Skip to content

chore(deps): bump the go-dependencies group with 2 updates#1005

Merged
mbevc1 merged 1 commit into
mainfrom
dependabot/go_modules/go-dependencies-f5f4bc500e
Jul 8, 2026
Merged

chore(deps): bump the go-dependencies group with 2 updates#1005
mbevc1 merged 1 commit into
mainfrom
dependabot/go_modules/go-dependencies-f5f4bc500e

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 8, 2026

Copy link
Copy Markdown
Contributor

Bumps the go-dependencies group with 2 updates: github.com/aws/aws-sdk-go-v2/service/lambda and google.golang.org/api.

Updates github.com/aws/aws-sdk-go-v2/service/lambda from 1.95.0 to 1.96.0

Commits

Updates google.golang.org/api from 0.287.0 to 0.287.1

Release notes

Sourced from google.golang.org/api's releases.

v0.287.1

0.287.1 (2026-07-07)

Documentation

Changelog

Sourced from google.golang.org/api's changelog.

0.287.1 (2026-07-07)

Documentation

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the go-dependencies group with 2 updates: [github.com/aws/aws-sdk-go-v2/service/lambda](https://github.com/aws/aws-sdk-go-v2) and [google.golang.org/api](https://github.com/googleapis/google-api-go-client).


Updates `github.com/aws/aws-sdk-go-v2/service/lambda` from 1.95.0 to 1.96.0
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.95.0...service/s3/v1.96.0)

Updates `google.golang.org/api` from 0.287.0 to 0.287.1
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.287.0...v0.287.1)

---
updated-dependencies:
- dependency-name: github.com/aws/aws-sdk-go-v2/service/lambda
  dependency-version: 1.96.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: google.golang.org/api
  dependency-version: 0.287.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Jul 8, 2026
@claude

claude Bot commented Jul 8, 2026

Copy link
Copy Markdown
Contributor

Claude finished @dependabot[bot]'s task in 47s —— View job


Dependency update review

  • Identify changed dependencies
  • Assess semver/changelogs for breaking changes
  • Check repo usage of each dependency
  • Post summary

Verdict: ✅ Safe to merge. Both are non-breaking updates, and the codebase's usage is narrow and unaffected.

1. github.com/aws/aws-sdk-go-v2/service/lambda 1.95.0 → 1.96.0

  • Minor version bump — SDK regenerated clients from an updated API model (additive). No breaking changes expected under semver.
  • The module's own go.mod hash is unchanged between versions (gKWVtxlMTgoLU9m6FDw7z6FAEFh8u8CoaPJx0zWk5J8=), so no transitive dependency shifts came with this bump.
  • Repo usage lives in internal/aws/aws.go and is limited to stable, long-standing APIs:
    • lambda.NewFromConfig (aws.go:140)
    • ListFunctions / ListFunctionsInput (aws.go:146, 184)
    • GetFunctionConfiguration / GetFunctionConfigurationInput (aws.go:147, 286)
    • A local LambdaClient interface abstracts these, and internal/aws/fake_lambda.go fakes it for tests — so any signature drift would surface at compile time.
  • No action needed.

2. google.golang.org/api 0.287.0 → 0.287.1

  • Patch release. Changelog contains a documentation-only change (removed an old TODO file, #3645). No code changes.
  • Repo usage is a single import of google.golang.org/api/iterator in internal/cloudrun/cloudrun.go:19, which is unaffected.
  • No action needed.

Transitive

  • google.golang.org/genproto/googleapis/rpc moved to a newer pseudo-version (pulled in by the google.golang.org/api bump). Its go.mod hash is unchanged, so no further dependency churn.

Suggested follow-up

  • CI (make build + make test_integration) is sufficient to confirm; no dependency-specific tests are required beyond the existing internal/aws lambda contract tests.

@mbevc1 mbevc1 enabled auto-merge (squash) July 8, 2026 15:39
@mbevc1 mbevc1 merged commit 02ead58 into main Jul 8, 2026
13 checks passed
@mbevc1 mbevc1 deleted the dependabot/go_modules/go-dependencies-f5f4bc500e branch July 8, 2026 15:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant