Skip to content

chore(deps): bump the go_modules group across 1 directory with 2 updates#601

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/tests/go_modules-300547a8bd
Closed

chore(deps): bump the go_modules group across 1 directory with 2 updates#601
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/tests/go_modules-300547a8bd

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor

Bumps the go_modules group with 1 update in the /tests directory: golang.org/x/crypto.

Updates golang.org/x/crypto from 0.45.0 to 0.52.0

Commits
  • a1c0d99 go.mod: update golang.org/x dependencies
  • 3c7c869 ssh: fix deadlock on unexpected channel responses
  • 533fb3f ssh: fix source-address critical option bypass
  • abbc44d ssh: fix incorrect operator order
  • e052873 ssh: fix infinite loop on large channel writes due to integer overflow
  • b61cf85 ssh: enforce user presence verification for security keys
  • 9c2cd33 ssh: enforce strict limits on DSA key parameters
  • 8907318 ssh: reject RSA keys with excessively large moduli
  • ffd87b4 ssh: fix panic when authority callbacks are nil
  • 4e7a738 ssh: fix deadlock on unexpected global responses
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.47.0 to 0.54.0

Commits
  • b138e06 go.mod: update golang.org/x dependencies
  • 689f70a quic: fix wrong final size being used for RESET_STREAM frame
  • 208f306 http3: increase handshake timeout
  • 49810da http2: enable net/http wrapping when go >= 1.27
  • 5e11a5a quic: fix data race in streamForFrame
  • 8c63081 http2: use empty Transport rather than DefaultTransport in http2wrap
  • fc7b466 http2: add http2wrap test
  • 15c2cb1 http2: avoid overflowing 32-bit int when http2wrap enabled
  • 6465188 http2: add wrapped Server
  • 72f419a http2: add wrapped ClientConn
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 10, 2026
@dependabot dependabot Bot requested a review from a team as a code owner July 10, 2026 08:42
@kevin-dimichel kevin-dimichel changed the base branch from main to release/v2.22.0 July 10, 2026 15:25
@kevin-dimichel

Copy link
Copy Markdown
Contributor

@dependabot rebase

Bumps the go_modules group with 1 update in the /tests directory: [golang.org/x/crypto](https://github.com/golang/crypto).


Updates `golang.org/x/crypto` from 0.45.0 to 0.52.0
- [Commits](golang/crypto@v0.45.0...v0.52.0)

Updates `golang.org/x/net` from 0.47.0 to 0.54.0
- [Commits](golang/net@v0.47.0...v0.54.0)

---
updated-dependencies:
- dependency-name: golang.org/x/crypto
  dependency-version: 0.52.0
  dependency-type: indirect
- dependency-name: golang.org/x/net
  dependency-version: 0.54.0
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the base branch from release/v2.22.0 to main July 10, 2026 15:26
@dependabot dependabot Bot force-pushed the dependabot/go_modules/tests/go_modules-300547a8bd branch from a42e2bf to 09c848c Compare July 10, 2026 15:26
@kevin-dimichel

Copy link
Copy Markdown
Contributor

Closing. Merged in #602

@dependabot @github

dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown
Contributor Author

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

@dependabot dependabot Bot deleted the dependabot/go_modules/tests/go_modules-300547a8bd branch July 10, 2026 17:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant