260520
• a617d64 Version bump
• Additional commits viewable in compare view

Updates github.com/testcontainers/testcontainers-go from 0.41.0 to 0.42.0

Release notes

Sourced from github.com/testcontainers/testcontainers-go's releases.

v0.42.0

What's Changed

⚠️ Breaking Changes

• chore!: migrate to moby modules (#3591) @​thaJeztah

🔒 Security

• chore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (#3634) @​thaJeztah

🐛 Bug Fixes

• fix: return an error when docker host cannot be retrieved (#3613) @​ash2k

🧹 Housekeeping

• chore: gitignore Gas Town agent artifacts (#3633) @​mdelapenya
• fix(usage-metrics): include last release in the legend pop over (#3630) @​mdelapenya
• chore: update usage metrics (2026-04) (#3621) @github-actions[bot]
• fix(usage-metrics): order of actions matters (#3623) @​mdelapenya
• fix(usage-metrics): reduce rate-limit cascade errors (#3622) @​mdelapenya
• fix(usage-metrics): replace the per-version inline retry with a multi-pass approach (#3620) @​mdelapenya

📦 Dependency updates

• chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (#3639) @dependabot[bot]
• chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (#3641) @dependabot[bot]
• chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (#3645) @dependabot[bot]
• chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (#3626) @dependabot[bot]
• chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (#3638) @dependabot[bot]
• chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (#3643) @dependabot[bot]
• chore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (#3644) @dependabot[bot]
• chore: update to Go 1.25.9, 1.26.9 (#3647) @​thaJeztah
• chore(deps): bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (#3646) @​thaJeztah
• chore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (#3634) @​thaJeztah
• chore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (#3629) @dependabot[bot]
• chore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (#3628) @dependabot[bot]
• chore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (#3627) @dependabot[bot]
• fix(localstack): accept community-archive as a valid tag (#3601) @​johnduhart
• chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (#3632) @dependabot[bot]
• chore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (#3625) @dependabot[bot]
• chore(deps): bump pygments from 2.19.2 to 2.20.0 (#3615) @dependabot[bot]
• chore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (#3612) @dependabot[bot]
• chore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (#3611) @dependabot[bot]
• chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (#3610) @dependabot[bot]
• chore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (#3609) @dependabot[bot]
• chore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (#3608) @dependabot[bot]
• chore(deps): bump requests from 2.32.4 to 2.33.0 (#3604) @dependabot[bot]
• chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (#3607) @dependabot[bot]
• chore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (#3605) @dependabot[bot]

... (truncated)

Commits

• 6e58418 chore: use new version (v0.42.0) in modules and examples
• f713dc0 chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...
• 300827a chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...
• 7a15ac1 chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...
• 5bae3d2 fix: return an error when docker host cannot be retrieved (#3613)
• fc19484 chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (#3626)
• 95bdc0c chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (#3638)
• 75aa226 chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...
• 2f59938 chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (#3644)
• 580abf6 chore: update to Go 1.25.9, 1.26.9 (#3647)
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.49.0 to 0.52.0

Commits

• a1c0d99 go.mod: update golang.org/x dependencies
• 3c7c869 ssh: fix deadlock on unexpected channel responses
• 533fb3f ssh: fix source-address critical option bypass
• abbc44d ssh: fix incorrect operator order
• e052873 ssh: fix infinite loop on large channel writes due to integer overflow
• b61cf85 ssh: enforce user presence verification for security keys
• 9c2cd33 ssh: enforce strict limits on DSA key parameters
• 8907318 ssh: reject RSA keys with excessively large moduli
• ffd87b4 ssh: fix panic when authority callbacks are nil
• 4e7a738 ssh: fix deadlock on unexpected global responses
• Additional commits viewable in compare view

Updates golang.org/x/sync from 0.20.0 to 0.21.0

Commits

• 5071ed6 all: fix some comments to improve readability
• See full diff in compare view

Updates golang.org/x/sys from 0.42.0 to 0.45.0

Commits

• 397d5f8 unix: update to Linux kernel 7.0
• 0a387f7 cpu: detect zbc extension on riscv64
• 758f71c cpu: add LLACQ_SCREL, SCQ, DBAR_HINTS detection for loong64
• 99666ae unix: merge Linux readv/writev implementation with Darwin/OpenBSD
• e4444cb windows: add NtSetEaFile, NtQueryEaFile and NtQueryInformationFile
• 04396e8 unix: add Readv, Writev, Preadv, Pwritev for OpenBSD
• fb1facd windows: avoid uint16 overflow in NewNTUnicodeString
• 94ad893 windows: add GetIfTable2Ex, GetIpInterface{Entry,Table}, GetUnicastIpAddressT...
• 54fe89f cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows
• df7d5d7 unix: automatically remove container created by mkall.sh
• Additional commits viewable in compare view

Updates golang.org/x/term from 0.41.0 to 0.43.0

Commits

• 3c3e485 go.mod: update golang.org/x dependencies
• 52b71d3 go.mod: update golang.org/x dependencies
• See full diff in compare view

Updates pault.ag/go/debian from 0.19.0 to 0.20.0

Commits

• 6381c0b control: expose Build-Depends-Arch and Build-Conflicts-Arch on Source
• e4f9c3c dependency: trim multi-line field whitespace from Possibility names
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions