Skip to content

chore(deps): Bump the go-minor-patch group across 1 directory with 5 updates#261

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/go-minor-patch-1a3b545edf
Closed

chore(deps): Bump the go-minor-patch group across 1 directory with 5 updates#261
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/go-minor-patch-1a3b545edf

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 2, 2026
edited
Loading

Bumps the go-minor-patch group with 3 updates in the / directory: github.com/chainguard-dev/yam, golang.org/x/net and golang.org/x/oauth2.

Updates github.com/chainguard-dev/yam from 0.2.53 to 0.2.54

Commits
  • fbc0768 build(deps): bump chainguard-dev/actions from 1.6.9 to 1.6.10 (#198)
  • c83c246 build(deps): bump chainguard-dev/actions from 1.6.8 to 1.6.9 (#197)
  • See full diff in compare view

Updates golang.org/x/net from 0.50.0 to 0.52.0

Commits
  • 316e20c go.mod: update golang.org/x dependencies
  • 9767a42 internal/http3: add support for plugging into net/http
  • 4a81284 http2: update docs to disrecommend this package
  • dec6603 dns/dnsmessage: reject too large of names early during unpack
  • 8afa12f http2: deprecate write schedulers
  • 38019a2 http2: add missing copyright header to export_test.go
  • 039b87f internal/http3: return error when Write is used after status 304 is set
  • 6267c6c internal/http3: add HTTP 103 Early Hints support to ClientConn
  • 591bdf3 internal/http3: add HTTP 103 Early Hints support to Server
  • 1faa6d8 internal/http3: avoid potential race when aborting RoundTrip
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.35.0 to 0.36.0

Commits
  • 4d954e6 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/sync from 0.19.0 to 0.20.0

Commits
  • ec11c4a errgroup: fix a typo in the documentation
  • 1a58307 all: modernize interface{} -> any
  • 3172ca5 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/term from 0.40.0 to 0.41.0

Commits
  • 9d2dc07 go.mod: update golang.org/x dependencies
  • d954e03 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 2, 2026
This was referenced Apr 2, 2026
Closed
Closed
Closed
Closed
Closed
@dependabot
chore(deps): Bump the go-minor-patch group with 5 updates
71e3365 
Bumps the go-minor-patch group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/chainguard-dev/yam](https://github.com/chainguard-dev/yam) | `0.2.53` | `0.2.54` |
| [golang.org/x/net](https://github.com/golang/net) | `0.50.0` | `0.52.0` |
| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.35.0` | `0.36.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.19.0` | `0.20.0` |
| [golang.org/x/term](https://github.com/golang/term) | `0.40.0` | `0.41.0` |


Updates `github.com/chainguard-dev/yam` from 0.2.53 to 0.2.54
- [Commits](chainguard-dev/yam@v0.2.53...v0.2.54)

Updates `golang.org/x/net` from 0.50.0 to 0.52.0
- [Commits](golang/net@v0.50.0...v0.52.0)

Updates `golang.org/x/oauth2` from 0.35.0 to 0.36.0
- [Commits](golang/oauth2@v0.35.0...v0.36.0)

Updates `golang.org/x/sync` from 0.19.0 to 0.20.0
- [Commits](golang/sync@v0.19.0...v0.20.0)

Updates `golang.org/x/term` from 0.40.0 to 0.41.0
- [Commits](golang/term@v0.40.0...v0.41.0)

---
updated-dependencies:
- dependency-name: github.com/chainguard-dev/yam
  dependency-version: 0.2.54
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-minor-patch
- dependency-name: golang.org/x/net
  dependency-version: 0.52.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor-patch
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor-patch
- dependency-name: golang.org/x/sync
  dependency-version: 0.20.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor-patch
- dependency-name: golang.org/x/term
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot changed the title chore(deps): Bump the go-minor-patch group with 5 updates chore(deps): Bump the go-minor-patch group across 1 directory with 5 updates Apr 3, 2026
@dependabot dependabot bot force-pushed the dependabot/go_modules/go-minor-patch-1a3b545edf branch from 18505ab to 71e3365 Compare April 3, 2026 08:43
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 10, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Apr 10, 2026
@dependabot dependabot bot deleted the dependabot/go_modules/go-minor-patch-1a3b545edf branch April 10, 2026 08:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants