chore(deps): bump github.com/consensys/gnark-crypto from 0.19.0 to 0.19.1 in /f3-sidecar

[dependabot]

Bumps github.com/consensys/gnark-crypto from 0.19.0 to 0.19.1.

Release notes

Sourced from github.com/consensys/gnark-crypto's releases.

v0.19.1

Full Changelog: Consensys/gnark-crypto@v0.19.0...v0.19.1

Changelog

Sourced from github.com/consensys/gnark-crypto's changelog.

[v0.19.1] - 2025-10-23

Perf

• limit memory allocation during Vector deserialization (#759)

Commits

• 867f793 docs: update CHANGELOG to v0.19.1
• 2d34036 perf: limit memory allocation during Vector deserialization (#759)
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

Summary by CodeRabbit

• Chores
  • Updated dependencies to latest stable versions for improved stability and security.

[coderabbitai]

Walkthrough

This PR updates an indirect dependency in the f3-sidecar Go module. The github.com/consensys/gnark-crypto package is bumped from version v0.19.0 to v0.19.1, a patch-level release.

Changes

Cohort / File(s)	Summary
Dependency version bump f3-sidecar/go.mod	Updated indirect dependency github.com/consensys/gnark-crypto from v0.19.0 to v0.19.1

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Possibly related PRs

• chore(deps): bump go-f3 #6019: Updates the same indirect dependency (github.com/consensys/gnark-crypto) in f3-sidecar/go.mod
• chore(deps): bump go-f3 and Go deps #5881: Bumps the same dependency version (v0.19.0 → v0.19.1) in go.mod

Suggested reviewers

• sudo-shashank
• hanabi1224
• akaladarshi

Pre-merge checks and finishing touches

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The pull request title 'chore(deps): bump github.com/consensys/gnark-crypto from 0.19.0 to 0.19.1 in /f3-sidecar' directly and accurately describes the main change in the changeset. It follows conventional commit format, clearly specifies the dependency being updated, the version change, and the affected module path. The title is concise, specific, and fully aligned with the actual modification shown in the raw summary.

✨ Finishing touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch dependabot/go_modules/f3-sidecar/github.com/consensys/gnark-crypto-0.19.1

---

📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between d143ac5 and 91785b1.

⛔ Files ignored due to path filters (1)

• f3-sidecar/go.sum is excluded by !**/*.sum

📒 Files selected for processing (1)

• f3-sidecar/go.mod (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (7)

• GitHub Check: Build MacOS
• GitHub Check: Build Ubuntu
• GitHub Check: cargo-publish-dry-run
• GitHub Check: tests
• GitHub Check: tests-release
• GitHub Check: Build forest binaries on Linux AMD64
• GitHub Check: All lint checks

🔇 Additional comments (1)

f3-sidecar/go.mod (1)

26-26: Dependency bump verified as correct.

The version bump from v0.19.0 to v0.19.1 is properly applied with:

• ✓ go.sum updated with correct v0.19.1 checksums
• ✓ go.mod and go.sum in sync (go mod verify passed)
• ✓ No security advisories for v0.19.1
• ✓ Patch-level release with performance optimization (safe, backward-compatible)

Warning

There were issues while running some tools. Please review the errors and either fix the tool's configuration or disable the tool if it's a critical failure.

🔧 golangci-lint (2.5.0)

level=error msg="[linters_context] typechecking error: pattern ./...: directory prefix . does not contain modules listed in go.work or their selected dependencies"

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}