chore(deps): bump the minor-patch group across 1 directory with 7 updates

[dependabot]

Bumps the minor-patch group with 7 updates in the / directory:

Package	From	To
github.com/gin-gonic/gin	1.10.1	1.11.0
github.com/spf13/cobra	1.9.1	1.10.1
github.com/spf13/viper	1.20.1	1.21.0
golang.org/x/crypto	0.41.0	0.42.0
github.com/docker/docker	28.3.3+incompatible	28.4.0+incompatible
github.com/go-ldap/ldap/v3	3.4.11	3.4.12
golang.org/x/oauth2	0.30.0	0.31.0

Updates github.com/gin-gonic/gin from 1.10.1 to 1.11.0

Release notes

Sourced from github.com/gin-gonic/gin's releases.

v1.11.0

Changelog

Features

• 6ca8ddb1aed78d9ffaf984e5489111838242fedb: feat(binding): add BindPlain (#3904) (@​guonaihong)
• 4ccfa7c275c449990818e46759d5974a953cc1c1: feat(binding): add support for unixMilli and unixMicro (#4190) (@​takanuva15)
• 9d7c0e9e1a301f417df9dc89a8cadc3bf9063db2: feat(context): GetXxx added support for more go native types (#3633) (@​CC11001100)
• fb09c825e8e13134daaa90debfda198520e1b347: feat(context): add SetCookieData (#4240) (@​Narita-1095305)
• f05f966a0824b1d302ee556183e2579c91954266: feat(form): Support default values for collections in form binding (#4048) (@​takanuva15)
• 3cb30679b5e3021db16c776ed7e70d380586e9ce: feat(form): add array collection format in form binding (#3986) (@​slowhigh)
• 24d67647cb9b4e0bbdcdec7f0c2086e8004e1572: feat(form): add custom string slice for form tag unmarshal (#3970) (#3971) (@​bruceNu1l)
• 8791c96960e719ff2f41e24163c5898656cee474: feat(fs): Export, test and document OnlyFilesFS (#3939) (@​joeig)
• 71496abe6836462e2ed70436b7d72ea2a3585417: feat(fs): Implement loading HTML from http.FileSystem (#4053) (@​sunshineplan)
• 3ac729dc4a497d360a23b9d7e766c622b3c99f51: feat(gin): support http3 using quic-go/quic-go (#3210) (@​thinkerou)
• 4621b7ac982335d9a74432e182dd2bfc6d841431: feat(router): add literal colon support (#1432) (#2857) (@​wssccc)
• dbd8a2515093ad47cadc5c1fface89861a0b765c: feat: added AbortWithStatusPureJSON() in Context (#4290) (@​ddevsr)
• 688a429d19d8c804447bb889d3635e2c31a5564d: feat: support custom json codec at runtime (#3391) (@​timandy)

Bug fixes

• 8fb3136664254d7c592127f00d52849caba18a67: Revert "fix(time): binding time with empty value (#4103)" (#4245) (@​appleboy)
• e737e3e267beb4dc3bab16cc8be59e3902d98a94: fix(binding): prevent duplicate decoding and add validation in decodeToml (#4193) (@​revevide)
• 4f339e6a35b163d31b30916b37f4176d385f41bd: fix(context): YAML judgment logic in Negotiate (#3966) (@​RedCrazyGhost)
• 36b0dede4b8c4a67d92c4107cebc5a068364321d: fix(context): check handler is nil (#3413) (@​hktalent)
• e0d46ded6cb6974d55a255ab122d1aa6ca0cd60e: fix(context): verify URL is Non-nil in initQueryCache() (#3969) (@​adrianosela)
• dd33ff793861cee3baa77d575ff319119c366f3a: fix(docs): missing go markdown codeblock (#4266) (@​vdusart)
• b38c59de7fef67400a1c98efeae700a689c45783: fix(errors): change Unwrap method receiver to value type (#4232) (@​OrkhanAlikhanov)
• 28e57f58b184b2305ace192e02496bb89f6fd8cb: fix(form): Set default value for form fields (#4047) (@​ahmadSaeedGoda)
• 626d55b0c02937645c21774cacc021713de88604: fix(gin): Do not panic when handling method not allowed on empty tree (#4003) (@​phsym)
• 7d147928ee232fce156ea7ce8ae6329e148aeb41: fix(gin): data race warning for gin mode (#1580) (@​kplachkov)
• c677ccc40a60386565dd0d755efacb85d153feca: fix(go): invalid Go toolchain version (#3961) (@​thinkerou)
• 3319038418656a268c889393cb2dd4224c4469ec: fix(readme): fix broken link to English documentation (#4222) (@​eduardo-ax)
• 674522db91d637d179c16c372d87756ea26fa089: fix(time): binding time with empty value (#4103) (@​ksw2000)
• ea53388e6ee4a6a0a1647b390c56eeed780e7e56: fix(tree): Keep panic infos consistent when wildcard type build faild (#4077) (@​kingcanfish)
• 8763f33c65f7df8be5b9fe7504ab7fcf20abb41d: fix: prevent middleware re-entry issue in HandleContext (#3987) (@​bound2)
• 7a1b655074c313f9491c83bb8ea164cdc4a9afe9: fix: sonic on arm64 (#4234) (@​yashgorana)
• 5826722a87cf5855fcc4b794cbef11612352771d: fix: version number discrepancy (#4299) (@​suwakei)

Enhancements

• 40725d85badd647870df6f9fa7a75ac76341f804: chore(bind): return 413 status code when error is http.MaxBytesError (#4227) (@​ItalyPaleAle)
• f875d8728306c2c2c6f504900ab08cd1d8c47f12: chore(context): test context initialization and handler logic (#4087) (@​appleboy)
• e7693e67c23005743502962d3bb9839a354d6688: chore(deps): bump actions/setup-go from 5 to 6 (#4351) (@​dependabot[bot])
• afa0c31d97e1b112ccfe7652957f7d8514580c72: chore(deps): bump github.com/gin-contrib/sse from 0.1.0 to 1.1.0 (#4216) (@​dependabot[bot])
• 255af882db4baf0ed6209f1a5471f1663c5d0060: chore(deps): bump github.com/go-playground/validator/v10 (#4208) (@​dependabot[bot])
• 545fd74379a0b167a918e38626ae5f7eb83fb243: chore(deps): bump github.com/go-playground/validator/v10 (#4289) (@​dependabot[bot])
• c3c8620a7fb4e09c7845feca4e8e8a8678a2685d: chore(deps): bump github.com/go-playground/validator/v10 from 10.20.0 to 10.22.1 (#4052) (@​dependabot[bot])
• cf32d2dcf8c7534f59727c5e213e45f2412c593a: chore(deps): bump github.com/pelletier/go-toml/v2 from 2.2.2 to 2.2.4 (#4212) (@​dependabot[bot])
• bb824731032856460aa3ffc23bd90e11bf7d5199: chore(deps): bump github.com/quic-go/quic-go from 0.48.2 to 0.50.1 (#4197) (@​dependabot[bot])
• 61c2b1c28f0c5a754330545e31f02cd6d6f7944e: chore(deps): bump github.com/quic-go/quic-go from 0.51.0 to 0.52.0 (#4250) (@​dependabot[bot])
• b7d6308bcc84066df79a047ae363a6120fe87808: chore(deps): bump github.com/quic-go/quic-go from 0.52.0 to 0.53.0 (#4281) (@​dependabot[bot])
• 077a2f39c85700ba0823f85ed29cec0c8f2cbdfc: chore(deps): bump github.com/quic-go/quic-go from 0.53.0 to 0.54.0 (#4328) (@​dependabot[bot])
• 46150257b3eec60e3e0bf1cee7c03439099aef83: chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (#4347) (@​dependabot[bot])
• a6287825c95821a378a34f8a5c9139ea1f6ebd96: chore(deps): bump github.com/ugorji/go/codec from 1.2.12 to 1.3.0 (#4268) (@​dependabot[bot])
• cc4e11438cd6c0bcc632fe3492d3817dfa21c337: chore(deps): bump golang.org/x/net from 0.25.0 to 0.27.0 (#4013) (@​dependabot[bot])

... (truncated)

Changelog

Sourced from github.com/gin-gonic/gin's changelog.

Gin v1.11.0

Features

• feat(gin): Experimental support for HTTP/3 using quic-go/quic-go (#3210)
• feat(form): add array collection format in form binding (#3986), add custom string slice for form tag unmarshal (#3970)
• feat(binding): add BindPlain (#3904)
• feat(fs): Export, test and document OnlyFilesFS (#3939)
• feat(binding): add support for unixMilli and unixMicro (#4190)
• feat(form): Support default values for collections in form binding (#4048)
• feat(context): GetXxx added support for more go native types (#3633)

Enhancements

• perf(context): optimize getMapFromFormData performance (#4339)
• refactor(tree): replace string(/) with "/" in node.insertChild (#4354)
• refactor(render): remove headers parameter from writeHeader (#4353)
• refactor(context): simplify "GetType()" functions (#4080)
• refactor(slice): simplify SliceValidationError Error method (#3910)
• refactor(context):Avoid using filepath.Dir twice in SaveUploadedFile (#4181)
• refactor(context): refactor context handling and improve test robustness (#4066)
• refactor(binding): use strings.Cut to replace strings.Index (#3522)
• refactor(context): add an optional permission parameter to SaveUploadedFile (#4068)
• refactor(context): verify URL is Non-nil in initQueryCache() (#3969)
• refactor(context): YAML judgment logic in Negotiate (#3966)
• tree: replace the self-defined 'min' to official one (#3975)
• context: Remove redundant filepath.Dir usage (#4181)

Bug Fixes

• fix: prevent middleware re-entry issue in HandleContext (#3987)
• fix(binding): prevent duplicate decoding and add validation in decodeToml (#4193)
• fix(gin): Do not panic when handling method not allowed on empty tree (#4003)
• fix(gin): data race warning for gin mode (#1580)
• fix(context): verify URL is Non-nil in initQueryCache() (#3969)
• fix(context): YAML judgment logic in Negotiate (#3966)
• fix(context): check handler is nil (#3413)
• fix(readme): fix broken link to English documentation (#4222)
• fix(tree): Keep panic infos consistent when wildcard type build faild (#4077)

Build process updates / CI

• ci: integrate Trivy vulnerability scanning into CI workflow (#4359)
• ci: support Go 1.25 in CI/CD (#4341)
• build(deps): upgrade github.com/bytedance/sonic from v1.13.2 to v1.14.0 (#4342)
• ci: add Go version 1.24 to GitHub Actions (#4154)
• build: update Gin minimum Go version to 1.21 (#3960)
• ci(lint): enable new linters (testifylint, usestdlibvars, perfsprint, etc.) (#4010, #4091, #4090)
• ci(lint): update workflows and improve test request consistency (#4126)

... (truncated)

Commits

• 6ad6205 docs(changelog): upgrade Gin to v1.11.0 and add release notes (#4361)
• 7858527 docs(changelog): update release notes for Gin v1.10.1 (#4360)
• cb000f5 ci: integrate Trivy vulnerability scanning into CI workflow (#4359)
• 2119046 ci: support Go 1.25 (#4341)
• da372fc build(deps): upgrade github.com/bytedance/sonic from v1.13.2 to v1.14.0 (#4342)
• e198f6e refactor(render): remove headers parameter from writeHeader (#4353)
• cca98d2 chore(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9 (#4356)
• 9b1e353 refactor(tree): replace string(/) with "/" in node.insertChild (#4354)
• f9bd00a perf(context): optimize getMapFromFormData performance (#4339)
• 28172fa chore(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.8 (#4346)
• Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.9.1 to 1.10.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.1

🐛 Fix

• chore: upgrade pflags v1.0.9 by @​jpmcb in spf13/cobra#2305

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

• Bump pflag to 1.0.8 by @​tomasaschan in spf13/cobra#2303

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

• If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
• or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

More details can be found here: spf13/cobra#2303

✨ Features

• Flow context to command in SetHelpFunc by @​Frassle in spf13/cobra#2241
• The default ShellCompDirective can be customized for a command and its subcommands by @​albers in spf13/cobra#2238

🐛 Fix

• Upgrade golangci-lint to v2, address findings by @​scop in spf13/cobra#2279

🪠 Testing

• Test with Go 1.24 by @​harryzcy in spf13/cobra#2236
• chore: Rm GitHub Action PR size labeler by @​jpmcb in spf13/cobra#2256

📝 Docs

• Remove traling curlybrace by @​yedayak in spf13/cobra#2237
• Update command.go by @​styee in spf13/cobra#2248
• feat: Add security policy by @​jpmcb in spf13/cobra#2253
• Update Readme (Warp) by @​ericdachen in spf13/cobra#2267
• Add Periscope to the list of projects using Cobra by @​anishathalye in spf13/cobra#2299

New Contributors

• @​harryzcy made their first contribution in spf13/cobra#2236
• @​yedayak made their first contribution in spf13/cobra#2237
• @​Frassle made their first contribution in spf13/cobra#2241

... (truncated)

Commits

• 7da941c chore: Bump pflag to v1.0.9 (#2305)
• 51d6751 Bump pflag to 1.0.8 (#2303)
• 3f3b818 Update README.md with new logo
• dcaf42e Add Periscope to the list of projects using Cobra (#2299)
• 6dec1ae The default ShellCompDirective can be customized for a command and its subcom...
• c8289c1 chore(golangci-lint): add some exclusion presets
• 4af7b64 refactor: apply golangci-lint autofixes, work around false positives
• 75790e4 chore(golangci-lint): upgrade to v2
• db3ddb5 Adding sponsorship to README.md
• 67171d6 putting sponsorship below header
• Additional commits viewable in compare view

Updates github.com/spf13/viper from 1.20.1 to 1.21.0

Release notes

Sourced from github.com/spf13/viper's releases.

v1.21.0

What's Changed

Enhancements 🚀

• Add support for flags pflag.BoolSlice, pflag.UintSlice and pflag.Float64Slice by @​nmvalera in spf13/viper#2015
• feat: use maintained yaml library by @​sagikazarmark in spf13/viper#2040

Bug Fixes 🐛

• fix(config): get config type from v.configType or config file ext by @​GuillaumeBAECHLER in spf13/viper#2003
• fix: config type check when loading any config by @​sagikazarmark in spf13/viper#2007

Dependency Updates ⬆️

• Update dependencies by @​sagikazarmark in spf13/viper#1993
• build(deps): bump github.com/spf13/cast from 1.7.1 to 1.8.0 by @​dependabot[bot] in spf13/viper#2017
• build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.3 to 2.2.4 by @​dependabot[bot] in spf13/viper#2013
• build(deps): bump github.com/sagikazarmark/locafero from 0.8.0 to 0.9.0 by @​dependabot[bot] in spf13/viper#2008
• build(deps): bump golang.org/x/net from 0.37.0 to 0.38.0 in /remote by @​dependabot[bot] in spf13/viper#2016
• build(deps): bump github.com/spf13/cast from 1.8.0 to 1.9.2 by @​dependabot[bot] in spf13/viper#2020
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.2.1 to 2.3.0 by @​dependabot[bot] in spf13/viper#2028
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 by @​dependabot[bot] in spf13/viper#2035
• build(deps): bump github.com/spf13/pflag from 1.0.6 to 1.0.7 by @​dependabot[bot] in spf13/viper#2036
• build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0 by @​dependabot[bot] in spf13/viper#2012
• build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by @​dependabot[bot] in spf13/viper#2052
• build(deps): bump github.com/go-viper/mapstructure/v2 from 2.3.0 to 2.4.0 in /remote by @​dependabot[bot] in spf13/viper#2048
• build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10 by @​dependabot[bot] in spf13/viper#2056
• chore: update dependencies by @​sagikazarmark in spf13/viper#2057

Other Changes

• Update update guide with mapstructure package replacement. by @​aldas in spf13/viper#2004
• refactor: use the built-in max/min to simplify the code by @​yingshanghuangqiao in spf13/viper#2029

New Contributors

• @​GuillaumeBAECHLER made their first contribution in spf13/viper#2003
• @​aldas made their first contribution in spf13/viper#2004
• @​nmvalera made their first contribution in spf13/viper#2015
• @​yingshanghuangqiao made their first contribution in spf13/viper#2029
• @​ccoVeille made their first contribution in spf13/viper#2046
• @​spacez320 made their first contribution in spf13/viper#2050

Full Changelog: spf13/viper@v1.20.0...v1.21.0

Commits

• 394040c ci: build on go 1.25
• 812f548 chore: update dependencies
• d5271ef ci: update stale workflow
• dff303b feat: add a stale issue scheduled action
• 1287976 build(deps): bump github.com/spf13/pflag from 1.0.7 to 1.0.10
• 38932cd build(deps): bump github.com/go-viper/mapstructure/v2 in /remote
• 6d014be build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1
• b74c7ee build(deps): bump github.com/fsnotify/fsnotify from 1.8.0 to 1.9.0
• acd05e1 fix: linting issues
• ae5a8e2 ci: upgrade golangci-lint
• Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.41.0 to 0.42.0

Commits

• 5307a0c go.mod: update golang.org/x dependencies
• 9d77937 acme: include order problem in OrderError
• 8f580de ssh: remove Go 1.24 build tag for ML-KEM kex
• a4d1237 ssh/knownhosts: improve IPv6 support in Normalize
• b8d8dae curve25519: include potential fips140=only error in panic message
• f5a2eab ssh: use curve25519.X25519 instead of curve25519.ScalarMult
• 44ecf3a all: upgrade go directive to at least 1.24.0 [generated]
• See full diff in compare view

Updates github.com/docker/docker from 28.3.3+incompatible to 28.4.0+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v28.4.0

28.4.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.4.0 milestone
• moby/moby, 28.4.0 milestone
• Deprecated and removed features, see Deprecated Features.
• Changes to the Engine API, see API version history.

New

• Allow Docker CLI to set the GODEBUG environment variable when the key-value pair ("GODEBUG":"...") exists inside the docker context metadata. docker/cli#6399

Bug fixes and enhancements

• Add shell completion for docker pull and docker image pull. docker/cli#6420
• Fix a regression in v28.3.3 that could cause a panic on docker push if the client did not send an X-Registry-Auth header. moby/moby#50738
• Windows: Potentially fix an issue with "access denied" error when pulling images. moby/moby#50871
• containerd image store: Fix docker history failing with snapshot X does not exist when calling on a non-native image that was built locally. moby/moby#50875
• containerd image store: Fix docker image prune to emit correct untag and delete events and list only the deleted images root digests instead of every blob. moby/moby#50837
• Remove interactive login prompt from docker push and docker pull after a failure caused by missing authentication. docker/cli#6256

Packaging updates

• Update BuildKit to v0.24.0. moby#50888
• Update Go runtime to 1.24.7. moby/moby#50889, docker/cli#6422
• Update runc to v1.3.0. moby/moby#50699
• Update containerd (static binaries only) to v1.7.28. moby/moby#50700

Networking

• Fix an issue that could cause slow container restart on live-restore. moby/moby#50829

API

• Update deprecation message for AuthConfig.Email field. moby/moby#50797

Go SDK

• Deprecate profiles package which got migrated to github.com/moby/profiles. moby/moby#50513

Deprecations

• Deprecate special handling for quoted values for the --tlscacert, --tlscert, and --tlskey command-line flags. docker/cli#6291
• Mark legacy links env vars (DOCKER_KEEP_DEPRECATED_LEGACY_LINKS_ENV_VARS) as deprecated in v28.4 and set for removal in v30.0. docker/cli#6309
• Go-SDK: Deprecate field NetworkSettingsBase.Bridge, struct NetworkSettingsBase, all the fields of DefaultNetworkSettings, and struct DefaultNetworkSettings. moby/moby#50839
• Go-SDK: api/types: build.CacheDiskUsage, container.DiskUsage, images.DiskUsage and volumes.DiskUsage are now deprecated and will be removed in the next major release. moby/moby#50768
• Go-SDK: cli-plugins/manager: deprecate ReexecEnvvar. docker/cli#6411
• Go-SDK: cli-plugins/manager: deprecate annotation aliases (CommandAnnotationPlugin, CommandAnnotationPluginVendor, CommandAnnotationPluginVersion, CommandAnnotationPluginInvalid, CommandAnnotationPluginCommandPath) in favor of their equivalent in cli-plugins/manager/metadata. docker/cli#6298

... (truncated)

Commits

• 249d679 Merge pull request #50890 from vvoland/50889-28.x
• d664cfe update to go1.24.7
• b384cd2 Merge pull request #50888 from vvoland/50885-28.x
• c1ce88e vendor: update buildkit to v0.24.0
• 4a34e8e Merge pull request #50875 from vvoland/50867-28.x
• cfa70d0 gha/arm64: Setup qemu
• d70382e integration/internal: Print Buildkit logs
• 687b206 c8d/history: Fix non-native platforms
• e4224f8 integration/internal: Handle Buildkit in GetImageIDFromBody
• 5d5332b Merge pull request #50871 from vvoland/50870-28.x
• Additional commits viewable in compare view

Updates github.com/go-ldap/ldap/v3 from 3.4.11 to 3.4.12

Release notes

Sourced from github.com/go-ldap/ldap/v3's releases.

v3.4.12

What's New

• feat: add Github Issue templates by @​cpuschma in go-ldap/ldap#558
• feat: add initial support for custom entry unmarshaler by @​cpuschma in go-ldap/ldap#557
• Added all Microsoft LDAP OIDs by @​p0dalirius in go-ldap/ldap#559
• [enhancement] Added missing LDAP control ControlMicrosoftSDFlags to control.go by @​p0dalirius in go-ldap/ldap#560
• feat: Add local directory server for tests by @​cpuschma in go-ldap/ldap#567
• Add RFC 5929 channel binding support for SSPI client by @​Chrizpy in go-ldap/ldap#565

What's Changed

• Svace static analyzer fix by @​artemseleznev in go-ldap/ldap#562
• test: improve test coverage by @​cpuschma in go-ldap/ldap#568

New Contributors

• @​artemseleznev made their first contribution in go-ldap/ldap#562
• @​Chrizpy made their first contribution in go-ldap/ldap#565

Full Changelog: go-ldap/ldap@v3.4.11...v3.4.12

Commits

• 97082cc test: improve test coverage (#568)
• ad3fa74 Add RFC 5929 channel binding support for SSPI client (#565)
• 9feb1c8 feat: add local directory server for tests through containers (#567)
• 82fef14 Svace static analyzer fix (#562)
• 06d7bd9 Added missing LDAP control ControlMicrosoftSDFlags to control.go (#560)
• bab0be5 Added all Microsoft LDAP OIDs (#559)
• 109b1fc feat: add support for custom entry unmarshaler (#557)
• 0c1c6ca feat: add Github Issue templates (#558)
• 1747c00 Create SECURITY.md
• See full diff in compare view

Updates golang.org/x/oauth2 from 0.30.0 to 0.31.0

Commits

• 014cf77 all: upgrade go directive to at least 1.24.0 [generated]
• 3c76ce5 endpoints: correct Naver OAuth2 endpoint URLs
• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.