Bump the go_modules group across 4 directories with 8 updates#17
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump the go_modules group across 4 directories with 8 updates#17dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the go_modules group with 3 updates in the /learning/katas/go directory: [golang.org/x/net](https://github.com/golang/net), [golang.org/x/oauth2](https://github.com/golang/oauth2) and [google.golang.org/grpc](https://github.com/grpc/grpc-go). Bumps the go_modules group with 4 updates in the /learning/tour-of-beam/backend directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go), [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/net](https://github.com/golang/net) and [github.com/cloudevents/sdk-go/v2](https://github.com/cloudevents/sdk-go). Bumps the go_modules group with 2 updates in the /playground/backend directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go) and [github.com/cloudevents/sdk-go/v2](https://github.com/cloudevents/sdk-go). Bumps the go_modules group with 2 updates in the /sdks directory: [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) and [github.com/apache/thrift](https://github.com/apache/thrift). Updates `golang.org/x/net` from 0.38.0 to 0.55.0 - [Commits](golang/net@v0.38.0...v0.55.0) Updates `golang.org/x/oauth2` from 0.0.0-20220524215830-622c5d57e401 to 0.27.0 - [Commits](https://github.com/golang/oauth2/commits/v0.27.0) Updates `google.golang.org/grpc` from 1.48.0 to 1.79.3 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.48.0...v1.79.3) Updates `google.golang.org/grpc` from 1.49.0 to 1.79.3 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.48.0...v1.79.3) Updates `google.golang.org/protobuf` from 1.28.1 to 1.36.10 Updates `golang.org/x/crypto` from 0.46.0 to 0.52.0 - [Commits](golang/crypto@v0.46.0...v0.52.0) Updates `golang.org/x/net` from 0.54.0 to 0.55.0 - [Commits](golang/net@v0.38.0...v0.55.0) Updates `github.com/cloudevents/sdk-go/v2` from 2.6.1 to 2.15.2 - [Release notes](https://github.com/cloudevents/sdk-go/releases) - [Commits](cloudevents/sdk-go@v2.6.1...v2.15.2) Updates `google.golang.org/grpc` from 1.56.3 to 1.79.3 - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.48.0...v1.79.3) Updates `google.golang.org/protobuf` from 1.30.0 to 1.36.10 Updates `golang.org/x/net` from 0.9.0 to 0.48.0 - [Commits](golang/net@v0.38.0...v0.55.0) Updates `golang.org/x/oauth2` from 0.7.0 to 0.34.0 - [Commits](https://github.com/golang/oauth2/commits/v0.27.0) Updates `github.com/cloudevents/sdk-go/v2` from 2.6.1 to 2.15.2 - [Release notes](https://github.com/cloudevents/sdk-go/releases) - [Commits](cloudevents/sdk-go@v2.6.1...v2.15.2) Updates `golang.org/x/crypto` from 0.49.0 to 0.50.0 - [Commits](golang/crypto@v0.46.0...v0.52.0) Updates `golang.org/x/net` from 0.52.0 to 0.53.0 - [Commits](golang/net@v0.38.0...v0.55.0) Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.96.0 to 1.97.3 - [Release notes](https://github.com/aws/aws-sdk-go-v2/releases) - [Commits](aws/aws-sdk-go-v2@service/s3/v1.96.0...service/s3/v1.97.3) Updates `github.com/apache/thrift` from 0.21.0 to 0.23.0 - [Release notes](https://github.com/apache/thrift/releases) - [Changelog](https://github.com/apache/thrift/blob/master/CHANGES.md) - [Commits](apache/thrift@v0.21.0...v0.23.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-version: 0.55.0 dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/oauth2 dependency-version: 0.27.0 dependency-type: indirect dependency-group: go_modules - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: indirect dependency-group: go_modules - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: direct:production dependency-group: go_modules - dependency-name: google.golang.org/protobuf dependency-version: 1.36.10 dependency-type: direct:production dependency-group: go_modules - dependency-name: golang.org/x/crypto dependency-version: 0.52.0 dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/net dependency-version: 0.55.0 dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/cloudevents/sdk-go/v2 dependency-version: 2.15.2 dependency-type: indirect dependency-group: go_modules - dependency-name: google.golang.org/grpc dependency-version: 1.79.3 dependency-type: direct:production dependency-group: go_modules - dependency-name: google.golang.org/protobuf dependency-version: 1.36.10 dependency-type: direct:production dependency-group: go_modules - dependency-name: golang.org/x/net dependency-version: 0.48.0 dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/oauth2 dependency-version: 0.34.0 dependency-type: indirect dependency-group: go_modules - dependency-name: github.com/cloudevents/sdk-go/v2 dependency-version: 2.15.2 dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/crypto dependency-version: 0.50.0 dependency-type: indirect dependency-group: go_modules - dependency-name: golang.org/x/net dependency-version: 0.53.0 dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/aws/aws-sdk-go-v2/service/s3 dependency-version: 1.97.3 dependency-type: direct:production dependency-group: go_modules - dependency-name: github.com/apache/thrift dependency-version: 0.23.0 dependency-type: indirect dependency-group: go_modules ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the go_modules group with 3 updates in the /learning/katas/go directory: golang.org/x/net, golang.org/x/oauth2 and google.golang.org/grpc.
Bumps the go_modules group with 4 updates in the /learning/tour-of-beam/backend directory: google.golang.org/grpc, golang.org/x/crypto, golang.org/x/net and github.com/cloudevents/sdk-go/v2.
Bumps the go_modules group with 2 updates in the /playground/backend directory: google.golang.org/grpc and github.com/cloudevents/sdk-go/v2.
Bumps the go_modules group with 2 updates in the /sdks directory: github.com/aws/aws-sdk-go-v2/service/s3 and github.com/apache/thrift.
Updates
golang.org/x/netfrom 0.38.0 to 0.55.0Commits
7770ec4go.mod: update golang.org/x dependencies4ece7b6html: escape greater-than symbol in doctype identifiers08be507html: improve Noah's Ark clause performancea8fb2fehtml: properly render fostered elements in foreign content0dc5b7ahtml: properly check namespace in "in body" any other end taga452f3chtml: ignore duplicate attributes during tokenizationf865199quic: fix appendMaxDataFrame erroneously accumulating sentLimit210ed3cquic: establish a "happened-before" relationship between stream write and readad8140equic: fix buffer slicing when handling overlapping stream data23ee2efhttp2: avoid API changes when built with go1.27Updates
golang.org/x/oauth2from 0.0.0-20220524215830-622c5d57e401 to 0.27.0Commits
Updates
google.golang.org/grpcfrom 1.48.0 to 1.79.3Release notes
Sourced from google.golang.org/grpc's releases.
... (truncated)
Commits
dda86dbChange version to 1.79.3 (#8983)72186f1grpc: enforce strict path checking for incoming requests on the server (#8981)97ca352Changing version to 1.79.3-dev (#8954)8902ab6Change the version to release 1.79.2 (#8947)a928670Cherry-pick #8874 to v1.79.x (#8904)06df363Change version to 1.79.2-dev (#8903)782f2deChange version to 1.79.1 (#8902)850eccbChange version to 1.79.1-dev (#8851)765ff05Change version to 1.79.0 (#8850)68804beCherry pick #8864 to v1.79.x (#8896)Updates
google.golang.org/grpcfrom 1.49.0 to 1.79.3Release notes
Sourced from google.golang.org/grpc's releases.
... (truncated)
Commits
dda86dbChange version to 1.79.3 (#8983)72186f1grpc: enforce strict path checking for incoming requests on the server (#8981)97ca352Changing version to 1.79.3-dev (#8954)8902ab6Change the version to release 1.79.2 (#8947)a928670Cherry-pick #8874 to v1.79.x (#8904)06df363Change version to 1.79.2-dev (#8903)782f2deChange version to 1.79.1 (#8902)850eccbChange version to 1.79.1-dev (#8851)765ff05Change version to 1.79.0 (#8850)68804beCherry pick #8864 to v1.79.x (#8896)Updates
google.golang.org/protobuffrom 1.28.1 to 1.36.10Updates
golang.org/x/cryptofrom 0.46.0 to 0.52.0Commits
a1c0d99go.mod: update golang.org/x dependencies3c7c869ssh: fix deadlock on unexpected channel responses533fb3fssh: fix source-address critical option bypassabbc44dssh: fix incorrect operator ordere052873ssh: fix infinite loop on large channel writes due to integer overflowb61cf85ssh: enforce user presence verification for security keys9c2cd33ssh: enforce strict limits on DSA key parameters8907318ssh: reject RSA keys with excessively large moduliffd87b4ssh: fix panic when authority callbacks are nil4e7a738ssh: fix deadlock on unexpected global responsesUpdates
golang.org/x/netfrom 0.54.0 to 0.55.0Commits
7770ec4go.mod: update golang.org/x dependencies4ece7b6html: escape greater-than symbol in doctype identifiers08be507html: improve Noah's Ark clause performancea8fb2fehtml: properly render fostered elements in foreign content0dc5b7ahtml: properly check namespace in "in body" any other end taga452f3chtml: ignore duplicate attributes during tokenizationf865199quic: fix appendMaxDataFrame erroneously accumulating sentLimit210ed3cquic: establish a "happened-before" relationship between stream write and readad8140equic: fix buffer slicing when handling overlapping stream data23ee2efhttp2: avoid API changes when built with go1.27Updates
github.com/cloudevents/sdk-go/v2from 2.6.1 to 2.15.2Release notes
Sourced from github.com/cloudevents/sdk-go/v2's releases.
... (truncated)
Commits
de2f283Merge pull request from GHSA-5pf6-2qwx-pxm2c5f8d9dUpdate v2/protocol/http/protocol.goc17d949Avoid modifying the DefaultClient's Transport67e3899Merge pull request #1020 from duglin/oopsf0061e0oops4cc6c2dMerge pull request #1011 from cloudevents/dependabot/bundler/docs/bundler-sec...b6949b0Bump the bundler group across 1 directories with 1 updatedf51395Merge pull request #1016 from cloudevents/dependabot/github_actions/golangci/...1af6e06Bump golangci/golangci-lint-action from 3 to 42574a05Merge pull request #1013 from jafossum/fix-nats-typosUpdates
google.golang.org/grpcfrom 1.56.3 to 1.79.3Release notes
Sourced from google.golang.org/grpc's releases.
... (truncated)
Commits
dda86dbChange version to 1.79.3 (#8983)72186f1grpc: enforce strict path checking for incoming requests on the server (#8981)97ca352Changing version to 1.79.3-dev (#8954)8902ab6Change the version to release 1.79.2 (#8947)a928670Cherry-pick #8874 to v1.79.x (#8904)06df363Change version to 1.79.2-dev (#8903)782f2deChange version to 1.79.1 (#8902)850eccbChange version to 1.79.1-dev (#8851)765ff05Change version to 1.79.0 (#8850)68804beCherry pick #8864 to v1.79.x (#8896)Updates
google.golang.org/protobuffrom 1.30.0 to 1.36.10Updates
golang.org/x/netfrom 0.9.0 to 0.48.0Commits
7770ec4go.mod: update golang.org/x dependencies4ece7b6html: escape greater-than symbol in doctype identifiers08be507html: improve Noah's Ark clause performancea8fb2fehtml: properly render fostered elements in foreign content0dc5b7ahtml: properly check namespace in "in body" any other end taga452f3chtml: ignore duplicate attributes during tokenizationf865199quic: fix appendMaxDataFrame erroneously accumulating sentLimit210ed3cquic: establish a "happened-before" relationship between stream write and readad8140equic: fix buffer slicing when handling overlapping stream data23ee2efhttp2: avoid API changes when built with go1.27Updates
golang.org/x/oauth2from 0.7.0 to 0.34.0Commits
Updates
github.com/cloudevents/sdk-go/v2from 2.6.1 to 2.15.2Release notes
Sourced from github.com/cloudevents/sdk-go/v2's releases.
... (truncated)
Commits
de2f283Merge pull request from GHSA-5pf6-2qwx-pxm2c5f8d9dUpdate v2/protocol/http/protocol.goc17d949Avoid modifying the DefaultClient's Transport67e3899Merge pull request #1020 from duglin/oopsf0061e0oops4cc6c2dMerge pull request #1011 from cloudevents/dependabot/bundler/docs/bundler-sec...b6949b0Bump the bundler group across 1 directories with 1 updatedf51395Merge pull request #1016 from cloudevents/dependabot/github_actions/golangci/...1af6e06Bump golangci/golangci-lint-action from 3 to 42574a05Merge pull request #1013 from jafossum/fix-nats-typosUpdates
golang.org/x/cryptofrom 0.49.0 to 0.50.0Commits
a1c0d99go.mod: update golang.org/x dependencies3c7c869ssh: fix deadlock on unexpected channel responses533fb3fssh: fix source-address critical option bypassabbc44dssh: fix incorrect operator ordere052873ssh: fix infinite loop on large channel writes due to integer overflowb61cf85ssh: enforce user presence verification for security keys9c2cd33ssh: enforce strict limits on DSA key parameters8907318ssh: reject RSA keys with excessively large moduliffd87b4ssh: fix panic when authority callbacks are nil4e7a738ssh: fix deadlock on unexpected global responsesUpdates
golang.org/x/netfrom 0.52.0 to 0.53.0Commits
7770ec4go.mod: update golang.org/x dependencies4ece7b6html: escape greater-than symbol in doctype identifiers08be507html: improve Noah's Ark clause performancea8fb2fehtml: properly render fostered elements in foreign content0dc5b7ahtml: properly check namespace in "in body" any other end taga452f3chtml: ignore duplicate attributes during tokenizationf865199quic: fix appendMaxDataFrame erroneously accumulating sentLimit210ed3cquic: establish a "happened-before" relationship between stream write and readad8140equic: fix buffer slicing when handling overlapping stream data23ee2efhttp2: avoid API changes when built with go1.27Updates
github.com/aws/aws-sdk-go-v2/service/s3from 1.96.0 to 1.97.3Commits
90650ddRelease 2026-03-26dd88818Regenerated Clientsb662c50Update endpoints model500a9cbUpdate API model6221102fix stale skew and delayed skew healing (#3359)0a39373fix order of generated event header handlers (#3361)098f389Only generate resolveAccountID when it's required (#3360)6ebab66Release 2026-03-25b2ec3beRegenerated Clientsabc126fUpdate API modelUpdates
github.com/apache/thriftfrom 0.21.0 to 0.23.0Release notes
Sourced from github.com/apache/thrift's releases.
Changelog
Sourced from github.com/apache/thrift's changelog.
... (truncated)
Commits
e4b684fUpdated CHANGES.mdc4cbe43Address vulnerabilities in Rack68ac8e9Enable TLS hostname verification in TNonblockingSSLSocket5e4f01dHarden Node.js WebSocket server handlinge242889Add input validation to Swift protocol layer4af8c7cAdd recursion depth limit to Node.js protocol skip()a30c552Enable TLS hostname verification in TSSLTransportFactory0f8ec9cFix parent class resolution in c_glib generated dispatch_call276ec88THRIFT-5929: Fix build failure on PHP 8.5 due to removed zend_exception_get_d...17f2c13Added missing 0.23.0 JIRA tickets to CHANGES.md