{"id":13857,"name":"hashicorp/vault","ecosystem":"docker","repository_url":null,"issues_count":56,"created_at":"2025-06-06T23:35:19.510Z","updated_at":"2025-06-06T23:35:19.510Z","purl":"pkg:docker/hashicorp/vault","metadata":{"id":9985526,"name":"hashicorp/vault","ecosystem":"docker","description":"Official vault docker images","homepage":null,"licenses":null,"normalized_licenses":[],"repository_url":null,"keywords_array":[],"namespace":"hashicorp","versions_count":186,"first_release_published_at":"2020-08-21T10:06:34.638Z","latest_release_published_at":"2025-05-29T23:03:48.118Z","latest_release_number":"1.19.5","last_synced_at":"2025-06-07T00:53:30.612Z","created_at":"2024-05-15T04:51:22.012Z","updated_at":"2025-06-07T00:53:30.612Z","registry_url":"https://hub.docker.com/r/hashicorp/vault","install_command":"docker pull hashicorp/vault","documentation_url":null,"metadata":{},"repo_metadata":{},"repo_metadata_updated_at":null,"dependent_packages_count":0,"downloads":162393388,"downloads_period":"total","dependent_repos_count":0,"rankings":{"downloads":0.03024380700658177,"dependent_repos_count":1.5364313507060277,"dependent_packages_count":0.0,"stargazers_count":null,"forks_count":null,"docker_downloads_count":null,"average":0.5222250525708698},"purl":"pkg:docker/hashicorp%2Fvault","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/docker/hashicorp/vault","docker_dependents_count":null,"docker_downloads_count":null,"usage_url":"https://repos.ecosyste.ms/usage/docker/hashicorp/vault","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/docker/hashicorp/vault/dependencies","status":null,"funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fvault/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fvault/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fvault/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages/hashicorp%2Fvault/related_packages","maintainers":[],"registry":{"name":"hub.docker.com","url":"https://hub.docker.com","ecosystem":"docker","default":true,"packages_count":1002007,"maintainers_count":0,"namespaces_count":411568,"keywords_count":1704,"github":"docker","metadata":{"api_url":"https://registry-1.docker.io","funded_packages_count":257},"icon_url":"https://github.com/docker.png","created_at":"2022-11-24T17:07:36.388Z","updated_at":"2025-06-07T05:40:29.049Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/hub.docker.com/namespaces"}},"unique_repositories_count":10,"unique_repositories_count_past_30_days":1,"recent_issues":[{"uuid":"4417355490","node_id":"PR_kwDOBvBYLs7aEo5h","number":1320,"state":"closed","title":"Bump the dependencies group across 16 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-11T00:54:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-11T00:53:16.000Z","updated_at":"2026-05-11T00:54:54.000Z","time_to_close":96,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":18,"packages":[{"name":"chromadb/chroma","old_version":"1.5.8","new_version":"1.5.9"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"cockroachdb/cockroach","old_version":"v26.1.2","new_version":"v26.1.4"},{"name":"elasticsearch","old_version":"9.3.3","new_version":"9.4.0"},{"name":"coreos/etcd","old_version":"v3.6.10","new_version":"v3.6.11"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"565.0.0-emulators","new_version":"567.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.52","new_version":"1.5.53"},{"name":"rancher/k3s","old_version":"v1.35.3-k3s1","new_version":"v1.36.0-k3s1"},{"name":"rancher/kubectl","old_version":"v1.35.2","new_version":"v1.36.0"},{"name":"kurrentplatform/kurrentdb","old_version":"26.0","new_version":"26.1"},{"name":"amazon/aws-cli","old_version":"2.34.32","new_version":"2.34.45"},{"name":"mysql","old_version":"9.6.0","new_version":"9.7.0"},{"name":"nats","old_version":"2.12.7-alpine","new_version":"2.14.0-alpine"},{"name":"neo4j","old_version":"5.26.24","new_version":"5.26.25"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"rabbitmq","old_version":"4.2.5-management-alpine","new_version":"4.3.0-management-alpine"},{"name":"redpandadata/redpanda","old_version":"v26.1.5","new_version":"v26.1.7"},{"name":"hashicorp/vault","old_version":"1.21.4","new_version":"2.0.0"},{"name":"semitechnologies/weaviate","old_version":"1.37.1","new_version":"1.37.2-9527357.arm64"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/cockroachdb directory: cockroachdb/cockroach.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 1 update in the /packages/modules/etcd directory: coreos/etcd.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 2 updates in the /packages/modules/k3s directory: rancher/k3s and rancher/kubectl.\nBumps the dependencies group with 1 update in the /packages/modules/kurrentdb directory: kurrentplatform/kurrentdb.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mysql directory: mysql.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/neo4j directory: neo4j.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/rabbitmq directory: rabbitmq.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\nBumps the dependencies group with 1 update in the /packages/modules/weaviate directory: semitechnologies/weaviate.\n\nUpdates `chromadb/chroma` from 1.5.8 to 1.5.9\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `cockroachdb/cockroach` from v26.1.2 to v26.1.4\n\nUpdates `elasticsearch` from 9.3.3 to 9.4.0\n\nUpdates `coreos/etcd` from v3.6.10 to v3.6.11\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 565.0.0-emulators to 567.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.52 to 1.5.53\n\nUpdates `rancher/k3s` from v1.35.3-k3s1 to v1.36.0-k3s1\n\nUpdates `rancher/kubectl` from v1.35.2 to v1.36.0\n\nUpdates `kurrentplatform/kurrentdb` from 26.0 to 26.1\n\nUpdates `amazon/aws-cli` from 2.34.32 to 2.34.45\n\nUpdates `mysql` from 9.6.0 to 9.7.0\n\nUpdates `nats` from 2.12.7-alpine to 2.14.0-alpine\n\nUpdates `neo4j` from 5.26.24 to 5.26.25\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `rabbitmq` from 4.2.5-management-alpine to 4.3.0-management-alpine\n\nUpdates `redpandadata/redpanda` from v26.1.5 to v26.1.7\n\nUpdates `hashicorp/vault` from 1.21.4 to 2.0.0\n\nUpdates `semitechnologies/weaviate` from 1.37.1 to 1.37.2-9527357.arm64\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1320","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1320","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1320/packages"},{"uuid":"4292476671","node_id":"PR_kwDOBvBYLs7TyUnq","number":1299,"state":"open","title":"Bump the dependencies group across 16 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T00:47:14.000Z","updated_at":"2026-04-20T00:47:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":18,"packages":[{"name":"arangodb","old_version":"3.12.8","new_version":"3.12.9.1"},{"name":"cassandra","old_version":"5.0.7","new_version":"5.0.8"},{"name":"chromadb/chroma","old_version":"1.5.5","new_version":"1.5.8"},{"name":"ollama/ollama","old_version":"0.20.2","new_version":"0.21.0"},{"name":"cockroachdb/cockroach","old_version":"v26.1.1","new_version":"v26.1.2"},{"name":"elasticsearch","old_version":"9.3.2","new_version":"9.3.3"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"563.0.0-emulators","new_version":"565.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.51","new_version":"1.5.52"},{"name":"amazon/aws-cli","old_version":"2.34.24","new_version":"2.34.32"},{"name":"mongo","old_version":"8.2.6","new_version":"8.2.7"},{"name":"nats","old_version":"2.12.6-alpine","new_version":"2.12.7-alpine"},{"name":"ollama/ollama","old_version":"0.20.2","new_version":"0.21.0"},{"name":"opensearchproject/opensearch","old_version":"3.5.0","new_version":"3.6.0"},{"name":"redpandadata/redpanda","old_version":"v26.1.2","new_version":"v26.1.5"},{"name":"adobe/s3mock","old_version":"4.12.2","new_version":"5.0.0"},{"name":"selenium/standalone-chrome","old_version":"145.0","new_version":"147.0"},{"name":"selenium/standalone-firefox","old_version":"147.0","new_version":"149.0"},{"name":"hashicorp/vault","old_version":"1.21.4","new_version":"2.0.0"},{"name":"semitechnologies/weaviate","old_version":"1.36.9","new_version":"1.37.1"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/arangodb directory: arangodb.\nBumps the dependencies group with 1 update in the /packages/modules/cassandra directory: cassandra.\nBumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/cockroachdb directory: cockroachdb/cockroach.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mongodb directory: mongo.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/opensearch directory: opensearchproject/opensearch.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/s3mock directory: adobe/s3mock.\nBumps the dependencies group with 2 updates in the /packages/modules/selenium directory: selenium/standalone-chrome and selenium/standalone-firefox.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\nBumps the dependencies group with 1 update in the /packages/modules/weaviate directory: semitechnologies/weaviate.\n\nUpdates `arangodb` from 3.12.8 to 3.12.9.1\n\nUpdates `cassandra` from 5.0.7 to 5.0.8\n\nUpdates `chromadb/chroma` from 1.5.5 to 1.5.8\n\nUpdates `ollama/ollama` from 0.20.2 to 0.21.0\n\nUpdates `cockroachdb/cockroach` from v26.1.1 to v26.1.2\n\nUpdates `elasticsearch` from 9.3.2 to 9.3.3\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 563.0.0-emulators to 565.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.51 to 1.5.52\n\nUpdates `amazon/aws-cli` from 2.34.24 to 2.34.32\n\nUpdates `mongo` from 8.2.6 to 8.2.7\n\nUpdates `nats` from 2.12.6-alpine to 2.12.7-alpine\n\nUpdates `ollama/ollama` from 0.20.2 to 0.21.0\n\nUpdates `opensearchproject/opensearch` from 3.5.0 to 3.6.0\n\nUpdates `redpandadata/redpanda` from v26.1.2 to v26.1.5\n\nUpdates `adobe/s3mock` from 4.12.2 to 5.0.0\n\nUpdates `selenium/standalone-chrome` from 145.0 to 147.0\n\nUpdates `selenium/standalone-firefox` from 147.0 to 149.0\n\nUpdates `hashicorp/vault` from 1.21.4 to 2.0.0\n\nUpdates `semitechnologies/weaviate` from 1.36.9 to 1.37.1\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1299","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1299","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1299/packages"},{"uuid":"3883436992","node_id":"PR_kwDOBvBYLs7AyRye","number":1218,"state":"closed","title":"Bump the dependencies group across 4 directories with 6 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-02-09T00:46:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-02T00:49:38.000Z","updated_at":"2026-02-09T00:46:22.000Z","time_to_close":604602,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":6,"packages":[{"name":"couchbase/server","old_version":"community-7.0.2","new_version":"community-8.0.0"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"550.0.0-emulators","new_version":"554.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.46","new_version":"1.5.47"},{"name":"localstack/localstack","old_version":"4.12.0","new_version":"4.13.0"},{"name":"amazon/aws-cli","old_version":"2.32.28","new_version":"2.33.12"},{"name":"hashicorp/vault","old_version":"1.21.1","new_version":"1.21.2"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/couchbase directory: couchbase/server.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 2 updates in the /packages/modules/localstack directory: localstack/localstack and amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\n\nUpdates `couchbase/server` from community-7.0.2 to community-8.0.0\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 550.0.0-emulators to 554.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.46 to 1.5.47\n\nUpdates `localstack/localstack` from 4.12.0 to 4.13.0\n\nUpdates `amazon/aws-cli` from 2.32.28 to 2.33.12\n\nUpdates `hashicorp/vault` from 1.21.1 to 1.21.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1218","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1218","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1218/packages"},{"uuid":"3656828411","node_id":"PR_kwDON79JMM61F1bY","number":118,"state":"closed","title":"fix(deps): bump hashicorp/vault from 1.20.3 to 1.21.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T02:58:51.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T02:19:54.000Z","updated_at":"2026-01-12T02:58:52.000Z","time_to_close":4235937,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.21.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.3 to 1.21.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.3\u0026new-version=1.21.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/soerenschneider/scripts/pull/118","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/soerenschneider%2Fscripts/issues/118","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/118/packages"},{"uuid":"3656685183","node_id":"PR_kwDOBvBYLs61FWyG","number":1187,"state":"open","title":"Bump the dependencies group across 21 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-11-24T00:39:04.000Z","updated_at":"2025-11-24T00:40:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":23,"packages":[{"name":"arangodb","old_version":"3.12.6","new_version":"3.12.6.1"},{"name":"chromadb/chroma","old_version":"1.3.3","new_version":"1.3.5"},{"name":"ollama/ollama","old_version":"0.12.10","new_version":"0.13.0"},{"name":"cockroachdb/cockroach","old_version":"v25.3.4","new_version":"v25.4.0"},{"name":"couchbase/server","old_version":"community-7.0.2","new_version":"community-8.0.0"},{"name":"elasticsearch","old_version":"9.2.0","new_version":"9.2.1"},{"name":"coreos/etcd","old_version":"v3.6.5","new_version":"v3.6.6"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"546.0.0-emulators","new_version":"548.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.43","new_version":"1.5.45"},{"name":"hivemq/hivemq-ce","old_version":"2025.4","new_version":"2025.5"},{"name":"rancher/k3s","old_version":"v1.34.1-k3s1","new_version":"v1.34.2-k3s1"},{"name":"rancher/kubectl","old_version":"v1.34.1","new_version":"v1.34.2"},{"name":"amazon/aws-cli","old_version":"2.31.32","new_version":"2.32.3"},{"name":"mariadb","old_version":"12.0.2","new_version":"12.1.2"},{"name":"mongo","old_version":"8.2.1","new_version":"8.2.2"},{"name":"nats","old_version":"2.12.1-alpine","new_version":"2.12.2-alpine"},{"name":"neo4j","old_version":"5.26.16","new_version":"5.26.17"},{"name":"ollama/ollama","old_version":"0.12.10","new_version":"0.13.0"},{"name":"postgres","old_version":"18.0-alpine","new_version":"18.1-alpine"},{"name":"qdrant/qdrant","old_version":"v1.15.5","new_version":"v1.16.0"},{"name":"rabbitmq","old_version":"4.2.0-management-alpine","new_version":"4.2.1-management-alpine"},{"name":"redis","old_version":"8.2","new_version":"8.4"},{"name":"redpandadata/redpanda","old_version":"v25.2.10","new_version":"v25.3.1"},{"name":"hashicorp/vault","old_version":"1.21.0","new_version":"1.21.1"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/arangodb directory: arangodb.\nBumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/cockroachdb directory: cockroachdb/cockroach.\nBumps the dependencies group with 1 update in the /packages/modules/couchbase directory: couchbase/server.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 1 update in the /packages/modules/etcd directory: coreos/etcd.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 1 update in the /packages/modules/hivemq directory: hivemq/hivemq-ce.\nBumps the dependencies group with 2 updates in the /packages/modules/k3s directory: rancher/k3s and rancher/kubectl.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mariadb directory: mariadb.\nBumps the dependencies group with 1 update in the /packages/modules/mongodb directory: mongo.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/neo4j directory: neo4j.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/postgresql directory: postgres.\nBumps the dependencies group with 1 update in the /packages/modules/qdrant directory: qdrant/qdrant.\nBumps the dependencies group with 1 update in the /packages/modules/rabbitmq directory: rabbitmq.\nBumps the dependencies group with 1 update in the /packages/modules/redis directory: redis.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\n\nUpdates `arangodb` from 3.12.6 to 3.12.6.1\n\nUpdates `chromadb/chroma` from 1.3.3 to 1.3.5\n\nUpdates `ollama/ollama` from 0.12.10 to 0.13.0\n\nUpdates `cockroachdb/cockroach` from v25.3.4 to v25.4.0\n\nUpdates `couchbase/server` from community-7.0.2 to community-8.0.0\n\nUpdates `elasticsearch` from 9.2.0 to 9.2.1\n\nUpdates `coreos/etcd` from v3.6.5 to v3.6.6\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 546.0.0-emulators to 548.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.43 to 1.5.45\n\nUpdates `hivemq/hivemq-ce` from 2025.4 to 2025.5\n\nUpdates `rancher/k3s` from v1.34.1-k3s1 to v1.34.2-k3s1\n\nUpdates `rancher/kubectl` from v1.34.1 to v1.34.2\n\nUpdates `amazon/aws-cli` from 2.31.32 to 2.32.3\n\nUpdates `mariadb` from 12.0.2 to 12.1.2\n\nUpdates `mongo` from 8.2.1 to 8.2.2\n\nUpdates `nats` from 2.12.1-alpine to 2.12.2-alpine\n\nUpdates `neo4j` from 5.26.16 to 5.26.17\n\nUpdates `ollama/ollama` from 0.12.10 to 0.13.0\n\nUpdates `postgres` from 18.0-alpine to 18.1-alpine\n\nUpdates `qdrant/qdrant` from v1.15.5 to v1.16.0\n\nUpdates `rabbitmq` from 4.2.0-management-alpine to 4.2.1-management-alpine\n\nUpdates `redis` from 8.2 to 8.4\n\nUpdates `redpandadata/redpanda` from v25.2.10 to v25.3.1\n\nUpdates `hashicorp/vault` from 1.21.0 to 1.21.1\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1187","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1187","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1187/packages"},{"uuid":"3645270974","node_id":"PR_kwDOF3eXvs60fQ2p","number":10553,"state":"closed","title":"Bump hashicorp/vault from 1.21.0 to 1.21.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-20T11:04:02.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-20T03:17:12.000Z","updated_at":"2025-11-20T11:04:03.000Z","time_to_close":28010,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.21.0","new_version":"1.21.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.21.0 to 1.21.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.21.0\u0026new-version=1.21.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10553","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10553","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10553/packages"},{"uuid":"3605685865","node_id":"PR_kwDOBvBYLs6yaVRW","number":1177,"state":"open","title":"Bump the dependencies group across 28 directories with 31 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-11-10T00:32:29.000Z","updated_at":"2025-11-10T00:33:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":31,"packages":[{"name":"arangodb","old_version":"3.12.5","new_version":"3.12.6"},{"name":"cassandra","old_version":"5.0.4","new_version":"5.0.6"},{"name":"chromadb/chroma","old_version":"1.0.15","new_version":"1.3.3"},{"name":"ollama/ollama","old_version":"0.9.6","new_version":"0.12.10"},{"name":"clickhouse/clickhouse-server","old_version":"25.7-alpine","new_version":"25.10-alpine"},{"name":"couchbase/server","old_version":"community-7.0.2","new_version":"community-8.0.0"},{"name":"elasticsearch","old_version":"9.1.0","new_version":"9.2.0"},{"name":"coreos/etcd","old_version":"v3.6.4","new_version":"v3.6.5"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"532.0.0-emulators","new_version":"546.0.0-emulators"},{"name":"fsouza/fake-gcs-server","old_version":"1.52.2","new_version":"1.52.3"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.38","new_version":"1.5.43"},{"name":"rancher/k3s","old_version":"v1.33.3-k3s1","new_version":"v1.34.1-k3s1"},{"name":"rancher/kubectl","old_version":"v1.31.2","new_version":"v1.34.1"},{"name":"confluentinc/cp-kafka","old_version":"8.0.0","new_version":"8.1.0"},{"name":"kurrentplatform/kurrentdb","old_version":"25.0","new_version":"25.1"},{"name":"amazon/aws-cli","old_version":"2.31.28","new_version":"2.31.32"},{"name":"mariadb","old_version":"11.8.2","new_version":"12.0.2"},{"name":"mongo","old_version":"8.0.12","new_version":"8.2.1"},{"name":"mysql","old_version":"9.4.0","new_version":"9.5.0"},{"name":"nats","old_version":"2.11.6-alpine","new_version":"2.12.1-alpine"},{"name":"neo4j","old_version":"5.26.9","new_version":"5.26.16"},{"name":"ollama/ollama","old_version":"0.12.9","new_version":"0.12.10"},{"name":"opensearchproject/opensearch","old_version":"3.1.0","new_version":"3.3.2"},{"name":"postgres","old_version":"17.5-alpine","new_version":"18.0-alpine"},{"name":"qdrant/qdrant","old_version":"v1.15.1","new_version":"v1.15.5"},{"name":"rabbitmq","old_version":"4.1.2-management-alpine","new_version":"4.2.0-management-alpine"},{"name":"redis","old_version":"8.0","new_version":"8.2"},{"name":"redpandadata/redpanda","old_version":"v25.2.1","new_version":"v25.2.10"},{"name":"adobe/s3mock","old_version":"4.9.1","new_version":"4.10.0"},{"name":"valkey/valkey","old_version":"8.1","new_version":"9.0"},{"name":"hashicorp/vault","old_version":"1.20.1","new_version":"1.21.0"},{"name":"semitechnologies/weaviate","old_version":"1.31.8","new_version":"1.34.0"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/arangodb directory: arangodb.\nBumps the dependencies group with 1 update in the /packages/modules/cassandra directory: cassandra.\nBumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/clickhouse directory: clickhouse/clickhouse-server.\nBumps the dependencies group with 1 update in the /packages/modules/couchbase directory: couchbase/server.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 1 update in the /packages/modules/etcd directory: coreos/etcd.\nBumps the dependencies group with 3 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli, fsouza/fake-gcs-server and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 2 updates in the /packages/modules/k3s directory: rancher/k3s and rancher/kubectl.\nBumps the dependencies group with 1 update in the /packages/modules/kafka directory: confluentinc/cp-kafka.\nBumps the dependencies group with 1 update in the /packages/modules/kurrentdb directory: kurrentplatform/kurrentdb.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mariadb directory: mariadb.\nBumps the dependencies group with 1 update in the /packages/modules/mongodb directory: mongo.\nBumps the dependencies group with 1 update in the /packages/modules/mysql directory: mysql.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/neo4j directory: neo4j.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/opensearch directory: opensearchproject/opensearch.\nBumps the dependencies group with 1 update in the /packages/modules/postgresql directory: postgres.\nBumps the dependencies group with 1 update in the /packages/modules/qdrant directory: qdrant/qdrant.\nBumps the dependencies group with 1 update in the /packages/modules/rabbitmq directory: rabbitmq.\nBumps the dependencies group with 1 update in the /packages/modules/redis directory: redis.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/s3mock directory: adobe/s3mock.\nBumps the dependencies group with 1 update in the /packages/modules/valkey directory: valkey/valkey.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\nBumps the dependencies group with 1 update in the /packages/modules/weaviate directory: semitechnologies/weaviate.\n\nUpdates `arangodb` from 3.12.5 to 3.12.6\n\nUpdates `cassandra` from 5.0.4 to 5.0.6\n\nUpdates `chromadb/chroma` from 1.0.15 to 1.3.3\n\nUpdates `ollama/ollama` from 0.9.6 to 0.12.10\n\nUpdates `clickhouse/clickhouse-server` from 25.7-alpine to 25.10-alpine\n\nUpdates `couchbase/server` from community-7.0.2 to community-8.0.0\n\nUpdates `elasticsearch` from 9.1.0 to 9.2.0\n\nUpdates `coreos/etcd` from v3.6.4 to v3.6.5\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 532.0.0-emulators to 546.0.0-emulators\n\nUpdates `fsouza/fake-gcs-server` from 1.52.2 to 1.52.3\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.38 to 1.5.43\n\nUpdates `rancher/k3s` from v1.33.3-k3s1 to v1.34.1-k3s1\n\nUpdates `rancher/kubectl` from v1.31.2 to v1.34.1\n\nUpdates `confluentinc/cp-kafka` from 8.0.0 to 8.1.0\n\nUpdates `kurrentplatform/kurrentdb` from 25.0 to 25.1\n\nUpdates `amazon/aws-cli` from 2.31.28 to 2.31.32\n\nUpdates `mariadb` from 11.8.2 to 12.0.2\n\nUpdates `mongo` from 8.0.12 to 8.2.1\n\nUpdates `mysql` from 9.4.0 to 9.5.0\n\nUpdates `nats` from 2.11.6-alpine to 2.12.1-alpine\n\nUpdates `neo4j` from 5.26.9 to 5.26.16\n\nUpdates `ollama/ollama` from 0.12.9 to 0.12.10\n\nUpdates `opensearchproject/opensearch` from 3.1.0 to 3.3.2\n\nUpdates `postgres` from 17.5-alpine to 18.0-alpine\n\nUpdates `qdrant/qdrant` from v1.15.1 to v1.15.5\n\nUpdates `rabbitmq` from 4.1.2-management-alpine to 4.2.0-management-alpine\n\nUpdates `redis` from 8.0 to 8.2\n\nUpdates `redpandadata/redpanda` from v25.2.1 to v25.2.10\n\nUpdates `adobe/s3mock` from 4.9.1 to 4.10.0\n\nUpdates `valkey/valkey` from 8.1 to 9.0\n\nUpdates `hashicorp/vault` from 1.20.1 to 1.21.0\n\nUpdates `semitechnologies/weaviate` from 1.31.8 to 1.34.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1177","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1177","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1177/packages"},{"uuid":"2872114009","node_id":"PR_kwDOFC8iNM6rMPtZ","number":2169,"state":"closed","title":"build(deps): Bump hashicorp/vault from 1.20.3 to 1.20.4 in /test/e2e in the all group","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-09-29T22:52:26.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-29T21:26:38.000Z","updated_at":"2025-09-29T22:52:26.000Z","time_to_close":5148,"merged_at":"2025-09-29T22:52:26.000Z","merged_by":"bobcallaway","closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.20.4","repository_url":null}],"path":"/test/e2e in the all group","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 1 update: hashicorp/vault.\n\nUpdates `hashicorp/vault` from 1.20.3 to 1.20.4\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.3\u0026new-version=1.20.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/sigstore/pull/2169","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fsigstore/issues/2169","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2169/packages"},{"uuid":"2869291045","node_id":"PR_kwDOFT62E86rBegl","number":1236,"state":"closed","title":"build(deps): Bump the all group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-10-08T16:23:04.000Z","author_association":"NONE","state_reason":null,"created_at":"2025-09-29T06:54:54.000Z","updated_at":"2025-10-08T16:23:04.000Z","time_to_close":811690,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"localstack/localstack","old_version":"4.8.0","new_version":"4.8.1"},{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.20.4"}],"path":null,"ecosystem":"docker"},"body":"Bumps the all group with 2 updates in the /test/e2e directory: localstack/localstack and hashicorp/vault.\n\nUpdates `localstack/localstack` from 4.8.0 to 4.8.1\n\nUpdates `hashicorp/vault` from 1.20.3 to 1.20.4\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/bobcallaway/sigstore/pull/1236","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bobcallaway%2Fsigstore/issues/1236","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1236/packages"},{"uuid":"2858948065","node_id":"PR_kwDOF3eXvs6qaBXh","number":10129,"state":"open","title":"Bump hashicorp/vault from 1.20.3 to 1.20.4","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-25T03:07:43.000Z","updated_at":"2025-09-25T03:07:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.20.4","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.3 to 1.20.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.3\u0026new-version=1.20.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10129","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10129","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10129/packages"},{"uuid":"2858345914","node_id":"PR_kwDOG666PM6qXuW6","number":236,"state":"open","title":"Bump hashicorp/vault from 1.15.4 to 1.20.4 in /src/vault-aws","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-24T21:03:01.000Z","updated_at":"2025-09-24T21:03:02.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.15.4","new_version":"1.20.4","repository_url":null}],"path":"/src/vault-aws","ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.15.4 to 1.20.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.15.4\u0026new-version=1.20.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/infrablocks/docker-vault-aws/pull/236","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/infrablocks%2Fdocker-vault-aws/issues/236","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/236/packages"},{"uuid":"3392743644","node_id":"PR_kwDOFT62E86nTsAn","number":1218,"state":"closed","title":"build(deps): Bump the all group in /test/e2e with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-15T06:07:00.000Z","author_association":"NONE","state_reason":null,"created_at":"2025-09-08T06:05:44.000Z","updated_at":"2025-09-15T06:07:00.000Z","time_to_close":604876,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"dexidp/dex","old_version":"v2.43.1","new_version":"v2.44.0","repository_url":"https://github.com/dexidp/dex"},{"name":"hashicorp/vault","old_version":"1.20.2","new_version":"1.20.3"}],"path":"/test/e2e","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 2 updates: [dexidp/dex](https://github.com/dexidp/dex) and hashicorp/vault.\n\nUpdates `dexidp/dex` from v2.43.1 to v2.44.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.44.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow server startup with partial connector failures by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4159\"\u003edexidp/dex#4159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd recursive LDAP parent group search (AD-style hierarchy across all LDAPs) by \u003ca href=\"https://github.com/EthanDieterich\"\u003e\u003ccode\u003e@​EthanDieterich\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4113\"\u003edexidp/dex#4113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add ModifyGroupNames claimMutation to oidc connector by \u003ca href=\"https://github.com/peschmae\"\u003e\u003ccode\u003e@​peschmae\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4144\"\u003edexidp/dex#4144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eauthproxy connector: add support for specifying group header separator by \u003ca href=\"https://github.com/a-buck\"\u003e\u003ccode\u003e@​a-buck\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3745\"\u003edexidp/dex#3745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: join issuer URL with discovery path without extra slash after issuer URL by \u003ca href=\"https://github.com/vizv\"\u003e\u003ccode\u003e@​vizv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4263\"\u003edexidp/dex#4263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: grpc api list clients by \u003ca href=\"https://github.com/daemonfire300\"\u003e\u003ccode\u003e@​daemonfire300\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4202\"\u003edexidp/dex#4202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e:bug: remove extra method=\u0026quot;get\u0026quot; from device-code template by \u003ca href=\"https://github.com/tuminoid\"\u003e\u003ccode\u003e@​tuminoid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4145\"\u003edexidp/dex#4145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[oidc] pass httpClient to the TokenIdentity context by \u003ca href=\"https://github.com/marriva\"\u003e\u003ccode\u003e@​marriva\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4223\"\u003edexidp/dex#4223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.3 by \u003ca href=\"https://github.com/philBrown\"\u003e\u003ccode\u003e@​philBrown\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4224\"\u003edexidp/dex#4224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code should not require scope by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4203\"\u003edexidp/dex#4203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code pending HTTP response by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4204\"\u003edexidp/dex#4204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow compilation without CGO by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4266\"\u003edexidp/dex#4266\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.2 by \u003ca href=\"https://github.com/nathanlaceyraft\"\u003e\u003ccode\u003e@​nathanlaceyraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4146\"\u003edexidp/dex#4146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4180\"\u003edexidp/dex#4180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/net from 0.40.0 to 0.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4171\"\u003edexidp/dex#4171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4174\"\u003edexidp/dex#4174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4179\"\u003edexidp/dex#4179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.30.0 to 0.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4167\"\u003edexidp/dex#4167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4162\"\u003edexidp/dex#4162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/build-push-action from 6.17.0 to 6.18.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4155\"\u003edexidp/dex#4155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump distroless/static-debian12 from \u003ccode\u003e188ddfb\u003c/code\u003e to \u003ccode\u003e627d6c5\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4181\"\u003edexidp/dex#4181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.8.2 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4187\"\u003edexidp/dex#4187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/api from 0.233.0 to 0.238.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4186\"\u003edexidp/dex#4186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4185\"\u003edexidp/dex#4185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.0 to 0.20.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4184\"\u003edexidp/dex#4184\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-sql-driver/mysql from 1.9.2 to 1.9.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4183\"\u003edexidp/dex#4183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4175\"\u003edexidp/dex#4175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.21.3 to 3.22.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4163\"\u003edexidp/dex#4163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /api/v2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4170\"\u003edexidp/dex#4170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4189\"\u003edexidp/dex#4189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump mheap/github-action-required-labels from 5.5.0 to 5.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4190\"\u003edexidp/dex#4190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4219\"\u003edexidp/dex#4219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.1 to 0.20.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4205\"\u003edexidp/dex#4205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.9.0 to 3.9.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4225\"\u003edexidp/dex#4225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.31.0 to 0.32.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4210\"\u003edexidp/dex#4210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-jose/go-jose/v4 from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4196\"\u003edexidp/dex#4196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/crypto from 0.39.0 to 0.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4214\"\u003edexidp/dex#4214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.22.0 to 3.22.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4217\"\u003edexidp/dex#4217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4213\"\u003edexidp/dex#4213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/oklog/run from 1.1.0 to 1.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4199\"\u003edexidp/dex#4199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/mattn/go-sqlite3 from 1.14.28 to 1.14.29 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4239\"\u003edexidp/dex#4239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4238\"\u003edexidp/dex#4238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4235\"\u003edexidp/dex#4235\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/2dce75009acfcd9df77d57f2d144aae999a4c569\"\u003e\u003ccode\u003e2dce750\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4292\"\u003e#4292\u003c/a\u003e from dexidp/dependabot/go_modules/github.com/stretch...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8aa4684f81590325672d0fbc707d9d60ed64de2d\"\u003e\u003ccode\u003e8aa4684\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4293\"\u003e#4293\u003c/a\u003e from dexidp/dependabot/github_actions/aquasecurity/t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/33f0619a66d08ec08e7642d4df6a058e15af4d7e\"\u003e\u003ccode\u003e33f0619\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4296\"\u003e#4296\u003c/a\u003e from dexidp/dependabot/github_actions/actions/attest...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d95db82a70dbd2b0058c1094930cf592b078c350\"\u003e\u003ccode\u003ed95db82\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4295\"\u003e#4295\u003c/a\u003e from rackerlabs/avoid-hardcoded-image\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/f10f4d6ef8c8b1c81dd9629461c9eb6c8a6980a4\"\u003e\u003ccode\u003ef10f4d6\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ad912d0569b2af157e1645e81235108d41a2802a\"\u003e\u003ccode\u003ead912d0\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.32.0 to 0.33.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/e1da164dd59a476f1271506c1b306de2a331ce97\"\u003e\u003ccode\u003ee1da164\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d4e9d54f41a79cd35a26c3229123d641c37df01d\"\u003e\u003ccode\u003ed4e9d54\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4286\"\u003e#4286\u003c/a\u003e from dexidp/dependabot/go_modules/api/v2/google.gola...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/9b5c87a10063ad7df905f1dfdff8ea6513bce39e\"\u003e\u003ccode\u003e9b5c87a\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/protobuf in /api/v2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/757fd5fbe619916fb01bcd746329b99f1c8f4e28\"\u003e\u003ccode\u003e757fd5f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4290\"\u003e#4290\u003c/a\u003e from dexidp/dependabot/github_actions/actions/depend...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.43.1...v2.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hashicorp/vault` from 1.20.2 to 1.20.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/bobcallaway/sigstore/pull/1218","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bobcallaway%2Fsigstore/issues/1218","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1218/packages"},{"uuid":"2801591910","node_id":"PR_kwDOA9NUhs6m_OZm","number":994,"state":"open","title":"deps(actions): Bump the docker group across 3 directories with 6 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-05T06:13:28.000Z","updated_at":"2025-09-05T06:13:28.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(actions): Bump","group_name":"docker","update_count":6,"packages":[{"name":"hashicorp/vault","old_version":"1.20.0","new_version":"1.20.3"},{"name":"hashicorp/consul","old_version":"1.21.2","new_version":"1.21.4"},{"name":"docker","old_version":"28.3","new_version":"28.4"},{"name":"docker/buildx-bin","old_version":"0.25.0","new_version":"0.28.0"},{"name":"golangci/golangci-lint","old_version":"v2.2.2-alpine","new_version":"v2.4.0-alpine"},{"name":"golang","old_version":"1.24-alpine","new_version":"1.25-alpine"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 6 updates in the /ci-builder directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| hashicorp/vault | `1.20.0` | `1.20.3` |\n| hashicorp/consul | `1.21.2` | `1.21.4` |\n| docker | `28.3` | `28.4` |\n| docker/buildx-bin | `0.25.0` | `0.28.0` |\n| golangci/golangci-lint | `v2.2.2-alpine` | `v2.4.0-alpine` |\n| golang | `1.24-alpine` | `1.25-alpine` |\n\nBumps the docker group with 2 updates in the /dockerfiles-builder directory: docker and docker/buildx-bin.\nBumps the docker group with 6 updates in the /gomplate-ci-build directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| hashicorp/vault | `1.20.0` | `1.20.3` |\n| hashicorp/consul | `1.21.2` | `1.21.4` |\n| docker | `28.3` | `28.4` |\n| docker/buildx-bin | `0.25.0` | `0.28.0` |\n| golangci/golangci-lint | `v2.2.2-alpine` | `v2.4.0-alpine` |\n| golang | `1.24` | `1.25` |\n\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24-alpine to 1.25-alpine\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24-alpine to 1.25-alpine\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24 to 1.25\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24 to 1.25\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/hairyhenderson/dockerfiles/pull/994","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hairyhenderson%2Fdockerfiles/issues/994","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/994/packages"},{"uuid":"2792119322","node_id":"PR_kwDOFC8iNM6mbFwa","number":2160,"state":"open","title":"build(deps): Bump the all group in /test/e2e with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-02T10:26:00.000Z","updated_at":"2025-09-02T10:31:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"dexidp/dex","old_version":"v2.43.1","new_version":"v2.44.0","repository_url":"https://github.com/dexidp/dex"},{"name":"hashicorp/vault","old_version":"1.20.2","new_version":"1.20.3"}],"path":"/test/e2e","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 2 updates: [dexidp/dex](https://github.com/dexidp/dex) and hashicorp/vault.\n\nUpdates `dexidp/dex` from v2.43.1 to v2.44.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.44.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow server startup with partial connector failures by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4159\"\u003edexidp/dex#4159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd recursive LDAP parent group search (AD-style hierarchy across all LDAPs) by \u003ca href=\"https://github.com/EthanDieterich\"\u003e\u003ccode\u003e@​EthanDieterich\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4113\"\u003edexidp/dex#4113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add ModifyGroupNames claimMutation to oidc connector by \u003ca href=\"https://github.com/peschmae\"\u003e\u003ccode\u003e@​peschmae\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4144\"\u003edexidp/dex#4144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eauthproxy connector: add support for specifying group header separator by \u003ca href=\"https://github.com/a-buck\"\u003e\u003ccode\u003e@​a-buck\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3745\"\u003edexidp/dex#3745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: join issuer URL with discovery path without extra slash after issuer URL by \u003ca href=\"https://github.com/vizv\"\u003e\u003ccode\u003e@​vizv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4263\"\u003edexidp/dex#4263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: grpc api list clients by \u003ca href=\"https://github.com/daemonfire300\"\u003e\u003ccode\u003e@​daemonfire300\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4202\"\u003edexidp/dex#4202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e:bug: remove extra method=\u0026quot;get\u0026quot; from device-code template by \u003ca href=\"https://github.com/tuminoid\"\u003e\u003ccode\u003e@​tuminoid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4145\"\u003edexidp/dex#4145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[oidc] pass httpClient to the TokenIdentity context by \u003ca href=\"https://github.com/marriva\"\u003e\u003ccode\u003e@​marriva\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4223\"\u003edexidp/dex#4223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.3 by \u003ca href=\"https://github.com/philBrown\"\u003e\u003ccode\u003e@​philBrown\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4224\"\u003edexidp/dex#4224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code should not require scope by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4203\"\u003edexidp/dex#4203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code pending HTTP response by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4204\"\u003edexidp/dex#4204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow compilation without CGO by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4266\"\u003edexidp/dex#4266\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.2 by \u003ca href=\"https://github.com/nathanlaceyraft\"\u003e\u003ccode\u003e@​nathanlaceyraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4146\"\u003edexidp/dex#4146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4180\"\u003edexidp/dex#4180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/net from 0.40.0 to 0.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4171\"\u003edexidp/dex#4171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4174\"\u003edexidp/dex#4174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4179\"\u003edexidp/dex#4179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.30.0 to 0.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4167\"\u003edexidp/dex#4167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4162\"\u003edexidp/dex#4162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/build-push-action from 6.17.0 to 6.18.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4155\"\u003edexidp/dex#4155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump distroless/static-debian12 from \u003ccode\u003e188ddfb\u003c/code\u003e to \u003ccode\u003e627d6c5\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4181\"\u003edexidp/dex#4181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.8.2 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4187\"\u003edexidp/dex#4187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/api from 0.233.0 to 0.238.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4186\"\u003edexidp/dex#4186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4185\"\u003edexidp/dex#4185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.0 to 0.20.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4184\"\u003edexidp/dex#4184\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-sql-driver/mysql from 1.9.2 to 1.9.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4183\"\u003edexidp/dex#4183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4175\"\u003edexidp/dex#4175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.21.3 to 3.22.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4163\"\u003edexidp/dex#4163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /api/v2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4170\"\u003edexidp/dex#4170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4189\"\u003edexidp/dex#4189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump mheap/github-action-required-labels from 5.5.0 to 5.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4190\"\u003edexidp/dex#4190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4219\"\u003edexidp/dex#4219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.1 to 0.20.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4205\"\u003edexidp/dex#4205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.9.0 to 3.9.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4225\"\u003edexidp/dex#4225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.31.0 to 0.32.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4210\"\u003edexidp/dex#4210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-jose/go-jose/v4 from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4196\"\u003edexidp/dex#4196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/crypto from 0.39.0 to 0.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4214\"\u003edexidp/dex#4214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.22.0 to 3.22.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4217\"\u003edexidp/dex#4217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4213\"\u003edexidp/dex#4213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/oklog/run from 1.1.0 to 1.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4199\"\u003edexidp/dex#4199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/mattn/go-sqlite3 from 1.14.28 to 1.14.29 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4239\"\u003edexidp/dex#4239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4238\"\u003edexidp/dex#4238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4235\"\u003edexidp/dex#4235\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/2dce75009acfcd9df77d57f2d144aae999a4c569\"\u003e\u003ccode\u003e2dce750\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4292\"\u003e#4292\u003c/a\u003e from dexidp/dependabot/go_modules/github.com/stretch...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8aa4684f81590325672d0fbc707d9d60ed64de2d\"\u003e\u003ccode\u003e8aa4684\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4293\"\u003e#4293\u003c/a\u003e from dexidp/dependabot/github_actions/aquasecurity/t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/33f0619a66d08ec08e7642d4df6a058e15af4d7e\"\u003e\u003ccode\u003e33f0619\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4296\"\u003e#4296\u003c/a\u003e from dexidp/dependabot/github_actions/actions/attest...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d95db82a70dbd2b0058c1094930cf592b078c350\"\u003e\u003ccode\u003ed95db82\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4295\"\u003e#4295\u003c/a\u003e from rackerlabs/avoid-hardcoded-image\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/f10f4d6ef8c8b1c81dd9629461c9eb6c8a6980a4\"\u003e\u003ccode\u003ef10f4d6\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ad912d0569b2af157e1645e81235108d41a2802a\"\u003e\u003ccode\u003ead912d0\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.32.0 to 0.33.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/e1da164dd59a476f1271506c1b306de2a331ce97\"\u003e\u003ccode\u003ee1da164\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d4e9d54f41a79cd35a26c3229123d641c37df01d\"\u003e\u003ccode\u003ed4e9d54\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4286\"\u003e#4286\u003c/a\u003e from dexidp/dependabot/go_modules/api/v2/google.gola...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/9b5c87a10063ad7df905f1dfdff8ea6513bce39e\"\u003e\u003ccode\u003e9b5c87a\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/protobuf in /api/v2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/757fd5fbe619916fb01bcd746329b99f1c8f4e28\"\u003e\u003ccode\u003e757fd5f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4290\"\u003e#4290\u003c/a\u003e from dexidp/dependabot/github_actions/actions/depend...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.43.1...v2.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hashicorp/vault` from 1.20.2 to 1.20.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/sigstore/pull/2160","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fsigstore/issues/2160","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2160/packages"},{"uuid":"2788498647","node_id":"PR_kwDON79JMM6mNRzX","number":93,"state":"open","title":"fix(deps): bump hashicorp/vault from 1.19.1 to 1.20.3","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-01T05:00:17.000Z","updated_at":"2025-09-01T05:00:18.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.19.1","new_version":"1.20.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.19.1 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.19.1\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/soerenschneider/scripts/pull/93","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/soerenschneider%2Fscripts/issues/93","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/93/packages"},{"uuid":"2784354795","node_id":"PR_kwDOGTJYoM6l9eHr","number":132,"state":"open","title":"chore(deps): bump hashicorp/vault from 1.20.1 to 1.20.3","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-29T10:03:19.000Z","updated_at":"2025-08-29T10:03:20.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.20.1","new_version":"1.20.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.1 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.1\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/TJM/vault-gcp-secrets/pull/132","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/TJM%2Fvault-gcp-secrets/issues/132","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/132/packages"},{"uuid":"3365287458","node_id":"PR_kwDOF3eXvs6l6Ou2","number":9980,"state":"closed","title":"Bump hashicorp/vault from 1.20.2 to 1.20.3","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-08-29T21:16:57.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-29T03:08:24.000Z","updated_at":"2025-08-29T21:16:57.000Z","time_to_close":65313,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.20.2","new_version":"1.20.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.2 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.2\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/9980","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/9980","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9980/packages"},{"uuid":"3364667593","node_id":"PR_kwDOG666PM6l4L3C","number":232,"state":"closed","title":"Bump hashicorp/vault from 1.15.4 to 1.20.3 in /src/vault-aws","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-24T21:03:03.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-28T21:03:08.000Z","updated_at":"2025-09-24T21:03:03.000Z","time_to_close":2332795,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.15.4","new_version":"1.20.3","repository_url":null}],"path":"/src/vault-aws","ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.15.4 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.15.4\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/infrablocks/docker-vault-aws/pull/232","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/infrablocks%2Fdocker-vault-aws/issues/232","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/232/packages"},{"uuid":"2737317994","node_id":"PR_kwDOFC8iNM6jKChq","number":2133,"state":"open","title":"build(deps): Bump the all group in /test/e2e with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-12T01:15:29.000Z","updated_at":"2025-08-12T12:32:58.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"localstack/localstack","old_version":"4.6.0","new_version":"4.7.0"},{"name":"hashicorp/vault","old_version":"1.20.0","new_version":"1.20.2"}],"path":"/test/e2e","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 2 updates: localstack/localstack and hashicorp/vault.\n\nUpdates `localstack/localstack` from 4.6.0 to 4.7.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/sigstore/pull/2133","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fsigstore/issues/2133","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2133/packages"},{"uuid":"2734094367","node_id":"PR_kwDON79JMM6i9vgf","number":84,"state":"closed","title":"fix(deps): bump hashicorp/vault from 1.19.1 to 1.20.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-01T05:00:20.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-11T04:09:54.000Z","updated_at":"2025-09-01T05:00:20.000Z","time_to_close":1817426,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.19.1","new_version":"1.20.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.19.1 to 1.20.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.19.1\u0026new-version=1.20.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/soerenschneider/scripts/pull/84","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/soerenschneider%2Fscripts/issues/84","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/84/packages"}],"issue_packages":[{"old_version":"1.21.4","new_version":"2.0.0","update_type":"major","path":null,"pr_created_at":"2026-05-11T00:53:16.000Z","version_change":"1.21.4 → 2.0.0","issue":{"uuid":"4417355490","node_id":"PR_kwDOBvBYLs7aEo5h","number":1320,"state":"closed","title":"Bump the dependencies group across 16 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-11T00:54:52.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-11T00:53:16.000Z","updated_at":"2026-05-11T00:54:54.000Z","time_to_close":96,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":18,"packages":[{"name":"chromadb/chroma","old_version":"1.5.8","new_version":"1.5.9"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"cockroachdb/cockroach","old_version":"v26.1.2","new_version":"v26.1.4"},{"name":"elasticsearch","old_version":"9.3.3","new_version":"9.4.0"},{"name":"coreos/etcd","old_version":"v3.6.10","new_version":"v3.6.11"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"565.0.0-emulators","new_version":"567.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.52","new_version":"1.5.53"},{"name":"rancher/k3s","old_version":"v1.35.3-k3s1","new_version":"v1.36.0-k3s1"},{"name":"rancher/kubectl","old_version":"v1.35.2","new_version":"v1.36.0"},{"name":"kurrentplatform/kurrentdb","old_version":"26.0","new_version":"26.1"},{"name":"amazon/aws-cli","old_version":"2.34.32","new_version":"2.34.45"},{"name":"mysql","old_version":"9.6.0","new_version":"9.7.0"},{"name":"nats","old_version":"2.12.7-alpine","new_version":"2.14.0-alpine"},{"name":"neo4j","old_version":"5.26.24","new_version":"5.26.25"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"ollama/ollama","old_version":"0.21.0","new_version":"0.23.2"},{"name":"rabbitmq","old_version":"4.2.5-management-alpine","new_version":"4.3.0-management-alpine"},{"name":"redpandadata/redpanda","old_version":"v26.1.5","new_version":"v26.1.7"},{"name":"hashicorp/vault","old_version":"1.21.4","new_version":"2.0.0"},{"name":"semitechnologies/weaviate","old_version":"1.37.1","new_version":"1.37.2-9527357.arm64"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/cockroachdb directory: cockroachdb/cockroach.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 1 update in the /packages/modules/etcd directory: coreos/etcd.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 2 updates in the /packages/modules/k3s directory: rancher/k3s and rancher/kubectl.\nBumps the dependencies group with 1 update in the /packages/modules/kurrentdb directory: kurrentplatform/kurrentdb.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mysql directory: mysql.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/neo4j directory: neo4j.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/rabbitmq directory: rabbitmq.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\nBumps the dependencies group with 1 update in the /packages/modules/weaviate directory: semitechnologies/weaviate.\n\nUpdates `chromadb/chroma` from 1.5.8 to 1.5.9\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `cockroachdb/cockroach` from v26.1.2 to v26.1.4\n\nUpdates `elasticsearch` from 9.3.3 to 9.4.0\n\nUpdates `coreos/etcd` from v3.6.10 to v3.6.11\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 565.0.0-emulators to 567.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.52 to 1.5.53\n\nUpdates `rancher/k3s` from v1.35.3-k3s1 to v1.36.0-k3s1\n\nUpdates `rancher/kubectl` from v1.35.2 to v1.36.0\n\nUpdates `kurrentplatform/kurrentdb` from 26.0 to 26.1\n\nUpdates `amazon/aws-cli` from 2.34.32 to 2.34.45\n\nUpdates `mysql` from 9.6.0 to 9.7.0\n\nUpdates `nats` from 2.12.7-alpine to 2.14.0-alpine\n\nUpdates `neo4j` from 5.26.24 to 5.26.25\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `ollama/ollama` from 0.21.0 to 0.23.2\n\nUpdates `rabbitmq` from 4.2.5-management-alpine to 4.3.0-management-alpine\n\nUpdates `redpandadata/redpanda` from v26.1.5 to v26.1.7\n\nUpdates `hashicorp/vault` from 1.21.4 to 2.0.0\n\nUpdates `semitechnologies/weaviate` from 1.37.1 to 1.37.2-9527357.arm64\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1320","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1320","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1320/packages"}},{"old_version":"1.21.4","new_version":"2.0.0","update_type":"major","path":null,"pr_created_at":"2026-04-20T00:47:14.000Z","version_change":"1.21.4 → 2.0.0","issue":{"uuid":"4292476671","node_id":"PR_kwDOBvBYLs7TyUnq","number":1299,"state":"open","title":"Bump the dependencies group across 16 directories with 18 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T00:47:14.000Z","updated_at":"2026-04-20T00:47:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":18,"packages":[{"name":"arangodb","old_version":"3.12.8","new_version":"3.12.9.1"},{"name":"cassandra","old_version":"5.0.7","new_version":"5.0.8"},{"name":"chromadb/chroma","old_version":"1.5.5","new_version":"1.5.8"},{"name":"ollama/ollama","old_version":"0.20.2","new_version":"0.21.0"},{"name":"cockroachdb/cockroach","old_version":"v26.1.1","new_version":"v26.1.2"},{"name":"elasticsearch","old_version":"9.3.2","new_version":"9.3.3"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"563.0.0-emulators","new_version":"565.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.51","new_version":"1.5.52"},{"name":"amazon/aws-cli","old_version":"2.34.24","new_version":"2.34.32"},{"name":"mongo","old_version":"8.2.6","new_version":"8.2.7"},{"name":"nats","old_version":"2.12.6-alpine","new_version":"2.12.7-alpine"},{"name":"ollama/ollama","old_version":"0.20.2","new_version":"0.21.0"},{"name":"opensearchproject/opensearch","old_version":"3.5.0","new_version":"3.6.0"},{"name":"redpandadata/redpanda","old_version":"v26.1.2","new_version":"v26.1.5"},{"name":"adobe/s3mock","old_version":"4.12.2","new_version":"5.0.0"},{"name":"selenium/standalone-chrome","old_version":"145.0","new_version":"147.0"},{"name":"selenium/standalone-firefox","old_version":"147.0","new_version":"149.0"},{"name":"hashicorp/vault","old_version":"1.21.4","new_version":"2.0.0"},{"name":"semitechnologies/weaviate","old_version":"1.36.9","new_version":"1.37.1"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/arangodb directory: arangodb.\nBumps the dependencies group with 1 update in the /packages/modules/cassandra directory: cassandra.\nBumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/cockroachdb directory: cockroachdb/cockroach.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mongodb directory: mongo.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/opensearch directory: opensearchproject/opensearch.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/s3mock directory: adobe/s3mock.\nBumps the dependencies group with 2 updates in the /packages/modules/selenium directory: selenium/standalone-chrome and selenium/standalone-firefox.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\nBumps the dependencies group with 1 update in the /packages/modules/weaviate directory: semitechnologies/weaviate.\n\nUpdates `arangodb` from 3.12.8 to 3.12.9.1\n\nUpdates `cassandra` from 5.0.7 to 5.0.8\n\nUpdates `chromadb/chroma` from 1.5.5 to 1.5.8\n\nUpdates `ollama/ollama` from 0.20.2 to 0.21.0\n\nUpdates `cockroachdb/cockroach` from v26.1.1 to v26.1.2\n\nUpdates `elasticsearch` from 9.3.2 to 9.3.3\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 563.0.0-emulators to 565.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.51 to 1.5.52\n\nUpdates `amazon/aws-cli` from 2.34.24 to 2.34.32\n\nUpdates `mongo` from 8.2.6 to 8.2.7\n\nUpdates `nats` from 2.12.6-alpine to 2.12.7-alpine\n\nUpdates `ollama/ollama` from 0.20.2 to 0.21.0\n\nUpdates `opensearchproject/opensearch` from 3.5.0 to 3.6.0\n\nUpdates `redpandadata/redpanda` from v26.1.2 to v26.1.5\n\nUpdates `adobe/s3mock` from 4.12.2 to 5.0.0\n\nUpdates `selenium/standalone-chrome` from 145.0 to 147.0\n\nUpdates `selenium/standalone-firefox` from 147.0 to 149.0\n\nUpdates `hashicorp/vault` from 1.21.4 to 2.0.0\n\nUpdates `semitechnologies/weaviate` from 1.36.9 to 1.37.1\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1299","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1299","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1299/packages"}},{"old_version":"1.21.1","new_version":"1.21.2","update_type":"patch","path":null,"pr_created_at":"2026-02-02T00:49:38.000Z","version_change":"1.21.1 → 1.21.2","issue":{"uuid":"3883436992","node_id":"PR_kwDOBvBYLs7AyRye","number":1218,"state":"closed","title":"Bump the dependencies group across 4 directories with 6 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-02-09T00:46:20.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-02T00:49:38.000Z","updated_at":"2026-02-09T00:46:22.000Z","time_to_close":604602,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":6,"packages":[{"name":"couchbase/server","old_version":"community-7.0.2","new_version":"community-8.0.0"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"550.0.0-emulators","new_version":"554.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.46","new_version":"1.5.47"},{"name":"localstack/localstack","old_version":"4.12.0","new_version":"4.13.0"},{"name":"amazon/aws-cli","old_version":"2.32.28","new_version":"2.33.12"},{"name":"hashicorp/vault","old_version":"1.21.1","new_version":"1.21.2"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/couchbase directory: couchbase/server.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 2 updates in the /packages/modules/localstack directory: localstack/localstack and amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\n\nUpdates `couchbase/server` from community-7.0.2 to community-8.0.0\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 550.0.0-emulators to 554.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.46 to 1.5.47\n\nUpdates `localstack/localstack` from 4.12.0 to 4.13.0\n\nUpdates `amazon/aws-cli` from 2.32.28 to 2.33.12\n\nUpdates `hashicorp/vault` from 1.21.1 to 1.21.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1218","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1218","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1218/packages"}},{"old_version":"1.20.3","new_version":"1.21.1","update_type":"minor","path":null,"pr_created_at":"2025-11-24T02:19:54.000Z","version_change":"1.20.3 → 1.21.1","issue":{"uuid":"3656828411","node_id":"PR_kwDON79JMM61F1bY","number":118,"state":"closed","title":"fix(deps): bump hashicorp/vault from 1.20.3 to 1.21.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-12T02:58:51.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-24T02:19:54.000Z","updated_at":"2026-01-12T02:58:52.000Z","time_to_close":4235937,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.21.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.3 to 1.21.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.3\u0026new-version=1.21.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/soerenschneider/scripts/pull/118","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/soerenschneider%2Fscripts/issues/118","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/118/packages"}},{"old_version":"1.21.0","new_version":"1.21.1","update_type":"patch","path":null,"pr_created_at":"2025-11-24T00:39:04.000Z","version_change":"1.21.0 → 1.21.1","issue":{"uuid":"3656685183","node_id":"PR_kwDOBvBYLs61FWyG","number":1187,"state":"open","title":"Bump the dependencies group across 21 directories with 23 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-11-24T00:39:04.000Z","updated_at":"2025-11-24T00:40:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":23,"packages":[{"name":"arangodb","old_version":"3.12.6","new_version":"3.12.6.1"},{"name":"chromadb/chroma","old_version":"1.3.3","new_version":"1.3.5"},{"name":"ollama/ollama","old_version":"0.12.10","new_version":"0.13.0"},{"name":"cockroachdb/cockroach","old_version":"v25.3.4","new_version":"v25.4.0"},{"name":"couchbase/server","old_version":"community-7.0.2","new_version":"community-8.0.0"},{"name":"elasticsearch","old_version":"9.2.0","new_version":"9.2.1"},{"name":"coreos/etcd","old_version":"v3.6.5","new_version":"v3.6.6"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"546.0.0-emulators","new_version":"548.0.0-emulators"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.43","new_version":"1.5.45"},{"name":"hivemq/hivemq-ce","old_version":"2025.4","new_version":"2025.5"},{"name":"rancher/k3s","old_version":"v1.34.1-k3s1","new_version":"v1.34.2-k3s1"},{"name":"rancher/kubectl","old_version":"v1.34.1","new_version":"v1.34.2"},{"name":"amazon/aws-cli","old_version":"2.31.32","new_version":"2.32.3"},{"name":"mariadb","old_version":"12.0.2","new_version":"12.1.2"},{"name":"mongo","old_version":"8.2.1","new_version":"8.2.2"},{"name":"nats","old_version":"2.12.1-alpine","new_version":"2.12.2-alpine"},{"name":"neo4j","old_version":"5.26.16","new_version":"5.26.17"},{"name":"ollama/ollama","old_version":"0.12.10","new_version":"0.13.0"},{"name":"postgres","old_version":"18.0-alpine","new_version":"18.1-alpine"},{"name":"qdrant/qdrant","old_version":"v1.15.5","new_version":"v1.16.0"},{"name":"rabbitmq","old_version":"4.2.0-management-alpine","new_version":"4.2.1-management-alpine"},{"name":"redis","old_version":"8.2","new_version":"8.4"},{"name":"redpandadata/redpanda","old_version":"v25.2.10","new_version":"v25.3.1"},{"name":"hashicorp/vault","old_version":"1.21.0","new_version":"1.21.1"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/arangodb directory: arangodb.\nBumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/cockroachdb directory: cockroachdb/cockroach.\nBumps the dependencies group with 1 update in the /packages/modules/couchbase directory: couchbase/server.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 1 update in the /packages/modules/etcd directory: coreos/etcd.\nBumps the dependencies group with 2 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 1 update in the /packages/modules/hivemq directory: hivemq/hivemq-ce.\nBumps the dependencies group with 2 updates in the /packages/modules/k3s directory: rancher/k3s and rancher/kubectl.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mariadb directory: mariadb.\nBumps the dependencies group with 1 update in the /packages/modules/mongodb directory: mongo.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/neo4j directory: neo4j.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/postgresql directory: postgres.\nBumps the dependencies group with 1 update in the /packages/modules/qdrant directory: qdrant/qdrant.\nBumps the dependencies group with 1 update in the /packages/modules/rabbitmq directory: rabbitmq.\nBumps the dependencies group with 1 update in the /packages/modules/redis directory: redis.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\n\nUpdates `arangodb` from 3.12.6 to 3.12.6.1\n\nUpdates `chromadb/chroma` from 1.3.3 to 1.3.5\n\nUpdates `ollama/ollama` from 0.12.10 to 0.13.0\n\nUpdates `cockroachdb/cockroach` from v25.3.4 to v25.4.0\n\nUpdates `couchbase/server` from community-7.0.2 to community-8.0.0\n\nUpdates `elasticsearch` from 9.2.0 to 9.2.1\n\nUpdates `coreos/etcd` from v3.6.5 to v3.6.6\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 546.0.0-emulators to 548.0.0-emulators\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.43 to 1.5.45\n\nUpdates `hivemq/hivemq-ce` from 2025.4 to 2025.5\n\nUpdates `rancher/k3s` from v1.34.1-k3s1 to v1.34.2-k3s1\n\nUpdates `rancher/kubectl` from v1.34.1 to v1.34.2\n\nUpdates `amazon/aws-cli` from 2.31.32 to 2.32.3\n\nUpdates `mariadb` from 12.0.2 to 12.1.2\n\nUpdates `mongo` from 8.2.1 to 8.2.2\n\nUpdates `nats` from 2.12.1-alpine to 2.12.2-alpine\n\nUpdates `neo4j` from 5.26.16 to 5.26.17\n\nUpdates `ollama/ollama` from 0.12.10 to 0.13.0\n\nUpdates `postgres` from 18.0-alpine to 18.1-alpine\n\nUpdates `qdrant/qdrant` from v1.15.5 to v1.16.0\n\nUpdates `rabbitmq` from 4.2.0-management-alpine to 4.2.1-management-alpine\n\nUpdates `redis` from 8.2 to 8.4\n\nUpdates `redpandadata/redpanda` from v25.2.10 to v25.3.1\n\nUpdates `hashicorp/vault` from 1.21.0 to 1.21.1\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1187","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1187","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1187/packages"}},{"old_version":"1.21.0","new_version":"1.21.1","update_type":"patch","path":null,"pr_created_at":"2025-11-20T03:17:12.000Z","version_change":"1.21.0 → 1.21.1","issue":{"uuid":"3645270974","node_id":"PR_kwDOF3eXvs60fQ2p","number":10553,"state":"closed","title":"Bump hashicorp/vault from 1.21.0 to 1.21.1","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-11-20T11:04:02.000Z","author_association":null,"state_reason":null,"created_at":"2025-11-20T03:17:12.000Z","updated_at":"2025-11-20T11:04:03.000Z","time_to_close":28010,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.21.0","new_version":"1.21.1","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.21.0 to 1.21.1.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.21.0\u0026new-version=1.21.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10553","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10553","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10553/packages"}},{"old_version":"1.20.1","new_version":"1.21.0","update_type":"minor","path":null,"pr_created_at":"2025-11-10T00:32:29.000Z","version_change":"1.20.1 → 1.21.0","issue":{"uuid":"3605685865","node_id":"PR_kwDOBvBYLs6yaVRW","number":1177,"state":"open","title":"Bump the dependencies group across 28 directories with 31 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-11-10T00:32:29.000Z","updated_at":"2025-11-10T00:33:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"dependencies","update_count":31,"packages":[{"name":"arangodb","old_version":"3.12.5","new_version":"3.12.6"},{"name":"cassandra","old_version":"5.0.4","new_version":"5.0.6"},{"name":"chromadb/chroma","old_version":"1.0.15","new_version":"1.3.3"},{"name":"ollama/ollama","old_version":"0.9.6","new_version":"0.12.10"},{"name":"clickhouse/clickhouse-server","old_version":"25.7-alpine","new_version":"25.10-alpine"},{"name":"couchbase/server","old_version":"community-7.0.2","new_version":"community-8.0.0"},{"name":"elasticsearch","old_version":"9.1.0","new_version":"9.2.0"},{"name":"coreos/etcd","old_version":"v3.6.4","new_version":"v3.6.5"},{"name":"google.com/cloudsdktool/google-cloud-cli","old_version":"532.0.0-emulators","new_version":"546.0.0-emulators"},{"name":"fsouza/fake-gcs-server","old_version":"1.52.2","new_version":"1.52.3"},{"name":"cloud-spanner-emulator/emulator","old_version":"1.5.38","new_version":"1.5.43"},{"name":"rancher/k3s","old_version":"v1.33.3-k3s1","new_version":"v1.34.1-k3s1"},{"name":"rancher/kubectl","old_version":"v1.31.2","new_version":"v1.34.1"},{"name":"confluentinc/cp-kafka","old_version":"8.0.0","new_version":"8.1.0"},{"name":"kurrentplatform/kurrentdb","old_version":"25.0","new_version":"25.1"},{"name":"amazon/aws-cli","old_version":"2.31.28","new_version":"2.31.32"},{"name":"mariadb","old_version":"11.8.2","new_version":"12.0.2"},{"name":"mongo","old_version":"8.0.12","new_version":"8.2.1"},{"name":"mysql","old_version":"9.4.0","new_version":"9.5.0"},{"name":"nats","old_version":"2.11.6-alpine","new_version":"2.12.1-alpine"},{"name":"neo4j","old_version":"5.26.9","new_version":"5.26.16"},{"name":"ollama/ollama","old_version":"0.12.9","new_version":"0.12.10"},{"name":"opensearchproject/opensearch","old_version":"3.1.0","new_version":"3.3.2"},{"name":"postgres","old_version":"17.5-alpine","new_version":"18.0-alpine"},{"name":"qdrant/qdrant","old_version":"v1.15.1","new_version":"v1.15.5"},{"name":"rabbitmq","old_version":"4.1.2-management-alpine","new_version":"4.2.0-management-alpine"},{"name":"redis","old_version":"8.0","new_version":"8.2"},{"name":"redpandadata/redpanda","old_version":"v25.2.1","new_version":"v25.2.10"},{"name":"adobe/s3mock","old_version":"4.9.1","new_version":"4.10.0"},{"name":"valkey/valkey","old_version":"8.1","new_version":"9.0"},{"name":"hashicorp/vault","old_version":"1.20.1","new_version":"1.21.0"},{"name":"semitechnologies/weaviate","old_version":"1.31.8","new_version":"1.34.0"}],"path":null,"ecosystem":"docker"},"body":"Bumps the dependencies group with 1 update in the /packages/modules/arangodb directory: arangodb.\nBumps the dependencies group with 1 update in the /packages/modules/cassandra directory: cassandra.\nBumps the dependencies group with 2 updates in the /packages/modules/chromadb directory: chromadb/chroma and ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/clickhouse directory: clickhouse/clickhouse-server.\nBumps the dependencies group with 1 update in the /packages/modules/couchbase directory: couchbase/server.\nBumps the dependencies group with 1 update in the /packages/modules/elasticsearch directory: elasticsearch.\nBumps the dependencies group with 1 update in the /packages/modules/etcd directory: coreos/etcd.\nBumps the dependencies group with 3 updates in the /packages/modules/gcloud directory: google.com/cloudsdktool/google-cloud-cli, fsouza/fake-gcs-server and cloud-spanner-emulator/emulator.\nBumps the dependencies group with 2 updates in the /packages/modules/k3s directory: rancher/k3s and rancher/kubectl.\nBumps the dependencies group with 1 update in the /packages/modules/kafka directory: confluentinc/cp-kafka.\nBumps the dependencies group with 1 update in the /packages/modules/kurrentdb directory: kurrentplatform/kurrentdb.\nBumps the dependencies group with 1 update in the /packages/modules/localstack directory: amazon/aws-cli.\nBumps the dependencies group with 1 update in the /packages/modules/mariadb directory: mariadb.\nBumps the dependencies group with 1 update in the /packages/modules/mongodb directory: mongo.\nBumps the dependencies group with 1 update in the /packages/modules/mysql directory: mysql.\nBumps the dependencies group with 1 update in the /packages/modules/nats directory: nats.\nBumps the dependencies group with 1 update in the /packages/modules/neo4j directory: neo4j.\nBumps the dependencies group with 1 update in the /packages/modules/ollama directory: ollama/ollama.\nBumps the dependencies group with 1 update in the /packages/modules/opensearch directory: opensearchproject/opensearch.\nBumps the dependencies group with 1 update in the /packages/modules/postgresql directory: postgres.\nBumps the dependencies group with 1 update in the /packages/modules/qdrant directory: qdrant/qdrant.\nBumps the dependencies group with 1 update in the /packages/modules/rabbitmq directory: rabbitmq.\nBumps the dependencies group with 1 update in the /packages/modules/redis directory: redis.\nBumps the dependencies group with 1 update in the /packages/modules/redpanda directory: redpandadata/redpanda.\nBumps the dependencies group with 1 update in the /packages/modules/s3mock directory: adobe/s3mock.\nBumps the dependencies group with 1 update in the /packages/modules/valkey directory: valkey/valkey.\nBumps the dependencies group with 1 update in the /packages/modules/vault directory: hashicorp/vault.\nBumps the dependencies group with 1 update in the /packages/modules/weaviate directory: semitechnologies/weaviate.\n\nUpdates `arangodb` from 3.12.5 to 3.12.6\n\nUpdates `cassandra` from 5.0.4 to 5.0.6\n\nUpdates `chromadb/chroma` from 1.0.15 to 1.3.3\n\nUpdates `ollama/ollama` from 0.9.6 to 0.12.10\n\nUpdates `clickhouse/clickhouse-server` from 25.7-alpine to 25.10-alpine\n\nUpdates `couchbase/server` from community-7.0.2 to community-8.0.0\n\nUpdates `elasticsearch` from 9.1.0 to 9.2.0\n\nUpdates `coreos/etcd` from v3.6.4 to v3.6.5\n\nUpdates `google.com/cloudsdktool/google-cloud-cli` from 532.0.0-emulators to 546.0.0-emulators\n\nUpdates `fsouza/fake-gcs-server` from 1.52.2 to 1.52.3\n\nUpdates `cloud-spanner-emulator/emulator` from 1.5.38 to 1.5.43\n\nUpdates `rancher/k3s` from v1.33.3-k3s1 to v1.34.1-k3s1\n\nUpdates `rancher/kubectl` from v1.31.2 to v1.34.1\n\nUpdates `confluentinc/cp-kafka` from 8.0.0 to 8.1.0\n\nUpdates `kurrentplatform/kurrentdb` from 25.0 to 25.1\n\nUpdates `amazon/aws-cli` from 2.31.28 to 2.31.32\n\nUpdates `mariadb` from 11.8.2 to 12.0.2\n\nUpdates `mongo` from 8.0.12 to 8.2.1\n\nUpdates `mysql` from 9.4.0 to 9.5.0\n\nUpdates `nats` from 2.11.6-alpine to 2.12.1-alpine\n\nUpdates `neo4j` from 5.26.9 to 5.26.16\n\nUpdates `ollama/ollama` from 0.12.9 to 0.12.10\n\nUpdates `opensearchproject/opensearch` from 3.1.0 to 3.3.2\n\nUpdates `postgres` from 17.5-alpine to 18.0-alpine\n\nUpdates `qdrant/qdrant` from v1.15.1 to v1.15.5\n\nUpdates `rabbitmq` from 4.1.2-management-alpine to 4.2.0-management-alpine\n\nUpdates `redis` from 8.0 to 8.2\n\nUpdates `redpandadata/redpanda` from v25.2.1 to v25.2.10\n\nUpdates `adobe/s3mock` from 4.9.1 to 4.10.0\n\nUpdates `valkey/valkey` from 8.1 to 9.0\n\nUpdates `hashicorp/vault` from 1.20.1 to 1.21.0\n\nUpdates `semitechnologies/weaviate` from 1.31.8 to 1.34.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/testcontainers/testcontainers-node/pull/1177","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/testcontainers%2Ftestcontainers-node/issues/1177","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1177/packages"}},{"old_version":"1.20.3","new_version":"1.20.4","update_type":"patch","path":"/test/e2e in the all group","pr_created_at":"2025-09-29T21:26:38.000Z","version_change":"1.20.3 → 1.20.4","issue":{"uuid":"2872114009","node_id":"PR_kwDOFC8iNM6rMPtZ","number":2169,"state":"closed","title":"build(deps): Bump hashicorp/vault from 1.20.3 to 1.20.4 in /test/e2e in the all group","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":"2025-09-29T22:52:26.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-29T21:26:38.000Z","updated_at":"2025-09-29T22:52:26.000Z","time_to_close":5148,"merged_at":"2025-09-29T22:52:26.000Z","merged_by":"bobcallaway","closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.20.4","repository_url":null}],"path":"/test/e2e in the all group","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 1 update: hashicorp/vault.\n\nUpdates `hashicorp/vault` from 1.20.3 to 1.20.4\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.3\u0026new-version=1.20.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/sigstore/pull/2169","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fsigstore/issues/2169","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2169/packages"}},{"old_version":"1.20.3","new_version":"1.20.4","update_type":"patch","path":null,"pr_created_at":"2025-09-29T06:54:54.000Z","version_change":"1.20.3 → 1.20.4","issue":{"uuid":"2869291045","node_id":"PR_kwDOFT62E86rBegl","number":1236,"state":"closed","title":"build(deps): Bump the all group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-10-08T16:23:04.000Z","author_association":"NONE","state_reason":null,"created_at":"2025-09-29T06:54:54.000Z","updated_at":"2025-10-08T16:23:04.000Z","time_to_close":811690,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"localstack/localstack","old_version":"4.8.0","new_version":"4.8.1"},{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.20.4"}],"path":null,"ecosystem":"docker"},"body":"Bumps the all group with 2 updates in the /test/e2e directory: localstack/localstack and hashicorp/vault.\n\nUpdates `localstack/localstack` from 4.8.0 to 4.8.1\n\nUpdates `hashicorp/vault` from 1.20.3 to 1.20.4\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/bobcallaway/sigstore/pull/1236","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bobcallaway%2Fsigstore/issues/1236","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1236/packages"}},{"old_version":"1.20.3","new_version":"1.20.4","update_type":"patch","path":null,"pr_created_at":"2025-09-25T03:07:43.000Z","version_change":"1.20.3 → 1.20.4","issue":{"uuid":"2858948065","node_id":"PR_kwDOF3eXvs6qaBXh","number":10129,"state":"open","title":"Bump hashicorp/vault from 1.20.3 to 1.20.4","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-25T03:07:43.000Z","updated_at":"2025-09-25T03:07:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.20.3","new_version":"1.20.4","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.3 to 1.20.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.3\u0026new-version=1.20.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/10129","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/10129","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/10129/packages"}},{"old_version":"1.15.4","new_version":"1.20.4","update_type":"minor","path":"/src/vault-aws","pr_created_at":"2025-09-24T21:03:01.000Z","version_change":"1.15.4 → 1.20.4","issue":{"uuid":"2858345914","node_id":"PR_kwDOG666PM6qXuW6","number":236,"state":"open","title":"Bump hashicorp/vault from 1.15.4 to 1.20.4 in /src/vault-aws","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-24T21:03:01.000Z","updated_at":"2025-09-24T21:03:02.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.15.4","new_version":"1.20.4","repository_url":null}],"path":"/src/vault-aws","ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.15.4 to 1.20.4.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.15.4\u0026new-version=1.20.4)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/infrablocks/docker-vault-aws/pull/236","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/infrablocks%2Fdocker-vault-aws/issues/236","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/236/packages"}},{"old_version":"1.20.2","new_version":"1.20.3","update_type":"patch","path":"/test/e2e","pr_created_at":"2025-09-08T06:05:44.000Z","version_change":"1.20.2 → 1.20.3","issue":{"uuid":"3392743644","node_id":"PR_kwDOFT62E86nTsAn","number":1218,"state":"closed","title":"build(deps): Bump the all group in /test/e2e with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-15T06:07:00.000Z","author_association":"NONE","state_reason":null,"created_at":"2025-09-08T06:05:44.000Z","updated_at":"2025-09-15T06:07:00.000Z","time_to_close":604876,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"dexidp/dex","old_version":"v2.43.1","new_version":"v2.44.0","repository_url":"https://github.com/dexidp/dex"},{"name":"hashicorp/vault","old_version":"1.20.2","new_version":"1.20.3"}],"path":"/test/e2e","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 2 updates: [dexidp/dex](https://github.com/dexidp/dex) and hashicorp/vault.\n\nUpdates `dexidp/dex` from v2.43.1 to v2.44.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.44.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow server startup with partial connector failures by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4159\"\u003edexidp/dex#4159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd recursive LDAP parent group search (AD-style hierarchy across all LDAPs) by \u003ca href=\"https://github.com/EthanDieterich\"\u003e\u003ccode\u003e@​EthanDieterich\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4113\"\u003edexidp/dex#4113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add ModifyGroupNames claimMutation to oidc connector by \u003ca href=\"https://github.com/peschmae\"\u003e\u003ccode\u003e@​peschmae\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4144\"\u003edexidp/dex#4144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eauthproxy connector: add support for specifying group header separator by \u003ca href=\"https://github.com/a-buck\"\u003e\u003ccode\u003e@​a-buck\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3745\"\u003edexidp/dex#3745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: join issuer URL with discovery path without extra slash after issuer URL by \u003ca href=\"https://github.com/vizv\"\u003e\u003ccode\u003e@​vizv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4263\"\u003edexidp/dex#4263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: grpc api list clients by \u003ca href=\"https://github.com/daemonfire300\"\u003e\u003ccode\u003e@​daemonfire300\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4202\"\u003edexidp/dex#4202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e:bug: remove extra method=\u0026quot;get\u0026quot; from device-code template by \u003ca href=\"https://github.com/tuminoid\"\u003e\u003ccode\u003e@​tuminoid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4145\"\u003edexidp/dex#4145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[oidc] pass httpClient to the TokenIdentity context by \u003ca href=\"https://github.com/marriva\"\u003e\u003ccode\u003e@​marriva\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4223\"\u003edexidp/dex#4223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.3 by \u003ca href=\"https://github.com/philBrown\"\u003e\u003ccode\u003e@​philBrown\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4224\"\u003edexidp/dex#4224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code should not require scope by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4203\"\u003edexidp/dex#4203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code pending HTTP response by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4204\"\u003edexidp/dex#4204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow compilation without CGO by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4266\"\u003edexidp/dex#4266\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.2 by \u003ca href=\"https://github.com/nathanlaceyraft\"\u003e\u003ccode\u003e@​nathanlaceyraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4146\"\u003edexidp/dex#4146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4180\"\u003edexidp/dex#4180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/net from 0.40.0 to 0.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4171\"\u003edexidp/dex#4171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4174\"\u003edexidp/dex#4174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4179\"\u003edexidp/dex#4179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.30.0 to 0.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4167\"\u003edexidp/dex#4167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4162\"\u003edexidp/dex#4162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/build-push-action from 6.17.0 to 6.18.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4155\"\u003edexidp/dex#4155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump distroless/static-debian12 from \u003ccode\u003e188ddfb\u003c/code\u003e to \u003ccode\u003e627d6c5\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4181\"\u003edexidp/dex#4181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.8.2 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4187\"\u003edexidp/dex#4187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/api from 0.233.0 to 0.238.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4186\"\u003edexidp/dex#4186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4185\"\u003edexidp/dex#4185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.0 to 0.20.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4184\"\u003edexidp/dex#4184\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-sql-driver/mysql from 1.9.2 to 1.9.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4183\"\u003edexidp/dex#4183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4175\"\u003edexidp/dex#4175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.21.3 to 3.22.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4163\"\u003edexidp/dex#4163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /api/v2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4170\"\u003edexidp/dex#4170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4189\"\u003edexidp/dex#4189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump mheap/github-action-required-labels from 5.5.0 to 5.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4190\"\u003edexidp/dex#4190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4219\"\u003edexidp/dex#4219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.1 to 0.20.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4205\"\u003edexidp/dex#4205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.9.0 to 3.9.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4225\"\u003edexidp/dex#4225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.31.0 to 0.32.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4210\"\u003edexidp/dex#4210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-jose/go-jose/v4 from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4196\"\u003edexidp/dex#4196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/crypto from 0.39.0 to 0.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4214\"\u003edexidp/dex#4214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.22.0 to 3.22.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4217\"\u003edexidp/dex#4217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4213\"\u003edexidp/dex#4213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/oklog/run from 1.1.0 to 1.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4199\"\u003edexidp/dex#4199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/mattn/go-sqlite3 from 1.14.28 to 1.14.29 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4239\"\u003edexidp/dex#4239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4238\"\u003edexidp/dex#4238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4235\"\u003edexidp/dex#4235\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/2dce75009acfcd9df77d57f2d144aae999a4c569\"\u003e\u003ccode\u003e2dce750\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4292\"\u003e#4292\u003c/a\u003e from dexidp/dependabot/go_modules/github.com/stretch...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8aa4684f81590325672d0fbc707d9d60ed64de2d\"\u003e\u003ccode\u003e8aa4684\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4293\"\u003e#4293\u003c/a\u003e from dexidp/dependabot/github_actions/aquasecurity/t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/33f0619a66d08ec08e7642d4df6a058e15af4d7e\"\u003e\u003ccode\u003e33f0619\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4296\"\u003e#4296\u003c/a\u003e from dexidp/dependabot/github_actions/actions/attest...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d95db82a70dbd2b0058c1094930cf592b078c350\"\u003e\u003ccode\u003ed95db82\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4295\"\u003e#4295\u003c/a\u003e from rackerlabs/avoid-hardcoded-image\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/f10f4d6ef8c8b1c81dd9629461c9eb6c8a6980a4\"\u003e\u003ccode\u003ef10f4d6\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ad912d0569b2af157e1645e81235108d41a2802a\"\u003e\u003ccode\u003ead912d0\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.32.0 to 0.33.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/e1da164dd59a476f1271506c1b306de2a331ce97\"\u003e\u003ccode\u003ee1da164\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d4e9d54f41a79cd35a26c3229123d641c37df01d\"\u003e\u003ccode\u003ed4e9d54\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4286\"\u003e#4286\u003c/a\u003e from dexidp/dependabot/go_modules/api/v2/google.gola...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/9b5c87a10063ad7df905f1dfdff8ea6513bce39e\"\u003e\u003ccode\u003e9b5c87a\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/protobuf in /api/v2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/757fd5fbe619916fb01bcd746329b99f1c8f4e28\"\u003e\u003ccode\u003e757fd5f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4290\"\u003e#4290\u003c/a\u003e from dexidp/dependabot/github_actions/actions/depend...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.43.1...v2.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hashicorp/vault` from 1.20.2 to 1.20.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/bobcallaway/sigstore/pull/1218","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bobcallaway%2Fsigstore/issues/1218","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1218/packages"}},{"old_version":"1.20.0","new_version":"1.20.3","update_type":"patch","path":null,"pr_created_at":"2025-09-05T06:13:28.000Z","version_change":"1.20.0 → 1.20.3","issue":{"uuid":"2801591910","node_id":"PR_kwDOA9NUhs6m_OZm","number":994,"state":"open","title":"deps(actions): Bump the docker group across 3 directories with 6 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-05T06:13:28.000Z","updated_at":"2025-09-05T06:13:28.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(actions): Bump","group_name":"docker","update_count":6,"packages":[{"name":"hashicorp/vault","old_version":"1.20.0","new_version":"1.20.3"},{"name":"hashicorp/consul","old_version":"1.21.2","new_version":"1.21.4"},{"name":"docker","old_version":"28.3","new_version":"28.4"},{"name":"docker/buildx-bin","old_version":"0.25.0","new_version":"0.28.0"},{"name":"golangci/golangci-lint","old_version":"v2.2.2-alpine","new_version":"v2.4.0-alpine"},{"name":"golang","old_version":"1.24-alpine","new_version":"1.25-alpine"}],"path":null,"ecosystem":"docker"},"body":"Bumps the docker group with 6 updates in the /ci-builder directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| hashicorp/vault | `1.20.0` | `1.20.3` |\n| hashicorp/consul | `1.21.2` | `1.21.4` |\n| docker | `28.3` | `28.4` |\n| docker/buildx-bin | `0.25.0` | `0.28.0` |\n| golangci/golangci-lint | `v2.2.2-alpine` | `v2.4.0-alpine` |\n| golang | `1.24-alpine` | `1.25-alpine` |\n\nBumps the docker group with 2 updates in the /dockerfiles-builder directory: docker and docker/buildx-bin.\nBumps the docker group with 6 updates in the /gomplate-ci-build directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| hashicorp/vault | `1.20.0` | `1.20.3` |\n| hashicorp/consul | `1.21.2` | `1.21.4` |\n| docker | `28.3` | `28.4` |\n| docker/buildx-bin | `0.25.0` | `0.28.0` |\n| golangci/golangci-lint | `v2.2.2-alpine` | `v2.4.0-alpine` |\n| golang | `1.24` | `1.25` |\n\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24-alpine to 1.25-alpine\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24-alpine to 1.25-alpine\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24 to 1.25\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.3\n\nUpdates `hashicorp/consul` from 1.21.2 to 1.21.4\n\nUpdates `docker` from 28.3 to 28.4\n\nUpdates `docker/buildx-bin` from 0.25.0 to 0.28.0\n\nUpdates `golangci/golangci-lint` from v2.2.2-alpine to v2.4.0-alpine\n\nUpdates `golang` from 1.24 to 1.25\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/hairyhenderson/dockerfiles/pull/994","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hairyhenderson%2Fdockerfiles/issues/994","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/994/packages"}},{"old_version":"1.20.2","new_version":"1.20.3","update_type":"patch","path":"/test/e2e","pr_created_at":"2025-09-02T10:26:00.000Z","version_change":"1.20.2 → 1.20.3","issue":{"uuid":"2792119322","node_id":"PR_kwDOFC8iNM6mbFwa","number":2160,"state":"open","title":"build(deps): Bump the all group in /test/e2e with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-02T10:26:00.000Z","updated_at":"2025-09-02T10:31:42.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"dexidp/dex","old_version":"v2.43.1","new_version":"v2.44.0","repository_url":"https://github.com/dexidp/dex"},{"name":"hashicorp/vault","old_version":"1.20.2","new_version":"1.20.3"}],"path":"/test/e2e","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 2 updates: [dexidp/dex](https://github.com/dexidp/dex) and hashicorp/vault.\n\nUpdates `dexidp/dex` from v2.43.1 to v2.44.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.44.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow server startup with partial connector failures by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4159\"\u003edexidp/dex#4159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd recursive LDAP parent group search (AD-style hierarchy across all LDAPs) by \u003ca href=\"https://github.com/EthanDieterich\"\u003e\u003ccode\u003e@​EthanDieterich\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4113\"\u003edexidp/dex#4113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add ModifyGroupNames claimMutation to oidc connector by \u003ca href=\"https://github.com/peschmae\"\u003e\u003ccode\u003e@​peschmae\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4144\"\u003edexidp/dex#4144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eauthproxy connector: add support for specifying group header separator by \u003ca href=\"https://github.com/a-buck\"\u003e\u003ccode\u003e@​a-buck\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3745\"\u003edexidp/dex#3745\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: join issuer URL with discovery path without extra slash after issuer URL by \u003ca href=\"https://github.com/vizv\"\u003e\u003ccode\u003e@​vizv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4263\"\u003edexidp/dex#4263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: grpc api list clients by \u003ca href=\"https://github.com/daemonfire300\"\u003e\u003ccode\u003e@​daemonfire300\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4202\"\u003edexidp/dex#4202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e:bug: remove extra method=\u0026quot;get\u0026quot; from device-code template by \u003ca href=\"https://github.com/tuminoid\"\u003e\u003ccode\u003e@​tuminoid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4145\"\u003edexidp/dex#4145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[oidc] pass httpClient to the TokenIdentity context by \u003ca href=\"https://github.com/marriva\"\u003e\u003ccode\u003e@​marriva\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4223\"\u003edexidp/dex#4223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.3 by \u003ca href=\"https://github.com/philBrown\"\u003e\u003ccode\u003e@​philBrown\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4224\"\u003edexidp/dex#4224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code should not require scope by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4203\"\u003edexidp/dex#4203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: device code pending HTTP response by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4204\"\u003edexidp/dex#4204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAllow compilation without CGO by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4266\"\u003edexidp/dex#4266\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eResolve CVE by updating gomplate to 4.3.2 by \u003ca href=\"https://github.com/nathanlaceyraft\"\u003e\u003ccode\u003e@​nathanlaceyraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4146\"\u003edexidp/dex#4146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/attest-build-provenance from 2.3.0 to 2.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4180\"\u003edexidp/dex#4180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/net from 0.40.0 to 0.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4171\"\u003edexidp/dex#4171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4174\"\u003edexidp/dex#4174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4179\"\u003edexidp/dex#4179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.30.0 to 0.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4167\"\u003edexidp/dex#4167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4162\"\u003edexidp/dex#4162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/build-push-action from 6.17.0 to 6.18.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4155\"\u003edexidp/dex#4155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump distroless/static-debian12 from \u003ccode\u003e188ddfb\u003c/code\u003e to \u003ccode\u003e627d6c5\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4181\"\u003edexidp/dex#4181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.8.2 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4187\"\u003edexidp/dex#4187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/api from 0.233.0 to 0.238.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4186\"\u003edexidp/dex#4186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.10.0 to 3.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4185\"\u003edexidp/dex#4185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.0 to 0.20.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4184\"\u003edexidp/dex#4184\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-sql-driver/mysql from 1.9.2 to 1.9.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4183\"\u003edexidp/dex#4183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4175\"\u003edexidp/dex#4175\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.21.3 to 3.22.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4163\"\u003edexidp/dex#4163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.72.1 to 1.73.0 in /api/v2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4170\"\u003edexidp/dex#4170\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/setup-buildx-action from 3.11.0 to 3.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4189\"\u003edexidp/dex#4189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump mheap/github-action-required-labels from 5.5.0 to 5.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4190\"\u003edexidp/dex#4190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4219\"\u003edexidp/dex#4219\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump anchore/sbom-action from 0.20.1 to 0.20.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4205\"\u003edexidp/dex#4205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.9.0 to 3.9.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4225\"\u003edexidp/dex#4225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.31.0 to 0.32.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4210\"\u003edexidp/dex#4210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-jose/go-jose/v4 from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4196\"\u003edexidp/dex#4196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/crypto from 0.39.0 to 0.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4214\"\u003edexidp/dex#4214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump alpine from 3.22.0 to 3.22.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4217\"\u003edexidp/dex#4217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the etcd group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4213\"\u003edexidp/dex#4213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/oklog/run from 1.1.0 to 1.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4199\"\u003edexidp/dex#4199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/mattn/go-sqlite3 from 1.14.28 to 1.14.29 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4239\"\u003edexidp/dex#4239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4238\"\u003edexidp/dex#4238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump google.golang.org/grpc from 1.73.0 to 1.74.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4235\"\u003edexidp/dex#4235\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/2dce75009acfcd9df77d57f2d144aae999a4c569\"\u003e\u003ccode\u003e2dce750\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4292\"\u003e#4292\u003c/a\u003e from dexidp/dependabot/go_modules/github.com/stretch...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8aa4684f81590325672d0fbc707d9d60ed64de2d\"\u003e\u003ccode\u003e8aa4684\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4293\"\u003e#4293\u003c/a\u003e from dexidp/dependabot/github_actions/aquasecurity/t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/33f0619a66d08ec08e7642d4df6a058e15af4d7e\"\u003e\u003ccode\u003e33f0619\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4296\"\u003e#4296\u003c/a\u003e from dexidp/dependabot/github_actions/actions/attest...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d95db82a70dbd2b0058c1094930cf592b078c350\"\u003e\u003ccode\u003ed95db82\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4295\"\u003e#4295\u003c/a\u003e from rackerlabs/avoid-hardcoded-image\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/f10f4d6ef8c8b1c81dd9629461c9eb6c8a6980a4\"\u003e\u003ccode\u003ef10f4d6\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/attest-build-provenance from 2.4.0 to 3.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ad912d0569b2af157e1645e81235108d41a2802a\"\u003e\u003ccode\u003ead912d0\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.32.0 to 0.33.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/e1da164dd59a476f1271506c1b306de2a331ce97\"\u003e\u003ccode\u003ee1da164\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/d4e9d54f41a79cd35a26c3229123d641c37df01d\"\u003e\u003ccode\u003ed4e9d54\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4286\"\u003e#4286\u003c/a\u003e from dexidp/dependabot/go_modules/api/v2/google.gola...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/9b5c87a10063ad7df905f1dfdff8ea6513bce39e\"\u003e\u003ccode\u003e9b5c87a\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/protobuf in /api/v2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/757fd5fbe619916fb01bcd746329b99f1c8f4e28\"\u003e\u003ccode\u003e757fd5f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4290\"\u003e#4290\u003c/a\u003e from dexidp/dependabot/github_actions/actions/depend...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.43.1...v2.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `hashicorp/vault` from 1.20.2 to 1.20.3\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/sigstore/pull/2160","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fsigstore/issues/2160","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2160/packages"}},{"old_version":"1.19.1","new_version":"1.20.3","update_type":"minor","path":null,"pr_created_at":"2025-09-01T05:00:17.000Z","version_change":"1.19.1 → 1.20.3","issue":{"uuid":"2788498647","node_id":"PR_kwDON79JMM6mNRzX","number":93,"state":"open","title":"fix(deps): bump hashicorp/vault from 1.19.1 to 1.20.3","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-09-01T05:00:17.000Z","updated_at":"2025-09-01T05:00:18.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.19.1","new_version":"1.20.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.19.1 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.19.1\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/soerenschneider/scripts/pull/93","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/soerenschneider%2Fscripts/issues/93","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/93/packages"}},{"old_version":"1.20.1","new_version":"1.20.3","update_type":"patch","path":null,"pr_created_at":"2025-08-29T10:03:19.000Z","version_change":"1.20.1 → 1.20.3","issue":{"uuid":"2784354795","node_id":"PR_kwDOGTJYoM6l9eHr","number":132,"state":"open","title":"chore(deps): bump hashicorp/vault from 1.20.1 to 1.20.3","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-29T10:03:19.000Z","updated_at":"2025-08-29T10:03:20.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.20.1","new_version":"1.20.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.1 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.1\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/TJM/vault-gcp-secrets/pull/132","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/TJM%2Fvault-gcp-secrets/issues/132","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/132/packages"}},{"old_version":"1.20.2","new_version":"1.20.3","update_type":"patch","path":null,"pr_created_at":"2025-08-29T03:08:24.000Z","version_change":"1.20.2 → 1.20.3","issue":{"uuid":"3365287458","node_id":"PR_kwDOF3eXvs6l6Ou2","number":9980,"state":"closed","title":"Bump hashicorp/vault from 1.20.2 to 1.20.3","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-08-29T21:16:57.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-29T03:08:24.000Z","updated_at":"2025-08-29T21:16:57.000Z","time_to_close":65313,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.20.2","new_version":"1.20.3","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.20.2 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.20.2\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/noroutine/upstream/pull/9980","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/noroutine%2Fupstream/issues/9980","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9980/packages"}},{"old_version":"1.15.4","new_version":"1.20.3","update_type":"minor","path":"/src/vault-aws","pr_created_at":"2025-08-28T21:03:08.000Z","version_change":"1.15.4 → 1.20.3","issue":{"uuid":"3364667593","node_id":"PR_kwDOG666PM6l4L3C","number":232,"state":"closed","title":"Bump hashicorp/vault from 1.15.4 to 1.20.3 in /src/vault-aws","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-24T21:03:03.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-28T21:03:08.000Z","updated_at":"2025-09-24T21:03:03.000Z","time_to_close":2332795,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"hashicorp/vault","old_version":"1.15.4","new_version":"1.20.3","repository_url":null}],"path":"/src/vault-aws","ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.15.4 to 1.20.3.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.15.4\u0026new-version=1.20.3)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/infrablocks/docker-vault-aws/pull/232","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/infrablocks%2Fdocker-vault-aws/issues/232","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/232/packages"}},{"old_version":"1.20.0","new_version":"1.20.2","update_type":"patch","path":"/test/e2e","pr_created_at":"2025-08-12T01:15:29.000Z","version_change":"1.20.0 → 1.20.2","issue":{"uuid":"2737317994","node_id":"PR_kwDOFC8iNM6jKChq","number":2133,"state":"open","title":"build(deps): Bump the all group in /test/e2e with 2 updates","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":0,"pull_request":true,"closed_at":null,"author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-12T01:15:29.000Z","updated_at":"2025-08-12T12:32:58.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"all","update_count":2,"packages":[{"name":"localstack/localstack","old_version":"4.6.0","new_version":"4.7.0"},{"name":"hashicorp/vault","old_version":"1.20.0","new_version":"1.20.2"}],"path":"/test/e2e","ecosystem":"docker"},"body":"Bumps the all group in /test/e2e with 2 updates: localstack/localstack and hashicorp/vault.\n\nUpdates `localstack/localstack` from 4.6.0 to 4.7.0\n\nUpdates `hashicorp/vault` from 1.20.0 to 1.20.2\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/sigstore/sigstore/pull/2133","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sigstore%2Fsigstore/issues/2133","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2133/packages"}},{"old_version":"1.19.1","new_version":"1.20.2","update_type":"minor","path":null,"pr_created_at":"2025-08-11T04:09:54.000Z","version_change":"1.19.1 → 1.20.2","issue":{"uuid":"2734094367","node_id":"PR_kwDON79JMM6i9vgf","number":84,"state":"closed","title":"fix(deps): bump hashicorp/vault from 1.19.1 to 1.20.2","user":"dependabot[bot]","labels":["dependencies","docker"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2025-09-01T05:00:20.000Z","author_association":"CONTRIBUTOR","state_reason":null,"created_at":"2025-08-11T04:09:54.000Z","updated_at":"2025-09-01T05:00:20.000Z","time_to_close":1817426,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"hashicorp/vault","old_version":"1.19.1","new_version":"1.20.2","repository_url":null}],"path":null,"ecosystem":"docker"},"body":"Bumps hashicorp/vault from 1.19.1 to 1.20.2.\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=hashicorp/vault\u0026package-manager=docker\u0026previous-version=1.19.1\u0026new-version=1.20.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/soerenschneider/scripts/pull/84","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/soerenschneider%2Fscripts/issues/84","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/84/packages"}}]}