Skip to content

build(deps): bump the minor-and-patch group across 1 directory with 5 updates#18

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/minor-and-patch-e81620699d
Closed

build(deps): bump the minor-and-patch group across 1 directory with 5 updates#18
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/minor-and-patch-e81620699d

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 28, 2026
edited
Loading

Bumps the minor-and-patch group with 3 updates in the / directory: github.com/go-webauthn/webauthn, github.com/testcontainers/testcontainers-go/modules/postgres and golang.org/x/oauth2.

Updates github.com/go-webauthn/webauthn from 0.15.0 to 0.16.1

Release notes

Sourced from github.com/go-webauthn/webauthn's releases.

v0.16.1

v0.16.1 (2026-03-12)

Bug Fixes

v0.16.0

0.16.0 (2026-03-01)

Bug Fixes

Features

Commits
  • dbe10a2 build(deps): update module github.com/go-webauthn/x to v0.2.2 (#618)
  • 18ca901 fix(webauthncose): validate keys earlier (#615)
  • d45f1bb build(deps): update step-security/harden-runner action to v2.15.1 (#616)
  • 70195d2 build(deps): update actions/dependency-review-action action to v4.9.0 (#614)
  • 79cb507 build(deps): update github/codeql-action action to v4.32.6 (#613)
  • bfefda6 build(deps): update dependency go to v1.26.1 (#617)
  • 68db4d4 feat(webauthncose): allow ber integers in ecdsa sigs (#593)
  • 16f192f build(deps): update actions/upload-artifact action to v7 (#612)
  • 24f2869 build(deps): update actions/setup-go action to v6.3.0 (#611)
  • 76502c0 build(deps): update step-security/harden-runner action to v2.15.0 (#610)
  • Additional commits viewable in compare view

Updates github.com/testcontainers/testcontainers-go/modules/postgres from 0.40.0 to 0.41.0

Release notes

Sourced from github.com/testcontainers/testcontainers-go/modules/postgres's releases.

v0.41.0

What's Changed

🚀 Features

🐛 Bug Fixes

📖 Documentation

  • docs(metrics): automate usage metrics collection and publish it in the docs site (#3495) @​mdelapenya

🧹 Housekeeping

📦 Dependency updates

  • fix: update compose-replace Makefile target to use compose/v5 (#3590) @​mdelapenya
  • chore(deps): bump atomicjar/testcontainers-cloud-setup-action from 1.3.0 to 1.4.0 (#3559) @dependabot[bot]
  • chore(deps): bump golang.org/x/text from 0.14.0 to 0.34.0 in /modulegen (#3582) @dependabot[bot]
  • chore(deps): bump mkdocs-codeinclude-plugin from 0.2.1 to 0.3.1 (#3579) @dependabot[bot]
  • chore(deps): bump golang.org/x/mod from 0.16.0 to 0.33.0 in /modulegen (#3583) @dependabot[bot]
  • chore(deps): bump github.com/aerospike/aerospike-client-go/v8 from 8.2.0 to 8.6.0 in /modules/aerospike (#3584) @dependabot[bot]

... (truncated)

Commits
  • 2ea97c8 chore: use new version (v0.41.0) in modules and examples
  • 9a663f7 fix: update compose-replace Makefile target to use compose/v5 (#3590)
  • 10481c2 chore(deps): bump atomicjar/testcontainers-cloud-setup-action (#3559)
  • bdb12dd chore(deps): bump golang.org/x/text from 0.14.0 to 0.34.0 in /modulegen (#3582)
  • 5bd7f07 chore(deps): bump mkdocs-codeinclude-plugin from 0.2.1 to 0.3.1 (#3579)
  • c9ccfc5 chore(deps): bump golang.org/x/mod from 0.16.0 to 0.33.0 in /modulegen (#3583)
  • 21ec740 chore(deps): bump github.com/aerospike/aerospike-client-go/v8 from 8.2.0 to 8...
  • fb47b82 chore(deps): bump golang.org/x/mod in /modules/localstack (#3587)
  • 6686e31 chore(deps): bump golang.org/x/mod in /modules/elasticsearch (#3585)
  • 0656548 chore(deps): bump golang.org/x/mod in /modules/redpanda (#3588)
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.48.0 to 0.49.0

Commits
  • 982eaa6 go.mod: update golang.org/x dependencies
  • 159944f ssh,acme: clean up tautological/impossible nil conditions
  • a408498 acme: only require prompt if server has terms of service
  • cab0f71 all: upgrade go directive to at least 1.25.0 [generated]
  • 2f26647 x509roots/fallback: update bundle
  • See full diff in compare view

Updates golang.org/x/oauth2 from 0.35.0 to 0.36.0

Commits
  • 4d954e6 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.3.1

What's Changed

🔐 Features

👒 Dependencies

New Contributors

Full Changelog: golang-jwt/jwt@v5.3.0...v5.3.1

Commits
  • 7ceae61 Add release.yml for changelog configuration
  • dce8e4d Set token.Signature in ParseUnverified (#414)
  • 8889e20 Save signature to Token struct after successful signing (#417)
  • d237f82 ci: update github-actions schedule interval to monthly
  • d8dce95 Bump crate-ci/typos from 1.41.0 to 1.42.1 (#492)
  • e931803 Bump crate-ci/typos from 1.40.0 to 1.41.0 (#490)
  • e6a0afa Bump actions/checkout from 5 to 6 (#487)
  • 9f85c9e Bump crate-ci/typos from 1.39.0 to 1.40.0 (#488)
  • 60a8669 Bump actions/setup-go from 5 to 6 (#469)
  • 76f5828 Remove misleading ParserOptions documentation (#484)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the minor-and-patch group across 1 directory with 5…
5fd6d90 
… updates

Bumps the minor-and-patch group with 3 updates in the / directory: [github.com/go-webauthn/webauthn](https://github.com/go-webauthn/webauthn), [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) and [golang.org/x/oauth2](https://github.com/golang/oauth2).


Updates `github.com/go-webauthn/webauthn` from 0.15.0 to 0.16.1
- [Release notes](https://github.com/go-webauthn/webauthn/releases)
- [Commits](go-webauthn/webauthn@v0.15.0...v0.16.1)

Updates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.40.0 to 0.41.0
- [Release notes](https://github.com/testcontainers/testcontainers-go/releases)
- [Commits](testcontainers/testcontainers-go@v0.40.0...v0.41.0)

Updates `golang.org/x/crypto` from 0.48.0 to 0.49.0
- [Commits](golang/crypto@v0.48.0...v0.49.0)

Updates `golang.org/x/oauth2` from 0.35.0 to 0.36.0
- [Commits](golang/oauth2@v0.35.0...v0.36.0)

Updates `github.com/golang-jwt/jwt/v5` from 5.3.0 to 5.3.1
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Commits](golang-jwt/jwt@v5.3.0...v5.3.1)

---
updated-dependencies:
- dependency-name: github.com/go-webauthn/webauthn
  dependency-version: 0.16.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: github.com/testcontainers/testcontainers-go/modules/postgres
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: golang.org/x/crypto
  dependency-version: 0.49.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: github.com/golang-jwt/jwt/v5
  dependency-version: 5.3.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Mar 28, 2026
@vercel
Copy link
Copy Markdown

vercel bot commented Mar 28, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Actions Updated (UTC)
authsome Ready Ready Preview, Comment Mar 28, 2026 11:08pm

Request Review

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Mar 29, 2026

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Mar 29, 2026
@dependabot dependabot bot deleted the dependabot/go_modules/minor-and-patch-e81620699d branch March 29, 2026 18:56
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants