{"id":23550,"name":"github.com/CycloneDX/cyclonedx-go","ecosystem":"go","repository_url":"https://github.com/CycloneDX/cyclonedx-go","issues_count":163,"created_at":"2025-06-07T03:20:49.888Z","updated_at":"2025-06-07T03:20:49.888Z","purl":"pkg:golang/github.com/CycloneDX/cyclonedx-go","metadata":{"id":3881643,"name":"github.com/CycloneDX/cyclonedx-go","ecosystem":"go","description":"This example demonstrates how to decode and work with BOMs in CycloneDX format.\n\n\nThis example demonstrates how to create and encode a BOM in CycloneDX format.","homepage":"https://github.com/CycloneDX/cyclonedx-go","licenses":"Apache-2.0","normalized_licenses":["Apache-2.0"],"repository_url":"https://github.com/CycloneDX/cyclonedx-go","keywords_array":[],"namespace":"github.com/CycloneDX","versions_count":16,"first_release_published_at":"2021-03-06T13:56:01.000Z","latest_release_published_at":"2024-12-13T14:41:43.000Z","latest_release_number":"v0.9.2","last_synced_at":"2025-05-22T04:04:22.032Z","created_at":"2022-04-11T23:04:30.829Z","updated_at":"2025-05-22T04:04:22.032Z","registry_url":"https://pkg.go.dev/github.com/CycloneDX/cyclonedx-go","install_command":"go get github.com/CycloneDX/cyclonedx-go","documentation_url":"https://pkg.go.dev/github.com/CycloneDX/cyclonedx-go#section-documentation","metadata":{},"repo_metadata":{"uuid":"343748564","full_name":"CycloneDX/cyclonedx-go","owner":"CycloneDX","description":"Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)","archived":false,"fork":false,"pushed_at":"2023-03-16T09:58:18.000Z","size":328,"stargazers_count":42,"open_issues_count":7,"forks_count":9,"subscribers_count":6,"default_branch":"master","last_synced_at":"2023-03-17T14:53:08.516Z","etag":null,"topics":["bill-of-materials","bom","golang","mbom","obom","owasp","saasbom","sbom","software-bill-of-materials","vex"],"latest_commit_sha":null,"homepage":"https://cyclonedx.org/","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"logo_url":null,"metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":"CODEOWNERS","security":null,"support":null}},"created_at":"2021-03-02T11:20:02.000Z","updated_at":"2023-03-10T17:03:19.000Z","dependencies_parsed_at":"2023-02-05T18:30:51.057Z","dependency_job_id":null,"html_url":"https://github.com/CycloneDX/cyclonedx-go","commit_stats":null,"repository_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fcyclonedx-go","tags_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fcyclonedx-go/tags","manifests_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/CycloneDX%2Fcyclonedx-go/manifests","owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/CycloneDX","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":108921946,"host_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names"}},"repo_metadata_updated_at":"2023-03-21T19:11:52.293Z","dependent_packages_count":501,"downloads":null,"downloads_period":null,"dependent_repos_count":520,"rankings":{"downloads":null,"dependent_repos_count":0.3102126559175535,"dependent_packages_count":0.21725868660334613,"stargazers_count":6.284427164923905,"forks_count":6.80311231056011,"docker_downloads_count":0.15046362165038726,"average":2.75309488793106},"purl":"pkg:golang/github.com/%21cyclone%21d%21x/cyclonedx-go","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/go/github.com/CycloneDX/cyclonedx-go","docker_dependents_count":641,"docker_downloads_count":595787889,"usage_url":"https://repos.ecosyste.ms/usage/go/github.com/CycloneDX/cyclonedx-go","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/go/github.com/CycloneDX/cyclonedx-go/dependencies","status":null,"funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2FCycloneDX%2Fcyclonedx-go/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2FCycloneDX%2Fcyclonedx-go/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2FCycloneDX%2Fcyclonedx-go/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2FCycloneDX%2Fcyclonedx-go/related_packages","maintainers":[],"registry":{"name":"proxy.golang.org","url":"https://proxy.golang.org","ecosystem":"go","default":true,"packages_count":1886302,"maintainers_count":0,"namespaces_count":723964,"keywords_count":98339,"github":"golang","metadata":{"funded_packages_count":39348},"icon_url":"https://github.com/golang.png","created_at":"2022-04-04T15:19:22.939Z","updated_at":"2025-06-07T05:37:05.003Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/namespaces"}},"unique_repositories_count":64,"unique_repositories_count_past_30_days":3,"recent_issues":[{"uuid":"4559678904","node_id":"PR_kwDOSaHso87hMC9j","number":24,"state":"closed","title":"chore(deps)(deps): bump the patch-and-minor group across 1 directory with 6 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-08T00:35:44.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-01T01:23:40.000Z","updated_at":"2026-06-08T00:35:46.000Z","time_to_close":601924,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): bump","group_name":"patch-and-minor","update_count":6,"packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/elazarl/goproxy","old_version":"1.8.3","new_version":"1.8.4","repository_url":"https://github.com/elazarl/goproxy"},{"name":"github.com/gorilla/websocket","old_version":"1.5.1","new_version":"1.5.3","repository_url":"https://github.com/gorilla/websocket"},{"name":"github.com/open-policy-agent/opa","old_version":"1.15.2","new_version":"1.17.0","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/rs/zerolog","old_version":"1.35.0","new_version":"1.35.1","repository_url":"https://github.com/rs/zerolog"},{"name":"github.com/sigstore/protobuf-specs","old_version":"0.5.0","new_version":"0.5.1","repository_url":"https://github.com/sigstore/protobuf-specs"}],"path":null,"ecosystem":"go"},"body":"Bumps the patch-and-minor group with 6 updates in the /cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/elazarl/goproxy](https://github.com/elazarl/goproxy) | `1.8.3` | `1.8.4` |\n| [github.com/gorilla/websocket](https://github.com/gorilla/websocket) | `1.5.1` | `1.5.3` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.15.2` | `1.17.0` |\n| [github.com/rs/zerolog](https://github.com/rs/zerolog) | `1.35.0` | `1.35.1` |\n| [github.com/sigstore/protobuf-specs](https://github.com/sigstore/protobuf-specs) | `0.5.0` | `0.5.1` |\n\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/elazarl/goproxy` from 1.8.3 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/elazarl/goproxy/releases\"\u003egithub.com/elazarl/goproxy's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: don't set Transfer-Encoding: chunked on 304 responses by \u003ca href=\"https://github.com/Yanhu007\"\u003e\u003ccode\u003e@​Yanhu007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/770\"\u003eelazarl/goproxy#770\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add missing godoc comments to exported symbols by \u003ca href=\"https://github.com/scovl\"\u003e\u003ccode\u003e@​scovl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/768\"\u003eelazarl/goproxy#768\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp: forward upstream response trailers by \u003ca href=\"https://github.com/0b01\"\u003e\u003ccode\u003e@​0b01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/773\"\u003eelazarl/goproxy#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove insecure skip verify from origin transport by \u003ca href=\"https://github.com/ErikPelli\"\u003e\u003ccode\u003e@​ErikPelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/774\"\u003eelazarl/goproxy#774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid chunked response when there is http.NoBody  by \u003ca href=\"https://github.com/ErikPelli\"\u003e\u003ccode\u003e@​ErikPelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/776\"\u003eelazarl/goproxy#776\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(https): close client connection when target connection errors by \u003ca href=\"https://github.com/wucm667\"\u003e\u003ccode\u003e@​wucm667\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/779\"\u003eelazarl/goproxy#779\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: restore examples module health and clarify sample apps by \u003ca href=\"https://github.com/Thiago-Tertuliano\"\u003e\u003ccode\u003e@​Thiago-Tertuliano\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/780\"\u003eelazarl/goproxy#780\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: append headers instead of overwriting when keepDestHeaders is true by \u003ca href=\"https://github.com/Yanhu007\"\u003e\u003ccode\u003e@​Yanhu007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/771\"\u003eelazarl/goproxy#771\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Yanhu007\"\u003e\u003ccode\u003e@​Yanhu007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/770\"\u003eelazarl/goproxy#770\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scovl\"\u003e\u003ccode\u003e@​scovl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/768\"\u003eelazarl/goproxy#768\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/0b01\"\u003e\u003ccode\u003e@​0b01\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/773\"\u003eelazarl/goproxy#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wucm667\"\u003e\u003ccode\u003e@​wucm667\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/779\"\u003eelazarl/goproxy#779\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Thiago-Tertuliano\"\u003e\u003ccode\u003e@​Thiago-Tertuliano\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/780\"\u003eelazarl/goproxy#780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/elazarl/goproxy/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/elazarl/goproxy/compare/v1.8.3...v1.8.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/636207d4c044d260140a1f7a6f13efb609dbadc0\"\u003e\u003ccode\u003e636207d\u003c/code\u003e\u003c/a\u003e fix: append headers instead of overwriting when keepDestHeaders is true (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/771\"\u003e#771\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/6584eeeb52783bbb3ef0ca44c6edc3241e65bc9d\"\u003e\u003ccode\u003e6584eee\u003c/code\u003e\u003c/a\u003e fix: restore examples module health and clarify sample apps (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/038e3b90031f25eead7d60a7db162de131321fe7\"\u003e\u003ccode\u003e038e3b9\u003c/code\u003e\u003c/a\u003e fix(https): close client connection when target connection errors (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/779\"\u003e#779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/e493e1c4c552ece20c55b21b6cffcaf6d8fe7794\"\u003e\u003ccode\u003ee493e1c\u003c/code\u003e\u003c/a\u003e Avoid chunked response when there is http.NoBody  (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/f97c26404238ee206e3d926b572b45c89879784b\"\u003e\u003ccode\u003ef97c264\u003c/code\u003e\u003c/a\u003e Remove insecure skip verify from origin transport (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/774\"\u003e#774\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/a89a8d68cf9254355a755b3dac842be2e92947ae\"\u003e\u003ccode\u003ea89a8d6\u003c/code\u003e\u003c/a\u003e http: forward upstream response trailers (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/7d1c3b5d3ea4b08c50e5cce34c3655a9b1d97768\"\u003e\u003ccode\u003e7d1c3b5\u003c/code\u003e\u003c/a\u003e Add test to verify that the response handler can add a value to a header with...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/5013f6d9188082dc82dd1f1905fd3289125346cd\"\u003e\u003ccode\u003e5013f6d\u003c/code\u003e\u003c/a\u003e docs: add missing godoc comments to exported symbols (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/768\"\u003e#768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/3c677be915208ae25a9ab4d2fb650e6247040dcd\"\u003e\u003ccode\u003e3c677be\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/770\"\u003e#770\u003c/a\u003e from Yanhu007/fix/304-transfer-encoding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/503e66e58a23cb92286a268ffd080e64dace4dc6\"\u003e\u003ccode\u003e503e66e\u003c/code\u003e\u003c/a\u003e fix: don't set Transfer-Encoding: chunked on 304 responses\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/elazarl/goproxy/compare/v1.8.3...v1.8.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gorilla/websocket` from 1.5.1 to 1.5.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gorilla/websocket/releases\"\u003egithub.com/gorilla/websocket's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.3\u003c/h2\u003e\n\u003ch2\u003eImportant change\u003c/h2\u003e\n\u003cp\u003eThis reverts the websockets package back to \u003ca href=\"https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\"\u003ehttps://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(echoreadall): fix function echoReadAll comment by \u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emake tests parallel by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrader.Upgrade: use http.ResposnseController by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/871\"\u003egorilla/websocket#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not handle network error in \u003ccode\u003eSetCloseHandler()\u003c/code\u003e by \u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: reduce timer in write_control by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/879\"\u003egorilla/websocket#879\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: lint example code by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/890\"\u003egorilla/websocket#890\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: format message type by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/889\"\u003egorilla/websocket#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove hideTempErr to allow downstream users to check for errors like net.ErrClosed by \u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not timeout when WriteControl deadline is zero in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/898\"\u003egorilla/websocket#898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExcludes errchecks linter by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn errors instead of printing to logs by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/897\"\u003egorilla/websocket#897\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot; by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/908\"\u003egorilla/websocket#908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes broken random value generation by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/926\"\u003egorilla/websocket#926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReverts back to v1.5.0 by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/929\"\u003egorilla/websocket#929\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ehttps://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/ce903f6d1d961af3a8602f2842c8b1c3fca58c4d\"\u003e\u003ccode\u003ece903f6\u003c/code\u003e\u003c/a\u003e Reverts to v1.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/9ec25ca502ec881a7e873d3cdf35da60eab22037\"\u003e\u003ccode\u003e9ec25ca\u003c/code\u003e\u003c/a\u003e fixes broken random value generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/1bddf2e0dba6f35492b0f5614905b291cd0ab88d\"\u003e\u003ccode\u003e1bddf2e\u003c/code\u003e\u003c/a\u003e bumps go version \u0026amp; removes deprecated module usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/750bf92096b4cd4d75082948a4e143f303a65390\"\u003e\u003ccode\u003e750bf92\u003c/code\u003e\u003c/a\u003e adds GHA \u0026amp; Makefile configs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2c246b2ec6f86b53889c79022fec8dabe0a20bb\"\u003e\u003ccode\u003eb2c246b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/09a6bab4667fc302c7f23ad770ce48be6fc2d15f\"\u003e\u003ccode\u003e09a6bab\u003c/code\u003e\u003c/a\u003e removing error handling while closing connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/58af150309a40ad57463b8087fe33d59d5a490d3\"\u003e\u003ccode\u003e58af150\u003c/code\u003e\u003c/a\u003e return errors instead of printing to logs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/e5f1a0aad0accdff7dc9131fdcce912e28d8f4d5\"\u003e\u003ccode\u003ee5f1a0a\u003c/code\u003e\u003c/a\u003e excludes errchecks linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2a86a174473e870c9fcc3eaba8957689090d2cc\"\u003e\u003ccode\u003eb2a86a1\u003c/code\u003e\u003c/a\u003e Do not timeout when WriteControl deadline is zero\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/695e9095ce8736ac99c83939ca6b0fe93768f680\"\u003e\u003ccode\u003e695e909\u003c/code\u003e\u003c/a\u003e Remove hideTempErr to allow downstream users to check for errors like net.Err...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/open-policy-agent/opa` from 1.15.2 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/releases\"\u003egithub.com/open-policy-agent/opa's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.17.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes.  Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eA new \u003ccode\u003efuture.keywords.not\u003c/code\u003e import that adds improved semantics to the \u003ccode\u003enot\u003c/code\u003e keyword.\u003c/li\u003e\n\u003cli\u003eRule Labels in Decision Logs\u003c/li\u003e\n\u003cli\u003ePublished json schema for IR and bundle manifest\u003c/li\u003e\n\u003cli\u003eDropped automaxprocs and x/net dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImproved Negation Semantics (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8387\"\u003e#8387\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eThis OPA release introduces a new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/keywords/not#improved-negation-semantics\"\u003e\u003ccode\u003efuture.keywords.not\u003c/code\u003e import\u003c/a\u003e\nthat fixes a long-standing semantic issue with negation in Rego.\u003c/p\u003e\n\u003cp\u003eWithout the import, the compiler expands a negated composite expression like\n\u003ccode\u003enot f(g(input.x))\u003c/code\u003e into a series of sub-expressions evaluated \u003cem\u003ebefore\u003c/em\u003e the\n\u003ccode\u003enot\u003c/code\u003e:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003e__local0__ = input.x\r\ng(__local0__, __local1__)\r\nnot f(__local1__)\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eIf any sub-expression fails — for example, \u003ccode\u003einput.x\u003c/code\u003e is undefined or \u003ccode\u003eg\u003c/code\u003e\nproduces an undefined result — the entire rule fails rather than the \u003ccode\u003enot\u003c/code\u003e succeeding.\nThis is unintuitive: the user's intent is \u0026quot;the condition does not hold,\u0026quot; but\nan undefined intermediate value causes a silent failure instead of the expected\n\u003ccode\u003enot\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eWith \u003ccode\u003eimport future.keywords.not\u003c/code\u003e, composite-expression negation wraps the full compiler\nexpansion in an implicit body:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003enot { __local0__ = input.x; g(__local0__, __local1__); f(__local1__) }\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eNow, if \u003cem\u003eany\u003c/em\u003e sub-expression is undefined or fails, the body is unsatisfiable\nand the \u003ccode\u003enot\u003c/code\u003e expression succeeds; matching the intuition that \u0026quot;the condition does not hold.\u0026quot;\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eUsers are recommended to import \u003ccode\u003efuture.keywords.not\u003c/code\u003e whenever the \u003ccode\u003enot\u003c/code\u003e keyword is used in a policy.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eAuthored by \u003ca href=\"https://github.com/johanfylling\"\u003e\u003ccode\u003e@​johanfylling\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRule Labels in Decision Logs (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eRule annotations now support a \u003ccode\u003elabels\u003c/code\u003e field. Labels from all successfully evaluated\nrules are collected and included in each decision log entry as a top-level \u003ccode\u003erule_labels\u003c/code\u003e\narray. Each element is the merged label map for one successfully evaluated rule, with\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md\"\u003egithub.com/open-policy-agent/opa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.17.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes.  Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eA new \u003ccode\u003efuture.keywords.not\u003c/code\u003e import that adds improved semantics to the \u003ccode\u003enot\u003c/code\u003e keyword.\u003c/li\u003e\n\u003cli\u003eRule Labels in Decision Logs\u003c/li\u003e\n\u003cli\u003ePublished json schema for IR and bundle manifest\u003c/li\u003e\n\u003cli\u003eDropped automaxprocs and x/net dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImproved Negation Semantics (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8387\"\u003e#8387\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eThis OPA release introduces a new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/keywords/not#improved-negation-semantics\"\u003e\u003ccode\u003efuture.keywords.not\u003c/code\u003e import\u003c/a\u003e\nthat fixes a long-standing semantic issue with negation in Rego.\u003c/p\u003e\n\u003cp\u003eWithout the import, the compiler expands a negated composite expression like\n\u003ccode\u003enot f(g(input.x))\u003c/code\u003e into a series of sub-expressions evaluated \u003cem\u003ebefore\u003c/em\u003e the\n\u003ccode\u003enot\u003c/code\u003e:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003e__local0__ = input.x\ng(__local0__, __local1__)\nnot f(__local1__)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eIf any sub-expression fails — for example, \u003ccode\u003einput.x\u003c/code\u003e is undefined or \u003ccode\u003eg\u003c/code\u003e\nproduces an undefined result — the entire rule fails rather than the \u003ccode\u003enot\u003c/code\u003e succeeding.\nThis is unintuitive: the user's intent is \u0026quot;the condition does not hold,\u0026quot; but\nan undefined intermediate value causes a silent failure instead of the expected\n\u003ccode\u003enot\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eWith \u003ccode\u003eimport future.keywords.not\u003c/code\u003e, composite-expression negation wraps the full compiler\nexpansion in an implicit body:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003enot { __local0__ = input.x; g(__local0__, __local1__); f(__local1__) }\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eNow, if \u003cem\u003eany\u003c/em\u003e sub-expression is undefined or fails, the body is unsatisfiable\nand the \u003ccode\u003enot\u003c/code\u003e expression succeeds; matching the intuition that \u0026quot;the condition does not hold.\u0026quot;\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eUsers are recommended to import \u003ccode\u003efuture.keywords.not\u003c/code\u003e whenever the \u003ccode\u003enot\u003c/code\u003e keyword is used in a policy.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eAuthored by \u003ca href=\"https://github.com/johanfylling\"\u003e\u003ccode\u003e@​johanfylling\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRule Labels in Decision Logs (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eRule annotations now support a \u003ccode\u003elabels\u003c/code\u003e field. Labels from all successfully evaluated\nrules are collected and included in each decision log entry as a top-level \u003ccode\u003erule_labels\u003c/code\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/64a3625d33bc6ad8e7c40df03b76ce2fb3ab4d21\"\u003e\u003ccode\u003e64a3625\u003c/code\u003e\u003c/a\u003e Release v1.17.0 (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8710\"\u003e#8710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/68c9de5da00ea9d631c50327c709d5d7e8844bba\"\u003e\u003ccode\u003e68c9de5\u003c/code\u003e\u003c/a\u003e benchmarks: tweak per-PR benchmark regression check based on pr-check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/7fe3066154b7780eac16c290475f8506573a427f\"\u003e\u003ccode\u003e7fe3066\u003c/code\u003e\u003c/a\u003e server: remove dead code (s.partials) (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8708\"\u003e#8708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/37830be801a9ce4ec6d23df33f645bb6095f3043\"\u003e\u003ccode\u003e37830be\u003c/code\u003e\u003c/a\u003e ast,storage/inmem: Add \u003ccode\u003einmem.NewFromASTObject\u003c/code\u003e and add missing string case t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/1661f22ba399e94d08d8fb85218580a61779bdc4\"\u003e\u003ccode\u003e1661f22\u003c/code\u003e\u003c/a\u003e ast: add some schema $ref tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/3e22f562f1e370973c1b6750eff11d06fe554c70\"\u003e\u003ccode\u003e3e22f56\u003c/code\u003e\u003c/a\u003e benchmarks: only run for go changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/13aaeabce2221217cb6c175b269475803740fad2\"\u003e\u003ccode\u003e13aaeab\u003c/code\u003e\u003c/a\u003e benchmarks: move env vars, remove zizmor-ignore comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/93e170868ac37f87696adfc2d7f672a0f1814936\"\u003e\u003ccode\u003e93e1708\u003c/code\u003e\u003c/a\u003e benchmarks: fix PR message, skip tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/4ce3991901eed5b622a21f2f629029727e192ba7\"\u003e\u003ccode\u003e4ce3991\u003c/code\u003e\u003c/a\u003e benchmarks: use go tool machinery, add benchstat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/41df8df4a26d8de7a81bf4c5d78cb94f10a108d5\"\u003e\u003ccode\u003e41df8df\u003c/code\u003e\u003c/a\u003e benchmarks: use benchlab for per-PR feedback\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-policy-agent/opa/compare/v1.15.2...v1.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/rs/zerolog` from 1.35.0 to 1.35.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rs/zerolog/commit/116c8060e034e8d46855354d22db2acbc8df9e1e\"\u003e\u003ccode\u003e116c806\u003c/code\u003e\u003c/a\u003e event: restore Err() logging when ErrorStackMarshaler returns nil (\u003ca href=\"https://redirect.github.com/rs/zerolog/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rs/zerolog/compare/v1.35.0...v1.35.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/protobuf-specs` from 0.5.0 to 0.5.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/protobuf-specs/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/protobuf-specs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ML-DSA-44 algorithm identifier (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/pull/860\"\u003e#860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/3001afe9102b15b04ca1b91efccd613976bdf514\"\u003e\u003ccode\u003e3001afe\u003c/code\u003e\u003c/a\u003e Bump ts to v0.5.1 for new release (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/874\"\u003e#874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/f68ef153e50a5842b6c88c38294ee541825aee58\"\u003e\u003ccode\u003ef68ef15\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/873\"\u003e#873\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/985935846f22a5021b967afd844900e7fb9098e6\"\u003e\u003ccode\u003e9859358\u003c/code\u003e\u003c/a\u003e build(deps): bump gradle-wrapper in /java in the java-deps group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/866\"\u003e#866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/51546ad474b8153975966b617cf9010320db3d17\"\u003e\u003ccode\u003e51546ad\u003c/code\u003e\u003c/a\u003e build(deps): bump ts-proto from 2.11.2 to 2.11.5 in /protoc-builder/hack in t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/8bb3cb3e6c7e64dccaeb0db05052f7ef88a73da4\"\u003e\u003ccode\u003e8bb3cb3\u003c/code\u003e\u003c/a\u003e build(deps): bump the docker-refs group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/867\"\u003e#867\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/9dfb871b0f36911a4aa66ff18143954bec6383b2\"\u003e\u003ccode\u003e9dfb871\u003c/code\u003e\u003c/a\u003e Update GRPC_GATEWAY_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/864\"\u003e#864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/80abc3f2d43989e5171f8e3f790dca757e9964d9\"\u003e\u003ccode\u003e80abc3f\u003c/code\u003e\u003c/a\u003e build(deps): bump the rust-deps group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/869\"\u003e#869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/c24db24a34511f0463a7774cc5d4e73b405fccf0\"\u003e\u003ccode\u003ec24db24\u003c/code\u003e\u003c/a\u003e build(deps): bump homebrew/core/protobuf from 33.4 to 34.1 in /protoc-builder...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/6a50d86ffd80e1047b33a8d48ad3a4bb467465ec\"\u003e\u003ccode\u003e6a50d86\u003c/code\u003e\u003c/a\u003e Update GOOGLEAPIS_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/863\"\u003e#863\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/a2cbebd8d61283f943cfc2acf6aa65b1fae0f755\"\u003e\u003ccode\u003ea2cbebd\u003c/code\u003e\u003c/a\u003e Bump packages for 0.5.1, bump deps (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/862\"\u003e#862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/protobuf-specs/compare/v0.5.0...v0.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/skillledger/skillledger/pull/24","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/skillledger%2Fskillledger/issues/24","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/24/packages"},{"uuid":"4539162287","node_id":"PR_kwDOFu-Xms7gKsQp","number":263,"state":"closed","title":"chore(deps): bump the others group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-01T00:06:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T09:09:13.000Z","updated_at":"2026-06-01T00:06:49.000Z","time_to_close":313055,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"others","update_count":8,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/storage/azblob","old_version":"1.6.4","new_version":"1.7.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/aws/aws-sdk-go-v2/config","old_version":"1.32.17","new_version":"1.32.18","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/google/go-containerregistry","old_version":"0.21.5","new_version":"0.21.6","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/package-url/packageurl-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the others group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/storage/azblob](https://github.com/Azure/azure-sdk-for-go) | `1.6.4` | `1.7.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.32.17` | `1.32.18` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.21.5` | `0.21.6` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.5` | `0.1.6` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/storage/azblob` from 1.6.4 to 1.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/storage/azblob's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/storage/azblob/v1.7.0\u003c/h2\u003e\n\u003ch2\u003e1.7.0 (2026-05-14)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncludes all features from \u003ccode\u003e1.7.0-beta.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/624babab3d2e3a95628afa61d1474a035cc7d094\"\u003e\u003ccode\u003e624baba\u003c/code\u003e\u003c/a\u003e bump azcore version number\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ce7217c3f5f5a2f88f3a5d1ded48da338f3d8d06\"\u003e\u003ccode\u003ece7217c\u003c/code\u003e\u003c/a\u003e Prep for azcore v1.7.0 release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21149\"\u003e#21149\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/62a8079d41783914d9a5f585bcdb6f6b91223e5c\"\u003e\u003ccode\u003e62a8079\u003c/code\u003e\u003c/a\u003e Add support for shallow cloning azcore.Client instances (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21065\"\u003e#21065\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21098\"\u003e#21098\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/47286b065b0e3aa7d367fb20212aad3a143e6343\"\u003e\u003ccode\u003e47286b0\u003c/code\u003e\u003c/a\u003e Add flag to enable skipping of dependency checks (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21146\"\u003e#21146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ee762d4420eb57051cdebe55e55b107dae4f6bfc\"\u003e\u003ccode\u003eee762d4\u003c/code\u003e\u003c/a\u003e Fix populating module name in telemetry policy (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20967\"\u003e#20967\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20971\"\u003e#20971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/02431759c00a99a31e159e9905c392b8f430c897\"\u003e\u003ccode\u003e0243175\u003c/code\u003e\u003c/a\u003e Prep azcore v1.6.1 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20961\"\u003e#20961\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c9d62a1d612cf1f9e6902ddd3c538abd90b955c\"\u003e\u003ccode\u003e9c9d62a\u003c/code\u003e\u003c/a\u003e Increment package version after release of azcore (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20740\"\u003e#20740\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/36f766d2feba70f64bed923c23b57602998e16c8\"\u003e\u003ccode\u003e36f766d\u003c/code\u003e\u003c/a\u003e add sdk/resourcemanager/cosmos/armcosmos live test (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20705\"\u003e#20705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c005ed6159fdf2104077694b5f89e7063a0cc586\"\u003e\u003ccode\u003ec005ed6\u003c/code\u003e\u003c/a\u003e sdk/resourcemanager/network/armnetwork live test (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20331\"\u003e#20331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5fa7df4852a100f4a7502d5064ae54b0aceb8260\"\u003e\u003ccode\u003e5fa7df4\u003c/code\u003e\u003c/a\u003e add sdk/resourcemanager/compute/armcompute live test (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20048\"\u003e#20048\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/storage/azblob/v1.6.4...sdk/azcore/v1.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/config` from 1.32.17 to 1.32.18\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/db9f4e546dfe2f62a6bc3bf54b9da42ebace6372\"\u003e\u003ccode\u003edb9f4e5\u003c/code\u003e\u003c/a\u003e Release 2026-05-22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/34e7ddc9400e830a9ae226a7e3c2161e5ece4f19\"\u003e\u003ccode\u003e34e7ddc\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f9db036cf7b3b8a1ea5eb67c3d296da4b48b6e2b\"\u003e\u003ccode\u003ef9db036\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ae5eae1e3ec46433bd99496bfa6936f8f09a2e72\"\u003e\u003ccode\u003eae5eae1\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/429dbdd2a35d325aabc5757edfc9ebf09c2ad12e\"\u003e\u003ccode\u003e429dbdd\u003c/code\u003e\u003c/a\u003e Feat discover endpoint partition validation (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3410\"\u003e#3410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ab4f5b60785064ec6346c922604d94b63d9c7299\"\u003e\u003ccode\u003eab4f5b6\u003c/code\u003e\u003c/a\u003e Release 2026-05-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/757a09909a97a15e5a481d9839b83f15b8fdc4bc\"\u003e\u003ccode\u003e757a099\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/02c8323ee6c99be82dae3a3923616756cb164525\"\u003e\u003ccode\u003e02c8323\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f4ac954c5b3567f7918fbaa845bd05a8b211f54e\"\u003e\u003ccode\u003ef4ac954\u003c/code\u003e\u003c/a\u003e Bump smithy-go version and update imports for evenstream protocoltests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3420\"\u003e#3420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6d937001e020def8b587dccbe5d803933ce57bfd\"\u003e\u003ccode\u003e6d93700\u003c/code\u003e\u003c/a\u003e Add replace for credentials dependency added on go.mod (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3419\"\u003e#3419\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.32.17...config/v1.32.18\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/credentials` from 1.19.16 to 1.19.17\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/db9f4e546dfe2f62a6bc3bf54b9da42ebace6372\"\u003e\u003ccode\u003edb9f4e5\u003c/code\u003e\u003c/a\u003e Release 2026-05-22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/34e7ddc9400e830a9ae226a7e3c2161e5ece4f19\"\u003e\u003ccode\u003e34e7ddc\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f9db036cf7b3b8a1ea5eb67c3d296da4b48b6e2b\"\u003e\u003ccode\u003ef9db036\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ae5eae1e3ec46433bd99496bfa6936f8f09a2e72\"\u003e\u003ccode\u003eae5eae1\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/429dbdd2a35d325aabc5757edfc9ebf09c2ad12e\"\u003e\u003ccode\u003e429dbdd\u003c/code\u003e\u003c/a\u003e Feat discover endpoint partition validation (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3410\"\u003e#3410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ab4f5b60785064ec6346c922604d94b63d9c7299\"\u003e\u003ccode\u003eab4f5b6\u003c/code\u003e\u003c/a\u003e Release 2026-05-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/757a09909a97a15e5a481d9839b83f15b8fdc4bc\"\u003e\u003ccode\u003e757a099\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/02c8323ee6c99be82dae3a3923616756cb164525\"\u003e\u003ccode\u003e02c8323\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f4ac954c5b3567f7918fbaa845bd05a8b211f54e\"\u003e\u003ccode\u003ef4ac954\u003c/code\u003e\u003c/a\u003e Bump smithy-go version and update imports for evenstream protocoltests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3420\"\u003e#3420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6d937001e020def8b587dccbe5d803933ce57bfd\"\u003e\u003ccode\u003e6d93700\u003c/code\u003e\u003c/a\u003e Add replace for credentials dependency added on go.mod (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3419\"\u003e#3419\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/credentials/v1.19.16...credentials/v1.19.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.21.5 to 0.21.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: update dependencies to use new azure sdk components by \u003ca href=\"https://github.com/gaganhr94\"\u003e\u003ccode\u003e@​gaganhr94\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2262\"\u003egoogle/go-containerregistry#2262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: restore resp.Body in retryError so CheckError can parse it by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2264\"\u003egoogle/go-containerregistry#2264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/registry: return 202 Accepted for PATCH chunk uploads by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2265\"\u003egoogle/go-containerregistry#2265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFollow OCI distribution spec for artifactType and annotations by \u003ca href=\"https://github.com/malt3\"\u003e\u003ccode\u003e@​malt3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2269\"\u003egoogle/go-containerregistry#2269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eactions: attach Codecov token to coverage tests on main by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2270\"\u003egoogle/go-containerregistry#2270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: use DeleteScope (with \u0026quot;delete\u0026quot; action) for manifest deletion by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2266\"\u003egoogle/go-containerregistry#2266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: limit concurrent layer pulls by \u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2271\"\u003egoogle/go-containerregistry#2271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/registry: reject corrupt disk blobs by \u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2272\"\u003egoogle/go-containerregistry#2272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emutate: close layer readers during export by \u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2277\"\u003egoogle/go-containerregistry#2277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane/flatten: preserve image media type when flattening by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2267\"\u003egoogle/go-containerregistry#2267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump goreleaser/goreleaser-action from 7.0.0 to 7.2.1 in the actions group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2273\"\u003egoogle/go-containerregistry#2273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump go.opentelemetry.io/otel from 1.36.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2278\"\u003egoogle/go-containerregistry#2278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the go-deps group across 3 directories with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2280\"\u003egoogle/go-containerregistry#2280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace go-homedir with os.UserHomeDir by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2282\"\u003egoogle/go-containerregistry#2282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/name: only treat .localhost as non-HTTPS, not .local by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2281\"\u003egoogle/go-containerregistry#2281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: block unspecified IPs (0.0.0.0, ::) in validateRealmURL by \u003ca href=\"https://github.com/marwan9696\"\u003e\u003ccode\u003e@​marwan9696\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2285\"\u003egoogle/go-containerregistry#2285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(mutate): add Extract round-trip test for filesystem object preservation by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2283\"\u003egoogle/go-containerregistry#2283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexperiments: remove deprecated support for estargz by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2288\"\u003egoogle/go-containerregistry#2288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aws-actions/configure-aws-credentials from 6.1.0 to 6.1.1 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2289\"\u003egoogle/go-containerregistry#2289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: limit HTTP response body reads to prevent OOM by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2296\"\u003egoogle/go-containerregistry#2296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the go-deps group across 3 directories with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2297\"\u003egoogle/go-containerregistry#2297\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: block redirects from token server to private/link-local addresses (SSRF fix) by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2292\"\u003egoogle/go-containerregistry#2292\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/v1/mutate: preserve relative symlinks that stay within rootfs in Extract by \u003ca href=\"https://github.com/anishesg\"\u003e\u003ccode\u003e@​anishesg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2279\"\u003egoogle/go-containerregistry#2279\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003evalidate: skip non-layer layers by \u003ca href=\"https://github.com/imjasonh\"\u003e\u003ccode\u003e@​imjasonh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2298\"\u003egoogle/go-containerregistry#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: validate foreign layer URLs to prevent SSRF (fixes \u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2259\"\u003e#2259\u003c/a\u003e) by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2293\"\u003egoogle/go-containerregistry#2293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: block SSRF via private-IP Location headers in blob uploads by \u003ca href=\"https://github.com/adilburaksen\"\u003e\u003ccode\u003e@​adilburaksen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2295\"\u003egoogle/go-containerregistry#2295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mutate): preserve config blob and layers for non-Docker OCI artifacts by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2286\"\u003egoogle/go-containerregistry#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve per-occurrence layer identity in mutate.Image.Layers() by \u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2299\"\u003egoogle/go-containerregistry#2299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: retry HTTP 429 (Too Many Requests) by \u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2301\"\u003egoogle/go-containerregistry#2301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: allow bearer realm at same host:port as registry by \u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2302\"\u003egoogle/go-containerregistry#2302\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version to 1.26.3 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2300\"\u003egoogle/go-containerregistry#2300\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gaganhr94\"\u003e\u003ccode\u003e@​gaganhr94\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2262\"\u003egoogle/go-containerregistry#2262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2264\"\u003egoogle/go-containerregistry#2264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/malt3\"\u003e\u003ccode\u003e@​malt3\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2269\"\u003egoogle/go-containerregistry#2269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2271\"\u003egoogle/go-containerregistry#2271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2281\"\u003egoogle/go-containerregistry#2281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/marwan9696\"\u003e\u003ccode\u003e@​marwan9696\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2285\"\u003egoogle/go-containerregistry#2285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anishesg\"\u003e\u003ccode\u003e@​anishesg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2279\"\u003egoogle/go-containerregistry#2279\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/adilburaksen\"\u003e\u003ccode\u003e@​adilburaksen\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2295\"\u003egoogle/go-containerregistry#2295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2299\"\u003egoogle/go-containerregistry#2299\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.5...v0.21.6\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.5...v0.21.6\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/53f7e39e15bfd6aeea6a5f733ee1a8fcf54c15cf\"\u003e\u003ccode\u003e53f7e39\u003c/code\u003e\u003c/a\u003e Update go version to 1.26.3 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2300\"\u003e#2300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/bf87c3bfe4cc3218ac0baa364545d72729d2906d\"\u003e\u003ccode\u003ebf87c3b\u003c/code\u003e\u003c/a\u003e transport: allow bearer realm at same host:port as registry (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2302\"\u003e#2302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/c55facddfbd7fc3d648c6fdda9860b350b013a76\"\u003e\u003ccode\u003ec55facd\u003c/code\u003e\u003c/a\u003e transport: retry HTTP 429 (Too Many Requests) (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2301\"\u003e#2301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/68a569e4a0eb927d36ccb0fcdf4578425c03b5a2\"\u003e\u003ccode\u003e68a569e\u003c/code\u003e\u003c/a\u003e fix: preserve per-occurrence layer identity in Layers() (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2299\"\u003e#2299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/35b354b436879457221028f05a580fe1c0deccbc\"\u003e\u003ccode\u003e35b354b\u003c/code\u003e\u003c/a\u003e fix(mutate): preserve config blob and layers for non-Docker OCI artifacts (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e5983f2a67ec46b76984ce6de85de08a44eee955\"\u003e\u003ccode\u003ee5983f2\u003c/code\u003e\u003c/a\u003e remote: block SSRF via private-IP Location headers in blob uploads (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2295\"\u003e#2295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/6dad820da7de0d619f1127c46914f2eaf58e3b46\"\u003e\u003ccode\u003e6dad820\u003c/code\u003e\u003c/a\u003e remote: validate foreign layer URLs to prevent SSRF (fixes \u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2259\"\u003e#2259\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2293\"\u003e#2293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/78bdf1b7e2105cdfcd8f23509992c78357ce16ed\"\u003e\u003ccode\u003e78bdf1b\u003c/code\u003e\u003c/a\u003e validate: skip non-layer layers (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/c29d91cdc394cb288270f4dd04a31f81054946f4\"\u003e\u003ccode\u003ec29d91c\u003c/code\u003e\u003c/a\u003e pkg/v1/mutate: preserve relative symlinks that stay within rootfs in Extract ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/a70d75a6915ed3137792206dac4bca21d1924959\"\u003e\u003ccode\u003ea70d75a\u003c/code\u003e\u003c/a\u003e transport: block redirects from token server to private/link-local addresses ...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.5...v0.21.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/package-url/packageurl-go` from 0.1.5 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/package-url/packageurl-go/releases\"\u003egithub.com/package-url/packageurl-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.1.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize parsing and serialization performance by \u003ca href=\"https://github.com/andrew\"\u003e\u003ccode\u003e@​andrew\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/package-url/packageurl-go/pull/86\"\u003epackage-url/packageurl-go#86\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andrew\"\u003e\u003ccode\u003e@​andrew\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/package-url/packageurl-go/pull/86\"\u003epackage-url/packageurl-go#86\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/package-url/packageurl-go/compare/v0.1.5...v0.1.6\"\u003ehttps://github.com/package-url/packageurl-go/compare/v0.1.5...v0.1.6\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/package-url/packageurl-go/commit/a74324e4e5d01ba49accd9f2f327e22206c7920d\"\u003e\u003ccode\u003ea74324e\u003c/code\u003e\u003c/a\u003e Optimize parsing and serialization performance (\u003ca href=\"https://redirect.github.com/package-url/packageurl-go/issues/86\"\u003e#86\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/package-url/packageurl-go/commit/b41f387d16428dd565a73fe18800629c8ad0338f\"\u003e\u003ccode\u003eb41f387\u003c/code\u003e\u003c/a\u003e Address review feedback and add chrome-extension validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/package-url/packageurl-go/commit/a546cc5887560ce7b304fe8d7d95e0e2e4407a7f\"\u003e\u003ccode\u003ea546cc5\u003c/code\u003e\u003c/a\u003e Optimize parsing and serialization performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/package-url/packageurl-go/compare/v0.1.5...v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/term` from 0.42.0 to 0.43.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/3c3e4855f7d2eb06c3e48933554add9ec6b599b5\"\u003e\u003ccode\u003e3c3e485\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/term/compare/v0.42.0...v0.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/text` from 0.36.0 to 0.37.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/text/commit/3ef517e623a4bfc08d6457f87d73afda7af7d8e1\"\u003e\u003ccode\u003e3ef517e\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/text/compare/v0.36.0...v0.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/bruto001/vuls/pull/263","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bruto001%2Fvuls/issues/263","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/263/packages"},{"uuid":"4505746886","node_id":"PR_kwDORsXlm87egJsd","number":36,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 31 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-29T23:34:58.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-22T21:40:50.000Z","updated_at":"2026-05-29T23:35:00.000Z","time_to_close":611648,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":31,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.21.0","new_version":"1.21.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.37.0","new_version":"2.38.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/apparentlymart/go-cidr","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/apparentlymart/go-cidr"},{"name":"github.com/containerd/containerd/v2","old_version":"2.2.2","new_version":"2.3.0","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.17.2","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/google/go-containerregistry","old_version":"0.21.2","new_version":"0.21.5","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.3","new_version":"0.9.5","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.25.0","new_version":"0.25.2","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.17.1","new_version":"1.17.2","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/mattn/go-shellwords","old_version":"1.0.12","new_version":"1.0.13","repository_url":"https://github.com/mattn/go-shellwords"},{"name":"github.com/open-policy-agent/opa","old_version":"1.15.2","new_version":"1.16.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.7","new_version":"0.2.8","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/secure-systems-lab/go-securesystemslib","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/secure-systems-lab/go-securesystemslib"},{"name":"golang.org/x/crypto","old_version":"0.50.0","new_version":"0.51.0","repository_url":"https://github.com/golang/crypto"},{"name":"golang.org/x/net","old_version":"0.53.0","new_version":"0.54.0","repository_url":"https://github.com/golang/net"},{"name":"golang.org/x/vuln","old_version":"1.1.4","new_version":"1.3.0","repository_url":"https://github.com/golang/vuln"},{"name":"helm.sh/helm/v3","old_version":"3.20.2","new_version":"3.21.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.48.2","new_version":"1.50.1"},{"name":"github.com/invopop/jsonschema","old_version":"0.13.0","new_version":"0.14.0","repository_url":"https://github.com/invopop/jsonschema"},{"name":"github.com/nikolalohinski/gonja/v2","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nikolalohinski/gonja"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 23 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.21.0` | `1.21.1` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.37.0` | `2.38.0` |\n| [github.com/apparentlymart/go-cidr](https://github.com/apparentlymart/go-cidr) | `1.1.0` | `1.1.1` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.2.2` | `2.3.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.17.2` | `5.19.0` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.21.2` | `0.21.5` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.3` | `0.9.5` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.25.0` | `0.25.2` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.10.0` | `0.11.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.17.1` | `1.17.2` |\n| [github.com/mattn/go-shellwords](https://github.com/mattn/go-shellwords) | `1.0.12` | `1.0.13` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.15.2` | `1.16.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.7` | `0.2.8` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.5` | `0.1.6` |\n| [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib) | `0.10.0` | `0.11.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.50.0` | `0.51.0` |\n| [golang.org/x/net](https://github.com/golang/net) | `0.53.0` | `0.54.0` |\n| [golang.org/x/vuln](https://github.com/golang/vuln) | `1.1.4` | `1.3.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.20.2` | `3.21.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.48.2` | `1.50.1` |\n| [github.com/invopop/jsonschema](https://github.com/invopop/jsonschema) | `0.13.0` | `0.14.0` |\n| [github.com/nikolalohinski/gonja/v2](https://github.com/nikolalohinski/gonja) | `2.7.0` | `2.8.0` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.21.0 to 1.21.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.1\u003c/h2\u003e\n\u003ch2\u003e1.21.1 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue in \u003ccode\u003eResponseError.Error()\u003c/code\u003e where the request URL path was being logged unescaped.\u003c/li\u003e\n\u003cli\u003eRedact query parameters when logging errors.\u003c/li\u003e\n\u003cli\u003eFor \u003ccode\u003eruntime.JoinPaths\u003c/code\u003e, don't add a slash between root and paths when \u003ccode\u003epaths\u003c/code\u003e starts with \u003ccode\u003e?\u003c/code\u003e (query string).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to Go 1.25.0.\u003c/li\u003e\n\u003cli\u003eUpgraded dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/63e4ba18204b0df554e330df8f85662e653e67ab\"\u003e\u003ccode\u003e63e4ba1\u003c/code\u003e\u003c/a\u003e Bump release date for azcore (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26613\"\u003e#26613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/fa0312174d17ff4cb7cb0118fa80de07409841c2\"\u003e\u003ccode\u003efa03121\u003c/code\u003e\u003c/a\u003e remove bypass local dns (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26609\"\u003e#26609\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c47f9a60dd1e9be6943ff0d6a5666a0ac09f6cfa\"\u003e\u003ccode\u003ec47f9a6\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 15153 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26607\"\u003e#26607\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/88b8b5b38ecebb929a2e302df054fed1d68618b8\"\u003e\u003ccode\u003e88b8b5b\u003c/code\u003e\u003c/a\u003e Changelog for v2.2.0 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26567\"\u003e#26567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/72ca19ae2b8b4514c4f48a5ff33495b03c08afd0\"\u003e\u003ccode\u003e72ca19a\u003c/code\u003e\u003c/a\u003e Storage STG 101 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26568\"\u003e#26568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/b64baf56c6b168d258b2a0678290ac5f9ab97938\"\u003e\u003ccode\u003eb64baf5\u003c/code\u003e\u003c/a\u003e Sync .github directory with azure-sdk-tools repository (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26600\"\u003e#26600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ecd64dd6500a04da22107925c3ba9fbe8e636f2c\"\u003e\u003ccode\u003eecd64dd\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.1 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26596\"\u003e#26596\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1d02f204d0146ffd7d13d5585bf3766e53c32cc5\"\u003e\u003ccode\u003e1d02f20\u003c/code\u003e\u003c/a\u003e Update copilot code review instructions and migration breaking change mitigat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6e9ce3212cc9d654d349778f19065eb5d849197\"\u003e\u003ccode\u003ef6e9ce3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 14973 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26531\"\u003e#26531\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d5a3baf11e0b743a4009efb8e84cbaee335fc0eb\"\u003e\u003ccode\u003ed5a3baf\u003c/code\u003e\u003c/a\u003e Update CODEOWNERS to remove one owner from Custom Providers (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26588\"\u003e#26588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.21.0...sdk/azcore/v1.21.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.37.0 to 2.38.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDELEX and fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.38.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d67bfae4c370e8451561165eca6ddc50f056f083\"\u003e\u003ccode\u003ed67bfae\u003c/code\u003e\u003c/a\u003e update changelog for v2.38.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/2b1abd81e1c58fb6d440b4637287d3ee09f7f66a\"\u003e\u003ccode\u003e2b1abd8\u003c/code\u003e\u003c/a\u003e DELEX (partly) (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/452dd373d138f7ad858dd6e25e2a92753f83498e\"\u003e\u003ccode\u003e452dd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/440\"\u003e#440\u003c/a\u003e from infastin/server-alias\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b5b8ec2cfde407552ea028514409599dbd5e1600\"\u003e\u003ccode\u003eb5b8ec2\u003c/code\u003e\u003c/a\u003e feat: add 'server' alias to 'redis' in lua scripts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/ecc4af14f2444ea1a57d040185781fe197bdfc9d\"\u003e\u003ccode\u003eecc4af1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/439\"\u003e#439\u003c/a\u003e from TomBailey167/xinfo-stream-last-generated-id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/4a2a33e841b359a2569fe9a35d6d46414bf40aec\"\u003e\u003ccode\u003e4a2a33e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/435\"\u003e#435\u003c/a\u003e from evan-choi/fix/xadd-equals-trim-modifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d6261eff59117ccea7387f3a608caa1006b1adef\"\u003e\u003ccode\u003ed6261ef\u003c/code\u003e\u003c/a\u003e feat: add last-generated-id to XINFO STREAM response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/f4d8aa342425de1b740a6f22a7dd230f83e3712a\"\u003e\u003ccode\u003ef4d8aa3\u003c/code\u003e\u003c/a\u003e fix: accept = trim modifier in xadd\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.37.0...v2.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/apparentlymart/go-cidr` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apparentlymart/go-cidr/commit/5730b04c510e662932577c247c0b194f97fb101f\"\u003e\u003ccode\u003e5730b04\u003c/code\u003e\u003c/a\u003e SubnetBig returns error for negative subnet number\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apparentlymart/go-cidr/commit/fab7bb4b664d0c94dceb4a54fab3500ffb2a2977\"\u003e\u003ccode\u003efab7bb4\u003c/code\u003e\u003c/a\u003e HostBig: Don't crash for out-of-range hostnum greater than max uint64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apparentlymart/go-cidr/commit/e4ff799e34b9b5c2040704a175c01a6a1df7b56c\"\u003e\u003ccode\u003ee4ff799\u003c/code\u003e\u003c/a\u003e Update doc comment spacing for newer gofmt behavior\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/apparentlymart/go-cidr/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.2.2 to 2.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.3.0\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.3.0 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe third minor release of containerd 2.x focuses on continued stability alongside\nnew features and improvements. This is the third time-based release for containerd.\u003c/p\u003e\n\u003cp\u003eStarting with containerd 2.3, the project has moved to release cadence aligned with\nthe Kubernetes release schedule, with new minor releases about every 4 months. The\ncontainerd 2.3 release is also the first annual LTS (Long Term Stable) release under\nthis new schedule, with support planned for at least two years. Direct upgrades\nbetween sequential LTS releases (e.g., 1.7 to 2.3) will be tested and supported.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd transfer types for container filesystem copy (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13165\"\u003e#13165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd option to inject trace ID to logs (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13117\"\u003e#13117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePropagate OpenTelemetry traces in outgoing RPCs from plugin clients (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13113\"\u003e#13113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate plugin config migration to run on load (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12608\"\u003e#12608\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate sandbox API to include spec field (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12840\"\u003e#12840\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAllow containers to use user namespaces with host networking (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12518\"\u003e#12518\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWire UpdatePodSandboxResources to Sandbox API (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13118\"\u003e#13118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUnpack images with per-layer labels for specific runtime (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12835\"\u003e#12835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePopulate ImageId field in container status (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12787\"\u003e#12787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSet annotations parameter in CreateSandbox request (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12566\"\u003e#12566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd background stats collector to calculate UsageNanoCores for containers and pod sandboxes (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12629\"\u003e#12629\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eSupport zstd-wrapped EROFS layers (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13185\"\u003e#13185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd os.features support for EROFS native container images (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13091\"\u003e#13091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd EROFS layer media type (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12567\"\u003e#12567\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Storage\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd dmverity support to the erofs snapshotter (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12502\"\u003e#12502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse fsmount API to avoid PAGE_SIZE limit for erofs (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12783\"\u003e#12783\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eNode Resource Interface (NRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003ePass container user (uid, gids) to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12769\"\u003e#12769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass seccomp policy to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12768\"\u003e#12768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass any POSIX rlimits to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12765\"\u003e#12765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass extended container status to NRI. (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12770\"\u003e#12770\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass injected CDI devices to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12767\"\u003e#12767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass linux sysctl to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12766\"\u003e#12766\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse dedicated RPC calls for all pod and container life-cycle events via the NRI wire protocol (\u003ca href=\"https://redirect.github.com/containerd/nri/pull/274\"\u003econtainerd/nri#274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd basic metrics collection for the NRI framework (\u003ca href=\"https://redirect.github.com/containerd/nri/pull/277\"\u003econtainerd/nri#277\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/blob/main/RELEASES.md\"\u003egithub.com/containerd/containerd/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eVersioning and Release\u003c/h1\u003e\n\u003cp\u003eThis document details the versioning and release plan for containerd. Stability\nis a top goal for this project, and we hope that this document and the processes\nit entails will help to achieve that. It covers the release process, versioning\nnumbering, backporting, API stability and support horizons.\u003c/p\u003e\n\u003cp\u003eIf you rely on containerd, it would be good to spend time understanding the\nareas of the API that are and are not supported and how they impact your\nproject in the future.\u003c/p\u003e\n\u003cp\u003eThis document will be considered a living document. Supported timelines,\nbackport targets and API stability guarantees will be updated here as they\nchange.\u003c/p\u003e\n\u003cp\u003eIf there is something that you require or this document leaves out, please\nreach out by \u003ca href=\"https://github.com/containerd/containerd/issues\"\u003efiling an issue\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eReleases\u003c/h2\u003e\n\u003cp\u003eReleases of containerd will be versioned using dotted triples, similar to\n\u003ca href=\"http://semver.org/\"\u003eSemantic Version\u003c/a\u003e. For the purposes of this document, we\nwill refer to the respective components of this triple as\n\u003ccode\u003e\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;.\u0026lt;patch\u0026gt;\u003c/code\u003e. The version number may have additional information,\nsuch as alpha, beta and release candidate qualifications. Such releases will be\nconsidered \u0026quot;pre-releases\u0026quot;.\u003c/p\u003e\n\u003ch3\u003eMajor and Minor Releases\u003c/h3\u003e\n\u003cp\u003eMajor and minor releases of containerd will be made from main. Releases of\ncontainerd will be marked with GPG signed tags and announced at\n\u003ca href=\"https://github.com/containerd/containerd/releases\"\u003ehttps://github.com/containerd/containerd/releases\u003c/a\u003e. The tag will be of the\nformat \u003ccode\u003ev\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;.\u0026lt;patch\u0026gt;\u003c/code\u003e and should be made with the command \u003ccode\u003egit tag -s v\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;.\u0026lt;patch\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eAfter a minor release, a branch will be created, with the format\n\u003ccode\u003erelease/\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;\u003c/code\u003e from the minor tag. All further patch releases will\nbe done from that branch. For example, once we release \u003ccode\u003ev1.0.0\u003c/code\u003e, a branch\n\u003ccode\u003erelease/1.0\u003c/code\u003e will be created from that tag. All future patch releases will be\ndone against that branch.\u003c/p\u003e\n\u003ch3\u003eRelease Cadence\u003c/h3\u003e\n\u003cp\u003eSince containerd v2.3 in April 2026, minor releases are provided on a time basis\nwith a cadence of 4 months. New minor releases are scheduled for April, August,\nand December of each year. This cadence is synchronized with the Kubernetes\nrelease schedule to ensure that new features in containerd can be smoothly\nadopted by new Kubernetes releases.\u003c/p\u003e\n\u003cp\u003eThe maintainers will maintain a roadmap and milestones for each release, however,\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/2976f38ccbfcda5ef1364d63d60b0a304e4bf94a\"\u003e\u003ccode\u003e2976f38\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13325\"\u003e#13325\u003c/a\u003e from dmcgowan/prepare-v2.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/77eeb2d8ea1d334cd64fc205411869ec3720f674\"\u003e\u003ccode\u003e77eeb2d\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c55ada3f312a965eb9aaf12477416e8cc2c940cf\"\u003e\u003ccode\u003ec55ada3\u003c/code\u003e\u003c/a\u003e Update api to v1.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ebf4404e39a1a11975e5bf78127e44ff2b1b3788\"\u003e\u003ccode\u003eebf4404\u003c/code\u003e\u003c/a\u003e Update release document\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f49640ec1f78fd0b04aca64c10ffaff3dfec5b12\"\u003e\u003ccode\u003ef49640e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13321\"\u003e#13321\u003c/a\u003e from dmcgowan/remove-erofs-fsmerge-threshold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e3d5fe82b16cd6d05c33150f69800822a9205b0f\"\u003e\u003ccode\u003ee3d5fe8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13322\"\u003e#13322\u003c/a\u003e from dmcgowan/prepare-api-v1.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ee17fa123684303d6f6e083c318146d0425961d7\"\u003e\u003ccode\u003eee17fa1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13317\"\u003e#13317\u003c/a\u003e from fuweid/fix-merge-issue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b7f8c3510d9135ad56277140f9e5aa86eb0e9a66\"\u003e\u003ccode\u003eb7f8c35\u003c/code\u003e\u003c/a\u003e erofs: remove fsmerge threshold from snapshotter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/8f2fce4ce57fd3a5772d479d5cbee1707ef7b3b4\"\u003e\u003ccode\u003e8f2fce4\u003c/code\u003e\u003c/a\u003e Prepare release notes for v1.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ce2955c7ce9d142e7d9f5e902037e625930033b9\"\u003e\u003ccode\u003ece2955c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13319\"\u003e#13319\u003c/a\u003e from mxpv/depr\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.2.2...v2.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.17.2 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.21.2 to 0.21.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/cli v29.4.0, moby/api v1.54.1, moby/client v0.4.0 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2254\"\u003egoogle/go-containerregistry#2254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate to Go 1.26.2 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2255\"\u003egoogle/go-containerregistry#2255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 in the actions group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2257\"\u003egoogle/go-containerregistry#2257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 in the go-deps group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2260\"\u003egoogle/go-containerregistry#2260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: do not make a viral minimum go version by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2237\"\u003egoogle/go-containerregistry#2237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid pruning absolute links from extracted and flattened images by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2241\"\u003egoogle/go-containerregistry#2241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 5 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2245\"\u003egoogle/go-containerregistry#2245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to go1.25.8, and use separate .go-version file by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2246\"\u003egoogle/go-containerregistry#2246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump CI go version to 1.26.1 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2242\"\u003egoogle/go-containerregistry#2242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2240\"\u003egoogle/go-containerregistry#2240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efork distribution client v3 auth-challenge as an internal package (squashed) by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2248\"\u003egoogle/go-containerregistry#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: validate Bearer realm URL to prevent SSRF by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2243\"\u003egoogle/go-containerregistry#2243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erevert path traversal and symlink escape from \u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2227\"\u003e#2227\u003c/a\u003e by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2250\"\u003egoogle/go-containerregistry#2250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix pkg/v1/google/auth tests for arm64  by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2085\"\u003egoogle/go-containerregistry#2085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egoreleaser: Update goreleaser config and GH action by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2253\"\u003egoogle/go-containerregistry#2253\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2243\"\u003egoogle/go-containerregistry#2243\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.3...v0.21.4\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.3...v0.21.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdds local file support to the \u003ccode\u003ecrane index\u003c/code\u003e subcommand  by \u003ca href=\"https://github.com/edwardthiele\"\u003e\u003ccode\u003e@​edwardthiele\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2223\"\u003egoogle/go-containerregistry#2223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emigrate to github.com/moby/moby modules by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2228\"\u003egoogle/go-containerregistry#2228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 4 directories with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2233\"\u003egoogle/go-containerregistry#2233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump goreleaser/goreleaser-action from 6.4.0 to 7.0.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2220\"\u003egoogle/go-containerregistry#2220\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emutate: reject path traversal and symlink escape in Extract by \u003ca href=\"https://github.com/KevinZhao\"\u003e\u003ccode\u003e@​KevinZhao\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2227\"\u003egoogle/go-containerregistry#2227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etarball: detect symlink cycles in extractFileFromTar by \u003ca href=\"https://github.com/vnykmshr\"\u003e\u003ccode\u003e@​vnykmshr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2232\"\u003egoogle/go-containerregistry#2232\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebump golang to 1.25.7 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2236\"\u003egoogle/go-containerregistry#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/edwardthiele\"\u003e\u003ccode\u003e@​edwardthiele\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2223\"\u003egoogle/go-containerregistry#2223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2228\"\u003egoogle/go-containerregistry#2228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KevinZhao\"\u003e\u003ccode\u003e@​KevinZhao\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2227\"\u003egoogle/go-containerregistry#2227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vnykmshr\"\u003e\u003ccode\u003e@​vnykmshr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2232\"\u003egoogle/go-containerregistry#2232\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.2...v0.21.3\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.2...v0.21.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/5b80281da727dae218e1697ab8529b631b9efa64\"\u003e\u003ccode\u003e5b80281\u003c/code\u003e\u003c/a\u003e build(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 in the go-deps gro...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b99bca24a8df1bd88afc1d299d4c0ebba0555cf8\"\u003e\u003ccode\u003eb99bca2\u003c/code\u003e\u003c/a\u003e build(deps): bump aws-actions/configure-aws-credentials (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2257\"\u003e#2257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/f8be1d442e6fc85c791e4aa50155aa8806ca8312\"\u003e\u003ccode\u003ef8be1d4\u003c/code\u003e\u003c/a\u003e update to Go 1.26.2 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2255\"\u003e#2255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/87ad88b4a000e418add5c1bb4ae1da908cbc3b85\"\u003e\u003ccode\u003e87ad88b\u003c/code\u003e\u003c/a\u003e Bump docker/cli v29.4.0, moby/api v1.54.1, moby/client v0.4.0 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2254\"\u003e#2254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e8813dd0a00e799459cae01d8a4659b9be2fd871\"\u003e\u003ccode\u003ee8813dd\u003c/code\u003e\u003c/a\u003e goreleaser: Update goreleaser config and GH action for releases (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e90447d319233b94dcdc75a24246ccbee6d1e72a\"\u003e\u003ccode\u003ee90447d\u003c/code\u003e\u003c/a\u003e replace gcloud in binary calls in pkg/v1/google tests (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2085\"\u003e#2085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/0d0368c2a5fa524c4765a6c0b7df4ff6d6951471\"\u003e\u003ccode\u003e0d0368c\u003c/code\u003e\u003c/a\u003e revert path traversal and symlink escape changes (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2250\"\u003e#2250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/a2f47d4202de443f68e8bafa95ddd41407327168\"\u003e\u003ccode\u003ea2f47d4\u003c/code\u003e\u003c/a\u003e transport: validate Bearer realm URL to prevent SSRF (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2243\"\u003e#2243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/19a36cd8c44dd465a84f9d6ffea3009023f73660\"\u003e\u003ccode\u003e19a36cd\u003c/code\u003e\u003c/a\u003e fork distribution client v3 auth-challenge as an internal package (squashed) ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/c612a9b20a4c533454b7fa8b39a8c8139065f0b1\"\u003e\u003ccode\u003ec612a9b\u003c/code\u003e\u003c/a\u003e Bump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2240\"\u003e#2240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.2...v0.21.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/hc-install` from 0.9.3 to 0.9.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/hc-install/releases\"\u003egithub.com/hashicorp/hc-install's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.9.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: Lower compatibility constraint from 1.25.8 to 1.25.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/376\"\u003e#376\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.4\u003c/h2\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Prefer \u003ccode\u003ego.mod\u003c/code\u003e if Go versions mismatch (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/368\"\u003e#368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eBUG FIXES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate PGP pubkey to replace expired one (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/355\"\u003e#355\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/372\"\u003e#372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/349\"\u003e#349\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/363\"\u003e#363\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/369\"\u003e#369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/360\"\u003e#360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/ProtonMail/go-crypto from 1.3.0 to 1.4.1 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/351\"\u003e#351\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/358\"\u003e#358\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/mod from 0.33.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/354\"\u003e#354\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/365\"\u003e#365\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ego: bump to 1.25 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/357\"\u003e#357\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/2f46abfd7f9e78d5df1e17d599a6c12098432cee\"\u003e\u003ccode\u003e2f46abf\u003c/code\u003e\u003c/a\u003e Prepare for 0.9.5 release (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/377\"\u003e#377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/78781831051e592c57ee890addd7cddd03578878\"\u003e\u003ccode\u003e7878183\u003c/code\u003e\u003c/a\u003e go.mod: Keep compatibility constraint separate from build (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/376\"\u003e#376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/d5841a31c41f78fabaf2ea59e5816e6616e0f618\"\u003e\u003ccode\u003ed5841a3\u003c/code\u003e\u003c/a\u003e version: cleanup after 0.9.4 release (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/374\"\u003e#374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/13edb5e7b4b6bd1b62729e852fede0e1a5135a39\"\u003e\u003ccode\u003e13edb5e\u003c/code\u003e\u003c/a\u003e Prepare for 0.9.4 release (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/373\"\u003e#373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/8233b7ab4ae1d7e063a52f4f647a67c50af7c03c\"\u003e\u003ccode\u003e8233b7a\u003c/code\u003e\u003c/a\u003e pubkey: Replace two keys with the new one (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/372\"\u003e#372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/99a174c773ddf5cca96008ee8b3444c88e1af75b\"\u003e\u003ccode\u003e99a174c\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/369\"\u003e#369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/77c3fbdd247381c5b3ef58020faec881b88a6031\"\u003e\u003ccode\u003e77c3fbd\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in the github-a...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/dbcbf5ff1d32880435f7abfba5b40c1d645b7ec9\"\u003e\u003ccode\u003edbcbf5f\u003c/code\u003e\u003c/a\u003e build: Prefer go.mod if Go versions mismatch (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/368\"\u003e#368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/ad8a98be88668e65a93d45fdfe3e174229acc6f7\"\u003e\u003ccode\u003ead8a98b\u003c/code\u003e\u003c/a\u003e build(deps): bump golang.org/x/mod from 0.34.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/365\"\u003e#365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/9a8707266a2315a7520cab7e488b90996c1dea77\"\u003e\u003ccode\u003e9a87072\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/360\"\u003e#360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/hc-install/compare/v0.9.3...v0.9.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/terraform-exec` from 0.25.0 to 0.25.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/terraform-exec/releases\"\u003egithub.com/hashicorp/terraform-exec's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.25.2\u003c/h2\u003e\n\u003cp\u003eNOTES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: Lower compatibility constraint from 1.25.8 to 1.25.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/581\"\u003e#581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.4 to 0.9.5 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.25.1\u003c/h2\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.17.0 to 1.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/568\"\u003e#568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/574\"\u003e#574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/576\"\u003e#576\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.3 to 0.9.4 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/terraform-exec/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/terraform-exec's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.25.2 (April 29, 2026)\u003c/h1\u003e\n\u003cp\u003eNOTES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: Lower compatibility constraint from 1.25.8 to 1.25.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/581\"\u003e#581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.4 to 0.9.5 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.25.1 (April 22, 2026)\u003c/h1\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.17.0 to 1.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/568\"\u003e#568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/574\"\u003e#574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/576\"\u003e#576\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.3 to 0.9.4 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/56a0d8b1e947ab88cd0f7a2752495ab90e3f0b96\"\u003e\u003ccode\u003e56a0d8b\u003c/code\u003e\u003c/a\u003e v0.25.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/94a3afe0d3d6b0d7495b2287bdc9f6f68ce3414f\"\u003e\u003ccode\u003e94a3afe\u003c/code\u003e\u003c/a\u003e Update Changelog in preparation for 0.25.2 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/586\"\u003e#586\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/ac26db5996e0ed0b4f9a8d1d1b5ce51f4ef960e7\"\u003e\u003ccode\u003eac26db5\u003c/code\u003e\u003c/a\u003e go.mod: Keep compatibility constraint separate from build (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/581\"\u003e#581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/e856badee6e800dad3f8f2dfdc9c0b25b0e3b938\"\u003e\u003ccode\u003ee856bad\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/hc-install from 0.9.4 to 0.9.5 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/5418a753fa2599ebb4e296dc22d16564e0ff54d8\"\u003e\u003ccode\u003e5418a75\u003c/code\u003e\u003c/a\u003e v0.25.1 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/c5053a65eed7ffbf6ab4aaab14a24dfc22633f92\"\u003e\u003ccode\u003ec5053a6\u003c/code\u003e\u003c/a\u003e Update Changelog in preparation for 0.25.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/580\"\u003e#580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/f5ab655f3dba9ca5f5762b47e9a983818f7bd01d\"\u003e\u003ccode\u003ef5ab655\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/hc-install from 0.9.3 to 0.9.4 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/f49a90a4b6c8af99b43cc3444d70f9d7f779bde7\"\u003e\u003ccode\u003ef49a90a\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/576\"\u003e#576\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/a919c3c63f65c6366f60ad89108834510459f155\"\u003e\u003ccode\u003ea919c3c\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/5b8e8921441672128aca27007f40f286a6152266\"\u003e\u003ccode\u003e5b8e892\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/574\"\u003e#574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/terraform-exec/compare/v0.25.0...v0.25.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump the all group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/453\"\u003ein-toto/in-toto-golang#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump the all group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/452\"\u003ein-toto/in-toto-golang#452\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/457\"\u003ein-toto/in-toto-golang#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/459\"\u003ein-toto/in-toto-golang#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ematch: Replace ^ with ! for negation in character classes by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/462\"\u003ein-toto/in-toto-golang#462\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/36d782ffb2ca3adbffcdce1fd971c23319dd4469\"\u003e\u003ccode\u003e36d782f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/462\"\u003e#462\u003c/a\u003e from in-toto/fix-negation-character\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/4a09e3bbc44bc687577b6532e57e8a4abfa5ddf4\"\u003e\u003ccode\u003e4a09e3b\u003c/code\u003e\u003c/a\u003e match: Replace ^ with ! for negation in character classes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c3302e8bc36e46119f7ae17c07eb879ff3507caa\"\u003e\u003ccode\u003ec3302e8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/459\"\u003e#459\u003c/a\u003e from in-toto/dependabot/go_modules/github.com/go-jose...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/016e87efbb55c6dd8772ce227002eeb1b6e3f593\"\u003e\u003ccode\u003e016e87e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/5b9df76e685eaa0a950ea9ba3f4a5561e87e13ad\"\u003e\u003ccode\u003e5b9df76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/457\"\u003e#457\u003c/a\u003e from in-toto/dependabot/go_modules/google.golang.org/...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/595b3fe0a13f481eb0ef898ccaff5e345e492a2f\"\u003e\u003ccode\u003e595b3fe\u003c/code\u003e\u003c/a\u003e chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/e396d248c9cf19f9e144f4e90c476af88742bf35\"\u003e\u003ccode\u003ee396d24\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/452\"\u003e#452\u003c/a\u003e from in-toto/dependabot/github_actions/all-502588e1ca\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/142b779059713332fe5c7856e98f1c564c6d6a09\"\u003e\u003ccode\u003e142b779\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/453\"\u003e#453\u003c/a\u003e from in-toto/dependabot/go_modules/all-d8ef5820aa\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/f741bcc43330554606b813fa0f8fe0c284fcdaea\"\u003e\u003ccode\u003ef741bcc\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c374dc9808137651fe8754eed363ec816cd59d2a\"\u003e\u003ccode\u003ec374dc9\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group across 1 directory with 2 updates\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/magefile/mage` from 1.17.1 to 1.17.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/magefile/mage/releases\"\u003egithub.com/magefile/mage's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.17.2 - Tab Completion\u003c/h2\u003e\n\u003ch2\u003eWhat's New\u003c/h2\u003e\n\u003cp\u003eTab completion is now available by running \u003ccode\u003emage -install \u0026lt;shell\u0026gt;\u003c/code\u003e where the currently supported shells are zsh, bash, fish, and powershell.  This was a long-requested feature that always made me nervous because it presumes a lot about your local machine... but I guess we're in for it now. Please report any issues you see.... it's rather a hard feature to test. But... it works on my machine? 😬\u003c/p\u003e\n\u003cp\u003eFixed a backtick bug in comments and \u003ccode\u003emage -l\u003c/code\u003e and \u003ccode\u003emage -h\u003c/code\u003e no longer require compiling a binary, so they're way faster now.\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0953947c1673fd745a51c032aadeb3c63f9f3368 make -h no long require compiling (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e791a5b40794d4bcdd840f7e7523d886ac25b2a96 Support Tab Completion (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecff82a6fab83f756a382e841029a537714bd9a02 fix bug \u003ca href=\"https://redirect.github.com/magefile/mage/issues/537\"\u003e#537\u003c/a\u003e - backticks in comments break output (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/544\"\u003e#544\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magefile/mage/commit/0953947c1673fd745a51c032aadeb3c63f9f3368\"\u003e\u003ccode\u003e0953947\u003c/code\u003e\u003c/a\u003e make -h no long require compiling (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magefile/mage/commit/791a5b40794d4bcdd840f7e7523d886ac25b2a96\"\u003e\u003ccode\u003e791a5b4\u003c/code\u003e\u003c/a\u003e Support Tab Completion (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magefile/mage/commit/cff82a6fab83f756a382e841029a537714bd9a02\"\u003e\u003ccode\u003ecff82a6\u003c/code\u003e\u003c/a\u003e fix bug \u003ca href=\"https://redirect.github.com/magefile/mage/issues/537\"\u003e#537\u003c/a\u003e - backticks in comments break output (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/544\"\u003e#544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/magefile/mage/compare/v1.17.1...v1.17.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/mattn/go-shellwords` from 1.0.12 to 1.0.13\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/fd1aa6cdc3ae8152427063af41b4c89b9a2c9742\"\u003e\u003ccode\u003efd1aa6c\u003c/code\u003e\u003c/a\u003e Run gofmt: add missing //go:build directives and trailing newlines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/e73986e335d259042797a7b3fdcbf1fd935908aa\"\u003e\u003ccode\u003ee73986e\u003c/code\u003e\u003c/a\u003e Treat bare ')' as syntax error regardless of ParseBacktick\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/9a7880332903fa5e4ab1ca3b6a250a1efb8c6a0f\"\u003e\u003ccode\u003e9a78803\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mattn/go-shellwords/issues/60\"\u003e#60\u003c/a\u003e from scumfrog/security-fix-cve\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/b074fa047f436778aa95c2c98617e85b28992e6b\"\u003e\u003ccode\u003eb074fa0\u003c/code\u003e\u003c/a\u003e fix: preserve parser compatibility for unmatched ')' handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/735b5e8f670e10e77a40bb2c2bbf618be9b3f9b0\"\u003e\u003ccode\u003e735b5e8\u003c/code\u003e\u003c/a\u003e Implement tests for shellwords parser functionality\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/e2951fc82d97921ba06a218a46f683441204d07b\"\u003e\u003ccode\u003ee2951fc\u003c/code\u003e\u003c/a\u003e Fix dollarQuote state management in shellwords.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/551a1d06ad870a8ad2a82043d29da07d7036fa34\"\u003e\u003ccode\u003e551a1d0\u003c/code\u003e\u003c/a\u003e Update CI: Go 1.25/1.26 and latest GitHub Actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/f3bbb6f7f6510c6059561a79e3f105578be4fcce\"\u003e\u003ccode\u003ef3bbb6f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mattn/go-shellwords/issues/53\"\u003e#53\u003c/a\u003e from ndeloof/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/f6737fe5ef6a6aa549c31c4afeaf8e8305ecd408\"\u003e\u003ccode\u003ef6737fe\u003c/code\u003e\u003c/a\u003e parse \u003ccode\u003e\\t\u003c/code\u003e as TAB, not escaped \u003ccode\u003et\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mattn/go-shellwords/compare/v1.0.12...v1.0.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/open-policy-agent/opa` from 1.15.2 to 1.16.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/releases\"\u003egithub.com/open-policy-agent/opa's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression in the plugin manager that may cause the service to hang on shutdown (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e).\u003c/p\u003e\n\u003ch2\u003ev1.16.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\u003c/p\u003e\n\u003cp\u003eA regression has been found in the plugin manager, which may cause the service to hang on shutdown.\nUsers are advised to go directly to v1.16.1.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\r\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md\"\u003egithub.com/open-policy-agent/opa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e) in the plugin manager that may cause the service to hang on shutdown.\u003c/p\u003e\n\u003ch2\u003e1.16.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003ch4\u003euri.is_valid\u003c/h4\u003e\n\u003cp\u003eReturns \u003ccode\u003etrue\u003c/code\u003e if the input can be parsed as a URI, \u003ccode\u003efalse\u003c/code\u003e otherwise.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/85f6d990d19094da38e829561813e7da7fbae272\"\u003e\u003ccode\u003e85f6d99\u003c/code\u003e\u003c/a\u003e Prepare v1.16.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/1466714b633b056d8e04551f60457fec2f0aad99\"\u003e\u003ccode\u003e1466714\u003c/code\u003e\u003c/a\u003e build: bump go 1.26.2 -\u0026gt; 1.26.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/a72f9fa5e7c5e10a614f44dbe40700f90816d59d\"\u003e\u003ccode\u003ea72f9fa\u003c/code\u003e\u003c/a\u003e Prepare v1.16.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/9339812894af83578c840590bf1b9a33da472630\"\u003e\u003ccode\u003e9339812\u003c/code\u003e\u003c/a\u003e plugins: Ensure plugin status functions don't hang after manager is stopped (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/f3adf61f72b67e06115178851e3ffd7e2ef1a0cd\"\u003e\u003ccode\u003ef3adf61\u003c/code\u003e\u003c/a\u003e Release v1.16.0 (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/c5a446f09d6377bca3dfc6d1c6ddfd7058739205\"\u003e\u003ccode\u003ec5a446f\u003c/code\u003e\u003c/a\u003e Add regression test for comparing objects with array keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/7bc92c60755f51de00a950edfead4760b2cd8e3a\"\u003e\u003ccode\u003e7bc92c6\u003c/code\u003e\u003c/a\u003e workflow: update benchmarks notebook generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/882d5a71171899e3f17d2b6ad16a962a587cc3a2\"\u003e\u003ccode\u003e882d5a7\u003c/code\u003e\u003c/a\u003e build(deps): bump the dependencies group across 2 directories with 9 updates ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/b33179c25828d2c0ea0801b95238616396a37ddb\"\u003e\u003ccode\u003eb33179c\u003c/code\u003e\u003c/a\u003e docs: Fix input value type in not undefined example (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8580\"\u003e#8580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/3d602ca6a35a3ddbdc456653c5e4c34de30aea7e\"\u003e\u003ccode\u003e3d602ca\u003c/code\u003e\u003c/a\u003e perf: Add CopyNonGround() methods for Array, Set, and Object (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8323\"\u003e#8323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-policy-agent/opa/compare/v1.15.2...v1.16.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/openvex/go-vex` from 0.2.7 to 0.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openvex/go-vex/releases\"\u003egithub.com/openvex/go-vex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.2.8\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openvex/go-vex/commit/a340b5d7c0a6b2254962d227a36376917790e342\"\u003e\u003ccode\u003ea340b5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openvex/go-vex/issues/201\"\u003e#201\u003c/a\u003e from openvex/dependabot/go_modules/all-218c634111\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openvex/go-vex/commit/214cbfcd64d6fd07ab1a9d3869829a46307728e8\"\u003e\u003ccode\u003e214cbfc\u003c/code\u003e\u003c/a\u003e Bump github.com/package-url/packageurl-go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https:...\n\n_Description has been truncated_","html_url":"https://github.com/ScorpionBytes/trivy/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ScorpionBytes%2Ftrivy/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"},{"uuid":"4465538002","node_id":"PR_kwDOSaHso87ceE-Q","number":21,"state":"closed","title":"chore(deps)(deps): bump the patch-and-minor group across 1 directory with 5 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-01T01:23:29.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-18T00:57:23.000Z","updated_at":"2026-06-01T01:23:30.000Z","time_to_close":1211166,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): bump","group_name":"patch-and-minor","update_count":5,"packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/gorilla/websocket","old_version":"1.5.1","new_version":"1.5.3","repository_url":"https://github.com/gorilla/websocket"},{"name":"github.com/open-policy-agent/opa","old_version":"1.15.2","new_version":"1.16.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/rs/zerolog","old_version":"1.35.0","new_version":"1.35.1","repository_url":"https://github.com/rs/zerolog"},{"name":"github.com/sigstore/protobuf-specs","old_version":"0.5.0","new_version":"0.5.1","repository_url":"https://github.com/sigstore/protobuf-specs"}],"path":null,"ecosystem":"go"},"body":"Bumps the patch-and-minor group with 5 updates in the /cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/gorilla/websocket](https://github.com/gorilla/websocket) | `1.5.1` | `1.5.3` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.15.2` | `1.16.2` |\n| [github.com/rs/zerolog](https://github.com/rs/zerolog) | `1.35.0` | `1.35.1` |\n| [github.com/sigstore/protobuf-specs](https://github.com/sigstore/protobuf-specs) | `0.5.0` | `0.5.1` |\n\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gorilla/websocket` from 1.5.1 to 1.5.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gorilla/websocket/releases\"\u003egithub.com/gorilla/websocket's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.3\u003c/h2\u003e\n\u003ch2\u003eImportant change\u003c/h2\u003e\n\u003cp\u003eThis reverts the websockets package back to \u003ca href=\"https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\"\u003ehttps://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(echoreadall): fix function echoReadAll comment by \u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emake tests parallel by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrader.Upgrade: use http.ResposnseController by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/871\"\u003egorilla/websocket#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not handle network error in \u003ccode\u003eSetCloseHandler()\u003c/code\u003e by \u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: reduce timer in write_control by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/879\"\u003egorilla/websocket#879\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: lint example code by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/890\"\u003egorilla/websocket#890\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: format message type by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/889\"\u003egorilla/websocket#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove hideTempErr to allow downstream users to check for errors like net.ErrClosed by \u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not timeout when WriteControl deadline is zero in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/898\"\u003egorilla/websocket#898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExcludes errchecks linter by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn errors instead of printing to logs by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/897\"\u003egorilla/websocket#897\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot; by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/908\"\u003egorilla/websocket#908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes broken random value generation by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/926\"\u003egorilla/websocket#926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReverts back to v1.5.0 by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/929\"\u003egorilla/websocket#929\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ehttps://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/ce903f6d1d961af3a8602f2842c8b1c3fca58c4d\"\u003e\u003ccode\u003ece903f6\u003c/code\u003e\u003c/a\u003e Reverts to v1.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/9ec25ca502ec881a7e873d3cdf35da60eab22037\"\u003e\u003ccode\u003e9ec25ca\u003c/code\u003e\u003c/a\u003e fixes broken random value generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/1bddf2e0dba6f35492b0f5614905b291cd0ab88d\"\u003e\u003ccode\u003e1bddf2e\u003c/code\u003e\u003c/a\u003e bumps go version \u0026amp; removes deprecated module usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/750bf92096b4cd4d75082948a4e143f303a65390\"\u003e\u003ccode\u003e750bf92\u003c/code\u003e\u003c/a\u003e adds GHA \u0026amp; Makefile configs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2c246b2ec6f86b53889c79022fec8dabe0a20bb\"\u003e\u003ccode\u003eb2c246b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/09a6bab4667fc302c7f23ad770ce48be6fc2d15f\"\u003e\u003ccode\u003e09a6bab\u003c/code\u003e\u003c/a\u003e removing error handling while closing connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/58af150309a40ad57463b8087fe33d59d5a490d3\"\u003e\u003ccode\u003e58af150\u003c/code\u003e\u003c/a\u003e return errors instead of printing to logs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/e5f1a0aad0accdff7dc9131fdcce912e28d8f4d5\"\u003e\u003ccode\u003ee5f1a0a\u003c/code\u003e\u003c/a\u003e excludes errchecks linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2a86a174473e870c9fcc3eaba8957689090d2cc\"\u003e\u003ccode\u003eb2a86a1\u003c/code\u003e\u003c/a\u003e Do not timeout when WriteControl deadline is zero\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/695e9095ce8736ac99c83939ca6b0fe93768f680\"\u003e\u003ccode\u003e695e909\u003c/code\u003e\u003c/a\u003e Remove hideTempErr to allow downstream users to check for errors like net.Err...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/open-policy-agent/opa` from 1.15.2 to 1.16.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/releases\"\u003egithub.com/open-policy-agent/opa's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression in the plugin manager that may cause the service to hang on shutdown (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e).\u003c/p\u003e\n\u003ch2\u003ev1.16.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\u003c/p\u003e\n\u003cp\u003eA regression has been found in the plugin manager, which may cause the service to hang on shutdown.\nUsers are advised to go directly to v1.16.1.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\r\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md\"\u003egithub.com/open-policy-agent/opa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e) in the plugin manager that may cause the service to hang on shutdown.\u003c/p\u003e\n\u003ch2\u003e1.16.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003ch4\u003euri.is_valid\u003c/h4\u003e\n\u003cp\u003eReturns \u003ccode\u003etrue\u003c/code\u003e if the input can be parsed as a URI, \u003ccode\u003efalse\u003c/code\u003e otherwise.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/85f6d990d19094da38e829561813e7da7fbae272\"\u003e\u003ccode\u003e85f6d99\u003c/code\u003e\u003c/a\u003e Prepare v1.16.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/1466714b633b056d8e04551f60457fec2f0aad99\"\u003e\u003ccode\u003e1466714\u003c/code\u003e\u003c/a\u003e build: bump go 1.26.2 -\u0026gt; 1.26.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/a72f9fa5e7c5e10a614f44dbe40700f90816d59d\"\u003e\u003ccode\u003ea72f9fa\u003c/code\u003e\u003c/a\u003e Prepare v1.16.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/9339812894af83578c840590bf1b9a33da472630\"\u003e\u003ccode\u003e9339812\u003c/code\u003e\u003c/a\u003e plugins: Ensure plugin status functions don't hang after manager is stopped (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/f3adf61f72b67e06115178851e3ffd7e2ef1a0cd\"\u003e\u003ccode\u003ef3adf61\u003c/code\u003e\u003c/a\u003e Release v1.16.0 (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/c5a446f09d6377bca3dfc6d1c6ddfd7058739205\"\u003e\u003ccode\u003ec5a446f\u003c/code\u003e\u003c/a\u003e Add regression test for comparing objects with array keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/7bc92c60755f51de00a950edfead4760b2cd8e3a\"\u003e\u003ccode\u003e7bc92c6\u003c/code\u003e\u003c/a\u003e workflow: update benchmarks notebook generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/882d5a71171899e3f17d2b6ad16a962a587cc3a2\"\u003e\u003ccode\u003e882d5a7\u003c/code\u003e\u003c/a\u003e build(deps): bump the dependencies group across 2 directories with 9 updates ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/b33179c25828d2c0ea0801b95238616396a37ddb\"\u003e\u003ccode\u003eb33179c\u003c/code\u003e\u003c/a\u003e docs: Fix input value type in not undefined example (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8580\"\u003e#8580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/3d602ca6a35a3ddbdc456653c5e4c34de30aea7e\"\u003e\u003ccode\u003e3d602ca\u003c/code\u003e\u003c/a\u003e perf: Add CopyNonGround() methods for Array, Set, and Object (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8323\"\u003e#8323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-policy-agent/opa/compare/v1.15.2...v1.16.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/rs/zerolog` from 1.35.0 to 1.35.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rs/zerolog/commit/116c8060e034e8d46855354d22db2acbc8df9e1e\"\u003e\u003ccode\u003e116c806\u003c/code\u003e\u003c/a\u003e event: restore Err() logging when ErrorStackMarshaler returns nil (\u003ca href=\"https://redirect.github.com/rs/zerolog/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rs/zerolog/compare/v1.35.0...v1.35.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/protobuf-specs` from 0.5.0 to 0.5.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/protobuf-specs/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/protobuf-specs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ML-DSA-44 algorithm identifier (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/pull/860\"\u003e#860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/3001afe9102b15b04ca1b91efccd613976bdf514\"\u003e\u003ccode\u003e3001afe\u003c/code\u003e\u003c/a\u003e Bump ts to v0.5.1 for new release (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/874\"\u003e#874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/f68ef153e50a5842b6c88c38294ee541825aee58\"\u003e\u003ccode\u003ef68ef15\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/873\"\u003e#873\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/985935846f22a5021b967afd844900e7fb9098e6\"\u003e\u003ccode\u003e9859358\u003c/code\u003e\u003c/a\u003e build(deps): bump gradle-wrapper in /java in the java-deps group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/866\"\u003e#866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/51546ad474b8153975966b617cf9010320db3d17\"\u003e\u003ccode\u003e51546ad\u003c/code\u003e\u003c/a\u003e build(deps): bump ts-proto from 2.11.2 to 2.11.5 in /protoc-builder/hack in t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/8bb3cb3e6c7e64dccaeb0db05052f7ef88a73da4\"\u003e\u003ccode\u003e8bb3cb3\u003c/code\u003e\u003c/a\u003e build(deps): bump the docker-refs group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/867\"\u003e#867\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/9dfb871b0f36911a4aa66ff18143954bec6383b2\"\u003e\u003ccode\u003e9dfb871\u003c/code\u003e\u003c/a\u003e Update GRPC_GATEWAY_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/864\"\u003e#864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/80abc3f2d43989e5171f8e3f790dca757e9964d9\"\u003e\u003ccode\u003e80abc3f\u003c/code\u003e\u003c/a\u003e build(deps): bump the rust-deps group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/869\"\u003e#869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/c24db24a34511f0463a7774cc5d4e73b405fccf0\"\u003e\u003ccode\u003ec24db24\u003c/code\u003e\u003c/a\u003e build(deps): bump homebrew/core/protobuf from 33.4 to 34.1 in /protoc-builder...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/6a50d86ffd80e1047b33a8d48ad3a4bb467465ec\"\u003e\u003ccode\u003e6a50d86\u003c/code\u003e\u003c/a\u003e Update GOOGLEAPIS_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/863\"\u003e#863\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/a2cbebd8d61283f943cfc2acf6aa65b1fae0f755\"\u003e\u003ccode\u003ea2cbebd\u003c/code\u003e\u003c/a\u003e Bump packages for 0.5.1, bump deps (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/862\"\u003e#862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/protobuf-specs/compare/v0.5.0...v0.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/skillledger/skillledger/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/skillledger%2Fskillledger/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"4388820570","node_id":"PR_kwDOSVhi8M7YolS5","number":6,"state":"open","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.1 to 0.10.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-06T04:52:39.000Z","updated_at":"2026-05-06T04:52:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.1","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.1 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39ede217f126cfbc80eabf880f6643be3d392a4f: feat: add MarshalXML and UnmarshalXML (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee9191ed11a269fcb6b3fb54e000ed6d81b5bf9db: feat: add UnmarshalJSON (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e80fede1f13a956d35eb14696cd2ca9d2d943f809: fix: add json tag for \u003ccode\u003eIdentity\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e24e9503293f0837e6e7ea3ff670ef958e6075b87: fix: tests (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed68a199bc1747e5d6a7d4196c2f270535bbf6e3e: fix: use \u003ccode\u003eidentity\u003c/code\u003e as array in \u003ccode\u003evalid-evidence.json\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff9cc28f9c9554328bd6c1ad56098be5a692d5e9: fix: use componentEvidence array for Evidence.Identity field (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e016ee293d464d6383be3a714f7fb0debebef8ad5: build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e77153ab5fe005f6484ac1e1225e7152df00db3f1: build(deps): bump actions/checkout from 4.2.0 to 4.2.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4f50d02c1282ac1d0d7448502b231a0e84a1e529: build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eb84451219e77e0fbbe7d5ba054bcf25dbc7aaea4: build(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e238cbea3479fed9fdfcbfa5f1751828390a05211: build(deps): bump actions/setup-go from 5.1.0 to 5.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ebbe8f3c2c7c4567514ae966c69bf93fc1b3dba2a: build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.1...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.1\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Chinmaya0011/syftsbom/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chinmaya0011%2Fsyftsbom/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"},{"uuid":"4373451391","node_id":"PR_kwDOSDAo-c7X2SRu","number":30,"state":"closed","title":"chore(deps): bump the go-modules group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T00:54:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T00:51:04.000Z","updated_at":"2026-05-11T00:54:51.000Z","time_to_close":605025,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go-modules","update_count":4,"packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/gofrs/flock","old_version":"0.12.1","new_version":"0.13.0","repository_url":"https://github.com/gofrs/flock"},{"name":"github.com/google/jsonschema-go","old_version":"0.4.2","new_version":"0.4.3","repository_url":"https://github.com/google/jsonschema-go"},{"name":"github.com/modelcontextprotocol/go-sdk","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/modelcontextprotocol/go-sdk"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-modules group with 4 updates in the / directory: [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go), [github.com/gofrs/flock](https://github.com/gofrs/flock), [github.com/google/jsonschema-go](https://github.com/google/jsonschema-go) and [github.com/modelcontextprotocol/go-sdk](https://github.com/modelcontextprotocol/go-sdk).\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.3 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gofrs/flock` from 0.12.1 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gofrs/flock/releases\"\u003egithub.com/gofrs/flock's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eMinimum Go version 1.24\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add Stat method by \u003ca href=\"https://github.com/ferhatelmas\"\u003e\u003ccode\u003e@​ferhatelmas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gofrs/flock/pull/127\"\u003egofrs/flock#127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.22.0 to 0.37.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ehttps://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/bfec60bb026171031050af631b6dec974f14e9fa\"\u003e\u003ccode\u003ebfec60b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/7094284415ad11369be4662a7c12be25963b4ea5\"\u003e\u003ccode\u003e7094284\u003c/code\u003e\u003c/a\u003e chore: update linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/8111aec69ca1501f26bb5198ed02673e87806e65\"\u003e\u003ccode\u003e8111aec\u003c/code\u003e\u003c/a\u003e feat: add Stat method (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/127\"\u003e#127\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/6f0f0ed4e14d546b238ae500710aba38b924e135\"\u003e\u003ccode\u003e6f0f0ed\u003c/code\u003e\u003c/a\u003e chore(deps): bump the github-actions group with 4 updates (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/126\"\u003e#126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/fe44231e563ec57fda028bc2484140fb1f24a6d1\"\u003e\u003ccode\u003efe44231\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/f74f0fb0332646c6b3730bfe9cce6fc0badc52c6\"\u003e\u003ccode\u003ef74f0fb\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 in the go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c1f6d161c8e3b29a4d612e34ff17b37d00d4cd2f\"\u003e\u003ccode\u003ec1f6d16\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c542c57ff5f6af1d62b6864144170b612731796a\"\u003e\u003ccode\u003ec542c57\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.29.2 to 3.29.5 in the github-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/425570ba9b698b04bb9506c4906f137fb34ac7e0\"\u003e\u003ccode\u003e425570b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/12753ea298e1aeb97f0881ff3fc07eabcb2b86e5\"\u003e\u003ccode\u003e12753ea\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.28.18 to 3.29.2 in the github-a...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/jsonschema-go` from 0.4.2 to 0.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/jsonschema-go/releases\"\u003egithub.com/google/jsonschema-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.4.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eimprove anyOf errors by \u003ca href=\"https://github.com/jba\"\u003e\u003ccode\u003e@​jba\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/61\"\u003egoogle/jsonschema-go#61\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: infer - support map with non-string key type by \u003ca href=\"https://github.com/rafaeljusto\"\u003e\u003ccode\u003e@​rafaeljusto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/70\"\u003egoogle/jsonschema-go#70\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/jsonschema-go/compare/v0.4.2...0.4.3\"\u003ehttps://github.com/google/jsonschema-go/compare/v0.4.2...0.4.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.4.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eimprove anyOf errors by \u003ca href=\"https://github.com/jba\"\u003e\u003ccode\u003e@​jba\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/61\"\u003egoogle/jsonschema-go#61\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: infer - support map with non-string key type by \u003ca href=\"https://github.com/rafaeljusto\"\u003e\u003ccode\u003e@​rafaeljusto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/70\"\u003egoogle/jsonschema-go#70\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/jsonschema-go/compare/v0.4.2...v0.4.3\"\u003ehttps://github.com/google/jsonschema-go/compare/v0.4.2...v0.4.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/jsonschema-go/commit/8c4ab4f02ef64dcea5502e47a6113e8292944087\"\u003e\u003ccode\u003e8c4ab4f\u003c/code\u003e\u003c/a\u003e fix: infer - support map with non-string key type (\u003ca href=\"https://redirect.github.com/google/jsonschema-go/issues/70\"\u003e#70\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/jsonschema-go/commit/8bd57428bbbea55d718267fa5b20bbb59b4f9fbd\"\u003e\u003ccode\u003e8bd5742\u003c/code\u003e\u003c/a\u003e improve anyOf errors (\u003ca href=\"https://redirect.github.com/google/jsonschema-go/issues/61\"\u003e#61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/jsonschema-go/compare/v0.4.2...0.4.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/modelcontextprotocol/go-sdk` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/releases\"\u003egithub.com/modelcontextprotocol/go-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0-pre.1\u003c/h2\u003e\n\u003cp\u003eIn this release we introduce several smaller fixes and improvements, and we started working for release 2026-06-30. The main new feature is the introduction of \u003ccode\u003eClientCredentialsHandler\u003c/code\u003e for OAuth client credentials grant.\u003c/p\u003e\n\u003ch2\u003eAdd \u003ccode\u003eClientCredentialsHandler\u003c/code\u003e for OAuth client credentials grant\u003c/h2\u003e\n\u003cp\u003eAdded \u003ccode\u003eClientCredentialsHandler\u003c/code\u003e implementing \u003ccode\u003eauth.OAuthHandler\u003c/code\u003e using the OAuth 2.0 Client Credentials grant (RFC 6749 Section 4.4) for service-to-service authentication with pre-registered credentials.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eextauth: add ClientCredentialsHandler for OAuth client credentials grant by \u003ca href=\"https://github.com/ravyg\"\u003e\u003ccode\u003e@​ravyg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/895\"\u003emodelcontextprotocol/go-sdk#895\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2026-06-30 Release related PRs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat: add automatic application_type inference by \u003ca href=\"https://github.com/guglielmo-san\"\u003e\u003ccode\u003e@​guglielmo-san\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/904\"\u003emodelcontextprotocol/go-sdk#904\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eNew \u003ccode\u003eapplication_type\u003c/code\u003e field is added to the \u003ccode\u003eClientRegistrationMetadata\u003c/code\u003e for DynamicClientRegistration. If not specified, the \u003ccode\u003eapplication_type\u003c/code\u003e will be inferred from the RedirectURIs. This implements \u003ca href=\"https://redirect.github.com/modelcontextprotocol/modelcontextprotocol/pull/837\"\u003eSEP-837\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efeat: HTTP Header Standardization for method and name by \u003ca href=\"https://github.com/guglielmo-san\"\u003e\u003ccode\u003e@​guglielmo-san\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/907\"\u003emodelcontextprotocol/go-sdk#907\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eBy mirroring key fields from the JSON-RPC payload into HTTP headers, network intermediaries such as load balancers, proxies, and observability tools can route and process MCP traffic without deep packet inspection, reducing latency and computational overhead. This partially implements \u003ca href=\"https://modelcontextprotocol.io/seps/2243-http-standardization\"\u003eSEP-2243\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBehavior Changes\u003c/h2\u003e\n\u003ch3\u003e\u003ccode\u003eSetError\u003c/code\u003e Behavior Change\u003c/h3\u003e\n\u003cp\u003ePreviously the \u003ccode\u003eSetError\u003c/code\u003e method on \u003ccode\u003eCallToolResult\u003c/code\u003e always overwrote the \u003ccode\u003eContent\u003c/code\u003e field with the error text. Now \u003ccode\u003eSetError\u003c/code\u003e preserves the existing value if it has already been populated. You can restore the previous behavior by setting the environment variable \u003ccode\u003eseterroroverwrite=1\u003c/code\u003e.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003emcp: preserve existing Content in SetError by \u003ca href=\"https://github.com/ravyg\"\u003e\u003ccode\u003e@​ravyg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/864\"\u003emodelcontextprotocol/go-sdk#864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCross-Origin Protection Default Change\u003c/h3\u003e\n\u003cp\u003ePreviously (v1.4.1-v1.5.0) default (zero-value) cross-origin protection was applied when \u003ccode\u003eCrossOriginProtection\u003c/code\u003e in \u003ccode\u003eStreamableHTTPOptions\u003c/code\u003e was \u003ccode\u003enil\u003c/code\u003e. Now cross-origin protection is not enabled by default when \u003ccode\u003eCrossOriginProtection\u003c/code\u003e is nil.\nYou can restore the previous behavior (enable by default) by setting \u003ccode\u003eenableoriginverification=1\u003c/code\u003e.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003emcp: remove default cross origin protection by \u003ca href=\"https://github.com/maciej-kisiel\"\u003e\u003ccode\u003e@​maciej-kisiel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/906\"\u003emodelcontextprotocol/go-sdk#906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ccode\u003edisablecrossoriginprotection\u003c/code\u003e was replaced by \u003ccode\u003eenableoriginverification\u003c/code\u003e after the default was changed to not enable cross-origin protection.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003ejsonescaping\u003c/code\u003e option was removed, according to plan.\u003c/p\u003e\n\u003ch2\u003eOther Changes to the SDK\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: remove unused util functions by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/871\"\u003emodelcontextprotocol/go-sdk#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.32.4 to 4.35.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/873\"\u003emodelcontextprotocol/go-sdk#873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 6.3.0 to 6.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/874\"\u003emodelcontextprotocol/go-sdk#874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 6.2.0 to 6.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/875\"\u003emodelcontextprotocol/go-sdk#875\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump dominikh/staticcheck-action from 1.4.0 to 1.4.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/872\"\u003emodelcontextprotocol/go-sdk#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoauthex: accept 200 in client registration by \u003ca href=\"https://github.com/MatyasVondraOutreach\"\u003e\u003ccode\u003e@​MatyasVondraOutreach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/877\"\u003emodelcontextprotocol/go-sdk#877\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: allow Content-Type parameters in streamable transport by \u003ca href=\"https://github.com/rafaeljusto\"\u003e\u003ccode\u003e@​rafaeljusto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/878\"\u003emodelcontextprotocol/go-sdk#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: preserve existing Content in SetError by \u003ca href=\"https://github.com/ravyg\"\u003e\u003ccode\u003e@​ravyg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/864\"\u003emodelcontextprotocol/go-sdk#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: fix race condition in \u003ccode\u003eServerSession.startKeepalive\u003c/code\u003e by \u003ca href=\"https://github.com/begelundmuller\"\u003e\u003ccode\u003e@​begelundmuller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/856\"\u003emodelcontextprotocol/go-sdk#856\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: preserve CNAME when deploying to GitHub pages by \u003ca href=\"https://github.com/maciej-kisiel\"\u003e\u003ccode\u003e@​maciej-kisiel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/884\"\u003emodelcontextprotocol/go-sdk#884\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/f5f2015413f17f578fbacc839d2c05d0fdb3f1cc\"\u003e\u003ccode\u003ef5f2015\u003c/code\u003e\u003c/a\u003e MCPGODEBUG update for 1.6.0 (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/893\"\u003e#893\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/e01639a31808e27b9a77f02367340569f47e4b3d\"\u003e\u003ccode\u003ee01639a\u003c/code\u003e\u003c/a\u003e feat: HTTP Header Standardization for method and name (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/907\"\u003e#907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/93a41b2cfa81e6be813feadfd6dc1ed665c06da7\"\u003e\u003ccode\u003e93a41b2\u003c/code\u003e\u003c/a\u003e internal/jsonrpc2: remove unused code (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/910\"\u003e#910\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/446beae01800ca510b42345a7330f1b7b6bbbf89\"\u003e\u003ccode\u003e446beae\u003c/code\u003e\u003c/a\u003e mcp: Upgrade jsonschema-go (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/912\"\u003e#912\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/2e21834ad33e0b8105bf2e3b6733a27193f97caf\"\u003e\u003ccode\u003e2e21834\u003c/code\u003e\u003c/a\u003e extauth: add ClientCredentialsHandler for OAuth client credentials grant (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/895\"\u003e#895\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/2643b22a4ecc1197aedcd2d84d58e592bec04dfe\"\u003e\u003ccode\u003e2643b22\u003c/code\u003e\u003c/a\u003e feat: add automatic application_type inference (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/904\"\u003e#904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/db50910c70a71ac28abd761e0736799c048a8888\"\u003e\u003ccode\u003edb50910\u003c/code\u003e\u003c/a\u003e mcp: do not re-prompt OAuth after cancelled Authorize (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/885\"\u003e#885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/5f2cd8fd14bcd3b7f1e693dd741b5f1a3c338051\"\u003e\u003ccode\u003e5f2cd8f\u003c/code\u003e\u003c/a\u003e mcp: preserve transport errors in Write error chain (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/888\"\u003e#888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/0edc5971cd5dbab661b4122cd754a5c94d899e6a\"\u003e\u003ccode\u003e0edc597\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/896\"\u003e#896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/41e1f941bbaa1f9de78ac94f89af7b676a440dc8\"\u003e\u003ccode\u003e41e1f94\u003c/code\u003e\u003c/a\u003e mcp: remove default cross origin protection (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/906\"\u003e#906\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/shyshlakov/pci-dss-mcp/pull/30","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/shyshlakov%2Fpci-dss-mcp/issues/30","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/30/packages"},{"uuid":"4292527234","node_id":"PR_kwDOF48Qv87TydsK","number":410,"state":"open","title":"chore(deps): bump the common group across 1 directory with 52 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T01:08:10.000Z","updated_at":"2026-04-20T01:12:38.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":52,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.37.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.3","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/fatih/color","old_version":"1.18.0","new_version":"1.19.0","repository_url":"https://github.com/fatih/color"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.18.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.5","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.6","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.15.0","new_version":"1.17.1","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/mattn/go-shellwords","old_version":"1.0.12","new_version":"1.0.13","repository_url":"https://github.com/mattn/go-shellwords"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.15.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.8","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.1","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"golang.org/x/vuln","old_version":"1.1.4","new_version":"1.2.0","repository_url":"https://github.com/golang/vuln"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.2","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.49.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 27 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.37.0` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.3` |\n| [github.com/fatih/color](https://github.com/fatih/color) | `1.18.0` | `1.19.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.18.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.5` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.6` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.15.0` | `1.17.1` |\n| [github.com/mattn/go-shellwords](https://github.com/mattn/go-shellwords) | `1.0.12` | `1.0.13` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.15.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.8` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.53.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.1` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [golang.org/x/vuln](https://github.com/golang/vuln) | `1.1.4` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.2` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.49.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.1\u003c/h2\u003e\n\u003ch2\u003e1.21.1 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue in \u003ccode\u003eResponseError.Error()\u003c/code\u003e where the request URL path was being logged unescaped.\u003c/li\u003e\n\u003cli\u003eRedact query parameters when logging errors.\u003c/li\u003e\n\u003cli\u003eFor \u003ccode\u003eruntime.JoinPaths\u003c/code\u003e, don't add a slash between root and paths when \u003ccode\u003epaths\u003c/code\u003e starts with \u003ccode\u003e?\u003c/code\u003e (query string).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to Go 1.25.0.\u003c/li\u003e\n\u003cli\u003eUpgraded dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/63e4ba18204b0df554e330df8f85662e653e67ab\"\u003e\u003ccode\u003e63e4ba1\u003c/code\u003e\u003c/a\u003e Bump release date for azcore (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26613\"\u003e#26613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/fa0312174d17ff4cb7cb0118fa80de07409841c2\"\u003e\u003ccode\u003efa03121\u003c/code\u003e\u003c/a\u003e remove bypass local dns (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26609\"\u003e#26609\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c47f9a60dd1e9be6943ff0d6a5666a0ac09f6cfa\"\u003e\u003ccode\u003ec47f9a6\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 15153 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26607\"\u003e#26607\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/88b8b5b38ecebb929a2e302df054fed1d68618b8\"\u003e\u003ccode\u003e88b8b5b\u003c/code\u003e\u003c/a\u003e Changelog for v2.2.0 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26567\"\u003e#26567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/72ca19ae2b8b4514c4f48a5ff33495b03c08afd0\"\u003e\u003ccode\u003e72ca19a\u003c/code\u003e\u003c/a\u003e Storage STG 101 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26568\"\u003e#26568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/b64baf56c6b168d258b2a0678290ac5f9ab97938\"\u003e\u003ccode\u003eb64baf5\u003c/code\u003e\u003c/a\u003e Sync .github directory with azure-sdk-tools repository (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26600\"\u003e#26600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ecd64dd6500a04da22107925c3ba9fbe8e636f2c\"\u003e\u003ccode\u003eecd64dd\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.1 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26596\"\u003e#26596\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1d02f204d0146ffd7d13d5585bf3766e53c32cc5\"\u003e\u003ccode\u003e1d02f20\u003c/code\u003e\u003c/a\u003e Update copilot code review instructions and migration breaking change mitigat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6e9ce3212cc9d654d349778f19065eb5d849197\"\u003e\u003ccode\u003ef6e9ce3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 14973 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26531\"\u003e#26531\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d5a3baf11e0b743a4009efb8e84cbaee335fc0eb\"\u003e\u003ccode\u003ed5a3baf\u003c/code\u003e\u003c/a\u003e Update CODEOWNERS to remove one owner from Custom Providers (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26588\"\u003e#26588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/internal/v1.12.0\u003c/h2\u003e\n\u003ch2\u003e1.12.0 (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eIgnoredQueryParameters\u003c/code\u003e field to \u003ccode\u003eSetDefaultMatcherOptions\u003c/code\u003e for specifying query parameters to ignore during playback matching\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.37.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHEXPIRE\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.37.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esuport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/c1b59bfe154a01657c4b79734237fe5eba81f11b\"\u003e\u003ccode\u003ec1b59bf\u003c/code\u003e\u003c/a\u003e feat: implement HEXPIRE command (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.3\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.3 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe third patch release for containerd 2.2 contains various fixes\nand updates including a security patch.\u003c/p\u003e\n\u003ch3\u003eSecurity Updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003espdystream\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/spdystream/security/advisories/GHSA-pc3f-x583-g7j2\"\u003e\u003cstrong\u003eCVE-2026-35469\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve cgroup mount options for privileged containers (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13120\"\u003e#13120\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure UpdatePodSandbox returns Unimplemented instead of a generic error (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13023\"\u003e#13023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eGo client\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHandle absolute symlinks in rootfs user lookup to fix regressions when using Go 1.24 (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13015\"\u003e#13015\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eEnable mount manager in diff walking to fix layer extraction errors with some snapshotters (e.g., EROFS) (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13198\"\u003e#13198\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eApply hardening to prevent TOCTOU race during tar extraction (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12971\"\u003e#12971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eRestore support for client-mounted roots in Windows containers using process isolation (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13195\"\u003e#13195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate runc to v1.3.5 (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13061\"\u003e#13061\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eApply absolute symlink resolution to /etc/group in OCI spec to fix lookups on NixOS-style systems (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13019\"\u003e#13019\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHandle absolute symlinks in rootfs user lookup to fix regressions when using Go 1.24 (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13015\"\u003e#13015\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eSnapshotters\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix bug that caused whiteouts to be ignored when parallel unpack was used (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13125\"\u003e#13125\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eMaksym Pavlenko\u003c/li\u003e\n\u003cli\u003eChris Henzie\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003ePaulo Oliveira\u003c/li\u003e\n\u003cli\u003eHenry Wang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/77c84241c7cbdd9b4eca2591793e3d4f4317c590\"\u003e\u003ccode\u003e77c8424\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13224\"\u003e#13224\u003c/a\u003e from samuelkarp/prepare-release-2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/8a0f4ed5d360171d62ca625bc93f393a36241189\"\u003e\u003ccode\u003e8a0f4ed\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/13838281d5d289e45af809a6b7efc5f3b2f64222\"\u003e\u003ccode\u003e1383828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13217\"\u003e#13217\u003c/a\u003e from samuelkarp/update-spdystream-2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/31bd34a064dc7136413efde09b99a2bdd14dabe9\"\u003e\u003ccode\u003e31bd34a\u003c/code\u003e\u003c/a\u003e update github.com/moby/spdystream v0.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d2c2fc32179c4898a0571c9d2063f31c9153ad5d\"\u003e\u003ccode\u003ed2c2fc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13197\"\u003e#13197\u003c/a\u003e from thaJeztah/2.2_bump_compress\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/6b3c2de6cfee512bfa11d45fc02f2353d5f20bf2\"\u003e\u003ccode\u003e6b3c2de\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13198\"\u003e#13198\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-13186-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/409f75be8791d53e2e4e96ab060d8db56fd46b1e\"\u003e\u003ccode\u003e409f75b\u003c/code\u003e\u003c/a\u003e diff/walking: enable mount manager\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/1336f6c45d25c674963e5cb86ee1ea522e6f513e\"\u003e\u003ccode\u003e1336f6c\u003c/code\u003e\u003c/a\u003e vendor: github.com/klauspost/compress v1.18.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/33e93348fa26b9a7bb733d1739eab0f802d1ac01\"\u003e\u003ccode\u003e33e9334\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13195\"\u003e#13195\u003c/a\u003e from thaJeztah/2.2_bump_runhcs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/0d85aef0cbce3b654f27b61c20146e2c38ad700c\"\u003e\u003ccode\u003e0d85aef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13196\"\u003e#13196\u003c/a\u003e from thaJeztah/2.2_bump_hcsshim\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fatih/color` from 1.18.0 to 1.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fatih/color/releases\"\u003egithub.com/fatih/color's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.25.0 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/246\"\u003efatih/color#246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for issue \u003ca href=\"https://redirect.github.com/fatih/color/issues/230\"\u003e#230\u003c/a\u003e set/unsetwriter symmetric wrt color support detection by \u003ca href=\"https://github.com/ataypamart\"\u003e\u003ccode\u003e@​ataypamart\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/243\"\u003efatih/color#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: go mod cleanup by \u003ca href=\"https://github.com/sashamelentyev\"\u003e\u003ccode\u003e@​sashamelentyev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/244\"\u003efatih/color#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.28.0 to 0.30.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/249\"\u003efatih/color#249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github.com/mattn/go-colorable from 0.1.13 to 0.1.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/248\"\u003efatih/color#248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CI and go deps by \u003ca href=\"https://github.com/fatih\"\u003e\u003ccode\u003e@​fatih\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/254\"\u003efatih/color#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.31.0 to 0.37.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/268\"\u003efatih/color#268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: include escape codes in byte counts from \u003ccode\u003eFprint\u003c/code\u003e, \u003ccode\u003eFprintf\u003c/code\u003e by \u003ca href=\"https://github.com/qualidafial\"\u003e\u003ccode\u003e@​qualidafial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/282\"\u003efatih/color#282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.37.0 to 0.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/277\"\u003efatih/color#277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add nil check for os.Stdout to prevent panic on Windows services by \u003ca href=\"https://github.com/majiayu000\"\u003e\u003ccode\u003e@​majiayu000\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/275\"\u003efatih/color#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dominikh/staticcheck-action from 1.3.1 to 1.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/259\"\u003efatih/color#259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/273\"\u003efatih/color#273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize Color.Equals performance (O(n²) → O(n)) by \u003ca href=\"https://github.com/UnSubble\"\u003e\u003ccode\u003e@​UnSubble\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/269\"\u003efatih/color#269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/266\"\u003efatih/color#266\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ataypamart\"\u003e\u003ccode\u003e@​ataypamart\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/243\"\u003efatih/color#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sashamelentyev\"\u003e\u003ccode\u003e@​sashamelentyev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/244\"\u003efatih/color#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/qualidafial\"\u003e\u003ccode\u003e@​qualidafial\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/282\"\u003efatih/color#282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/majiayu000\"\u003e\u003ccode\u003e@​majiayu000\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/275\"\u003efatih/color#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/UnSubble\"\u003e\u003ccode\u003e@​UnSubble\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/269\"\u003efatih/color#269\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fatih/color/compare/v1.18.0...v1.19.0\"\u003ehttps://github.com/fatih/color/compare/v1.18.0...v1.19.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/ca25f6e17f118a5a259f3c2c0d395949d1103a5a\"\u003e\u003ccode\u003eca25f6e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/266\"\u003e#266\u003c/a\u003e from fatih/dependabot/github_actions/actions/setup-go-6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/120598440a16510564204450092d1e7925fad9ae\"\u003e\u003ccode\u003e1205984\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/5715c20323d8c79f60d4944831fcfa3b76cd5734\"\u003e\u003ccode\u003e5715c20\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/269\"\u003e#269\u003c/a\u003e from UnSubble/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/2f6e2003760028129f34c4ad5c3728b904811d3c\"\u003e\u003ccode\u003e2f6e200\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/f72ec947d0c34504dfd08b0db68d89f37503fc90\"\u003e\u003ccode\u003ef72ec94\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/273\"\u003e#273\u003c/a\u003e from fatih/dependabot/github_actions/actions/checkout-6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/848e6330af5690fa24bb038d5330839a33f1f0e5\"\u003e\u003ccode\u003e848e633\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/4c2cd3443934693bd8892fc0f7bb5bbec8e3788a\"\u003e\u003ccode\u003e4c2cd34\u003c/code\u003e\u003c/a\u003e Add tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/7f812f029c41eddd3ac7fbbdf6cc78e4b175944b\"\u003e\u003ccode\u003e7f812f0\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/b7fc9f9557629556aff702751b5268cefcbafa15\"\u003e\u003ccode\u003eb7fc9f9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/259\"\u003e#259\u003c/a\u003e from fatih/dependabot/github_actions/dominikh/staticc...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/239a88f715e8e35f40492da7a1e08f7173e78e05\"\u003e\u003ccode\u003e239a88f\u003c/code\u003e\u003c/a\u003e Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fatih/color/compare/v1.18.0...v1.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/ea3e7ec9dfc54f577a01afb4dd601c0284604264\"\u003e\u003ccode\u003eea3e7ec\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2004\"\u003e#2004\u003c/a\u003e from go-git/v5-http-hardening\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bcd20a9c525826081262a06a9ed9c3167abfcd53\"\u003e\u003ccode\u003ebcd20a9\u003c/code\u003e\u003c/a\u003e plumbing: transport/http, Add support for followRedirects policy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/45ae193b3a60aa8ec8a3e373f7265a7819473d5f\"\u003e\u003ccode\u003e45ae193\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1944\"\u003e#1944\u003c/a\u003e from go-git/fix-perms\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fda4f7464b597ff33d2dea1c026482a5e900037c\"\u003e\u003ccode\u003efda4f74\u003c/code\u003e\u003c/a\u003e storage: filesystem/dotgit, Skip writing pack files that already exist on disk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/2212dc7caeb2a389fe2129923811ef63f75a557a\"\u003e\u003ccode\u003e2212dc7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1941\"\u003e#1941\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/ebb2d7da7f5d5aebeaa0b5e13276d72d602c1ae3\"\u003e\u003ccode\u003eebb2d7d\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/cli v29.4.0, moby/api v1.54.1, moby/client v0.4.0 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2254\"\u003egoogle/go-containerregistry#2254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate to Go 1.26.2 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2255\"\u003egoogle/go-containerregistry#2255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 in the actions group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2257\"\u003egoogle/go-containerregistry#2257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 in the go-deps group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2260\"\u003egoogle/go-containerregistry#2260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: do not make a viral minimum go version by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2237\"\u003egoogle/go-containerregistry#2237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid pruning absolute links from extracted and flattened images by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2241\"\u003egoogle/go-containerregistry#2241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 5 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2245\"\u003egoogle/go-containerregistry#2245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to go1.25.8, and use separate .go-version file by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2246\"\u003egoogle/go-containerregistry#2246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump CI go version to 1.26.1 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2242\"\u003egoogle/go-containerregistry#2242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2240\"\u003egoogle/go-containerregistry#2240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efork distribution client v3 auth-challenge as an internal package (squashed) by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2248\"\u003egoogle/go-containerregistry#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: valida...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/410","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/410","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/410/packages"},{"uuid":"4079669356","node_id":"PR_kwDOF48Qv87Kx9it","number":397,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 49 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-03-23T01:05:35.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-16T01:08:03.000Z","updated_at":"2026-03-23T01:05:37.000Z","time_to_close":604652,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":49,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.37.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.2","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.17.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.2","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.5","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.15.0","new_version":"1.16.1","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.14.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.5","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.1","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.1","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.37.0` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.2` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.17.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.2` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.5` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.15.0` | `1.16.1` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.14.1` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.5` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.53.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.1` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.1` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.37.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHEXPIRE\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.37.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esuport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/c1b59bfe154a01657c4b79734237fe5eba81f11b\"\u003e\u003ccode\u003ec1b59bf\u003c/code\u003e\u003c/a\u003e feat: implement HEXPIRE command (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.2\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.2 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe second patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix migrated CRI image config when using legacy registry mirrors (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12987\"\u003e#12987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUnpack images with per-layer labels for runtime-specific snapshotters (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12936\"\u003e#12936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix CNI issue where DEL is never executed after a restart (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12926\"\u003e#12926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHarden error handling to strip potentially-sensitive registry parameters (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12804\"\u003e#12804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix nil pointer dereference in container spec memory metrics when memory constraints are not fully configured (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12731\"\u003e#12731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse the specified runtime handler when pulling images (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12721\"\u003e#12721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReduce noisy CDI logs (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12717\"\u003e#12717\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix regression for pulling encrypted images (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12712\"\u003e#12712\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix unintended dropping of mount flags for read-only bind-mounts in user namespaces (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12944\"\u003e#12944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix AppArmor bug disallowing unix domain sockets on newer kernels (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12897\"\u003e#12897\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003ectr development tool\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ectr image mount\u003c/code\u003e failing with \u0026quot;no such device\u0026quot; (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12831\"\u003e#12831\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMaksym Pavlenko\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003eMichael Zappa\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eFabiano Fidêncio\u003c/li\u003e\n\u003cli\u003eJérôme Poulin\u003c/li\u003e\n\u003cli\u003eLuke Hinds\u003c/li\u003e\n\u003cli\u003eAadhar Agarwal\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eAlex Chernyakhovsky\u003c/li\u003e\n\u003cli\u003eChris Adeniyi-Jones\u003c/li\u003e\n\u003cli\u003eKazuyoshi Kato\u003c/li\u003e\n\u003cli\u003eRodrigo Campos\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eYou Binhao\u003c/li\u003e\n\u003cli\u003eningmingxiao\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/301b2dac98f15c27117da5c8af12118a041a31d9\"\u003e\u003ccode\u003e301b2da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12998\"\u003e#12998\u003c/a\u003e from samuelkarp/prepare-release-2.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/7e6ecf43421f9cfa64cd7043f86ae224dc7dc0a4\"\u003e\u003ccode\u003e7e6ecf4\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/5dc7bb27ef38fb97b7bafffb7ea3f0343d310cf8\"\u003e\u003ccode\u003e5dc7bb2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12987\"\u003e#12987\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12617-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/a20dead7cc644291433b2da4b1efa2f70c8a144f\"\u003e\u003ccode\u003ea20dead\u003c/code\u003e\u003c/a\u003e set default config_path in plugin init\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/8b085dd5db15c94e6415aa146878a16d73bc23b2\"\u003e\u003ccode\u003e8b085dd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12936\"\u003e#12936\u003c/a\u003e from fidencio/release-2.2/backport-12835\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/7022bea840ef1d62dc1ea25966c8fc968b5f922d\"\u003e\u003ccode\u003e7022bea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12957\"\u003e#12957\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12950-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/68855cb0be5d372fd53c450e91cc3224157abb4b\"\u003e\u003ccode\u003e68855cb\u003c/code\u003e\u003c/a\u003e ci: modprobe xt_comment on almalinux\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/46fabcc774d48da32436f545a814f9637d8a6879\"\u003e\u003ccode\u003e46fabcc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12944\"\u003e#12944\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12941-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef7a8beb375c8322b9a09666f50150717b9ae335\"\u003e\u003ccode\u003eef7a8be\u003c/code\u003e\u003c/a\u003e core/mount: add test for getUnprivilegedMountFlags\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/07b2cc07e4f3d553c5ca801c9f0800b55ba7eac2\"\u003e\u003ccode\u003e07b2cc0\u003c/code\u003e\u003c/a\u003e core/mount: fix getUnprivilegedMountFlags iterating over indices instead of v...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5d20a62c72b0bb179cfe35f6c9a9672b9df36f51\"\u003e\u003ccode\u003e5d20a62\u003c/code\u003e\u003c/a\u003e storage: filesystem, Fix permissions for loose and packed objs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8ed442c6f3d4a0a31094661d112df2f0adcbb8e7\"\u003e\u003ccode\u003e8ed442c\u003c/code\u003e\u003c/a\u003e backport, git: Improve Status() speed with new index.ModTime check (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1862\"\u003e#1862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/c7b5960533dc1072ce182cf60f71b75764770008\"\u003e\u003ccode\u003ec7b5960\u003c/code\u003e\u003c/a\u003e build: Align test workflow with main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8e71edfdc167ef23a9ca342edefee669204a2b7a\"\u003e\u003ccode\u003e8e71edf\u003c/code\u003e\u003c/a\u003e git: Add strict checks for supported extensions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/438a37f65bc6bcc48ebbc641b07d94baebd9eaf3\"\u003e\u003ccode\u003e438a37f\u003c/code\u003e\u003c/a\u003e git: worktree, optimize infiles function for very large repos (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/67c70069de887ba2aefa910255f5ce39d4f12be3\"\u003e\u003ccode\u003e67c7006\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1839\"\u003e#1839\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4ca3f026e3ef8dcfc4ceb390f46672f280028b52\"\u003e\u003ccode\u003e4ca3f02\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBetter handle redirects to https in ping by \u003ca href=\"https://github.com/jonjohnsonjr\"\u003e\u003ccode\u003e@​jonjohnsonjr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2225\"\u003egoogle/go-containerregistry#2225\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes a regression in \u003ccode\u003ecrane\u003c/code\u003e introduced in the previous release.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WithFileBufferedOpener for file-backed daemon image buffering by \u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: fix case in auth response json by \u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/9e0ccb0a7240fe7cc820f0fc78e2e2b1ef8b7e71\"\u003e\u003ccode\u003e9e0ccb0\u003c/code\u003e\u003c/a\u003e Better handle redirects to https in ping (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2225\"\u003e#2225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/85f2bf5f7303fc95161f334e4fc2e66c36e12b1e\"\u003e\u003ccode\u003e85f2bf5\u003c/code\u003e\u003c/a\u003e crane: fix case in auth response json (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2218\"\u003e#2218\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e971d630dc417fd583bbd65f45e73abb1393cadf\"\u003e\u003ccode\u003ee971d63\u003c/code\u003e\u003c/a\u003e Add WithFileBufferedOpener for file-backed daemon image buffering (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2214\"\u003e#2214\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump the go gr...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/397","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/397","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/397/packages"},{"uuid":"4042742022","node_id":"PR_kwDOF48Qv87I7Xhj","number":396,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 48 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-03-16T01:05:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-09T01:07:51.000Z","updated_at":"2026-03-16T01:05:51.000Z","time_to_close":604678,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":48,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.37.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.17.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.2","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.14.0","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.5","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.37.0` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.17.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.2` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.4` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.15.0` | `1.16.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.14.0` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.5` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.53.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.37.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHEXPIRE\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.37.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esuport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/c1b59bfe154a01657c4b79734237fe5eba81f11b\"\u003e\u003ccode\u003ec1b59bf\u003c/code\u003e\u003c/a\u003e feat: implement HEXPIRE command (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5d20a62c72b0bb179cfe35f6c9a9672b9df36f51\"\u003e\u003ccode\u003e5d20a62\u003c/code\u003e\u003c/a\u003e storage: filesystem, Fix permissions for loose and packed objs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8ed442c6f3d4a0a31094661d112df2f0adcbb8e7\"\u003e\u003ccode\u003e8ed442c\u003c/code\u003e\u003c/a\u003e backport, git: Improve Status() speed with new index.ModTime check (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1862\"\u003e#1862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/c7b5960533dc1072ce182cf60f71b75764770008\"\u003e\u003ccode\u003ec7b5960\u003c/code\u003e\u003c/a\u003e build: Align test workflow with main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8e71edfdc167ef23a9ca342edefee669204a2b7a\"\u003e\u003ccode\u003e8e71edf\u003c/code\u003e\u003c/a\u003e git: Add strict checks for supported extensions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/438a37f65bc6bcc48ebbc641b07d94baebd9eaf3\"\u003e\u003ccode\u003e438a37f\u003c/code\u003e\u003c/a\u003e git: worktree, optimize infiles function for very large repos (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/67c70069de887ba2aefa910255f5ce39d4f12be3\"\u003e\u003ccode\u003e67c7006\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1839\"\u003e#1839\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4ca3f026e3ef8dcfc4ceb390f46672f280028b52\"\u003e\u003ccode\u003e4ca3f02\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBetter handle redirects to https in ping by \u003ca href=\"https://github.com/jonjohnsonjr\"\u003e\u003ccode\u003e@​jonjohnsonjr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2225\"\u003egoogle/go-containerregistry#2225\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes a regression in \u003ccode\u003ecrane\u003c/code\u003e introduced in the previous release.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WithFileBufferedOpener for file-backed daemon image buffering by \u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: fix case in auth response json by \u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/9e0ccb0a7240fe7cc820f0fc78e2e2b1ef8b7e71\"\u003e\u003ccode\u003e9e0ccb0\u003c/code\u003e\u003c/a\u003e Better handle redirects to https in ping (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2225\"\u003e#2225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/85f2bf5f7303fc95161f334e4fc2e66c36e12b1e\"\u003e\u003ccode\u003e85f2bf5\u003c/code\u003e\u003c/a\u003e crane: fix case in auth response json (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2218\"\u003e#2218\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e971d630dc417fd583bbd65f45e73abb1393cadf\"\u003e\u003ccode\u003ee971d63\u003c/code\u003e\u003c/a\u003e Add WithFileBufferedOpener for file-backed daemon image buffering (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2214\"\u003e#2214\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://g...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/396","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/396","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/396/packages"},{"uuid":"3975927028","node_id":"PR_kwDOHba8m87FiEga","number":107,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 47 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-09T01:45:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-23T01:47:18.000Z","updated_at":"2026-03-09T01:45:21.000Z","time_to_close":1209483,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":47,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.5","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.0","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.13.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.4","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 25 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.5` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.0` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.4` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.13.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.4` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/42bdf1f9044e2145acaed6ac4dbf1b8d257da5bd\"\u003e\u003ccode\u003e42bdf1f\u003c/code\u003e\u003c/a\u003e storage: filesystem, Verify idx matches pack file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4146a5653f186f90057afecb7e0addd9e623cf19\"\u003e\u003ccode\u003e4146a56\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Verify idxfile's checksum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/63d78ec080cb176f8cd7bf46ce14f4ba01c1d2e5\"\u003e\u003ccode\u003e63d78ec\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, Add new ErrMalformedPackFile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/25f1624754395a0c67839e71b34956c853f2eb3d\"\u003e\u003ccode\u003e25f1624\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1800\"\u003e#1800\u003c/a\u003e from Ch00k/no-delete-untracked-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/600fb139079e3c6886fcfeb20021c707e99e29b4\"\u003e\u003ccode\u003e600fb13\u003c/code\u003e\u003c/a\u003e git: worktree, Don't delete local untracked files when resetting worktree\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/390a56941510fdc19276aa298228d61889aad97a\"\u003e\u003ccode\u003e390a569\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1746\"\u003e#1746\u003c/a\u003e from pjbgf/bump-go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/61c8b859ce3366257354695e99d78fc3739b60fb\"\u003e\u003ccode\u003e61c8b85\u003c/code\u003e\u003c/a\u003e build: Bump Go test versions to 1.23-1.25 (v5)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e5a05ecd4fb91dc5323ec77667346ae94d84c043\"\u003e\u003ccode\u003ee5a05ec\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1744\"\u003e#1744\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-c...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1495930b098b5e72394ae8ccc2d9396b8aa7e013\"\u003e\u003ccode\u003e1495930\u003c/code\u003e\u003c/a\u003e plumbing: Remove use of non-constant format strings\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b6eadd8bb191e9564d5dadecc10291d35ac06932\"\u003e\u003ccode\u003eb6eadd8\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2207\"\u003e#2207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/93aa2732266afabbde66bd80d55563e339056432\"\u003e\u003ccode\u003e93aa273\u003c/code\u003e\u003c/a\u003e Improve performance of v1.NewHash (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2194\"\u003e#2194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/795787c558e1bee15319df39784c557c0d224681\"\u003e\u003ccode\u003e795787c\u003c/code\u003e\u003c/a\u003e mutate: don't skip dir replacements via whiteout in export (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2191\"\u003e#2191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow downloading S3 files from MinIO over http by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/570\"\u003ehashicorp/go-getter#570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/574\"\u003ehashicorp/go-getter#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group across 1 directory with 12 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/575\"\u003ehashicorp/go-getter#575\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4...\n\n_Description has been truncated_","html_url":"https://github.com/sn0rlaxlife/trivy/pull/107","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sn0rlaxlife%2Ftrivy/issues/107","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/107/packages"},{"uuid":"3975854682","node_id":"PR_kwDOF48Qv87Fh144","number":391,"state":"open","title":"chore(deps): bump the common group across 1 directory with 47 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-23T01:07:47.000Z","updated_at":"2026-03-09T02:12:41.100Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":47,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.5","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.0","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.13.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.4","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 25 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.5` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.0` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.4` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.13.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.4` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/42bdf1f9044e2145acaed6ac4dbf1b8d257da5bd\"\u003e\u003ccode\u003e42bdf1f\u003c/code\u003e\u003c/a\u003e storage: filesystem, Verify idx matches pack file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4146a5653f186f90057afecb7e0addd9e623cf19\"\u003e\u003ccode\u003e4146a56\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Verify idxfile's checksum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/63d78ec080cb176f8cd7bf46ce14f4ba01c1d2e5\"\u003e\u003ccode\u003e63d78ec\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, Add new ErrMalformedPackFile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/25f1624754395a0c67839e71b34956c853f2eb3d\"\u003e\u003ccode\u003e25f1624\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1800\"\u003e#1800\u003c/a\u003e from Ch00k/no-delete-untracked-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/600fb139079e3c6886fcfeb20021c707e99e29b4\"\u003e\u003ccode\u003e600fb13\u003c/code\u003e\u003c/a\u003e git: worktree, Don't delete local untracked files when resetting worktree\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/390a56941510fdc19276aa298228d61889aad97a\"\u003e\u003ccode\u003e390a569\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1746\"\u003e#1746\u003c/a\u003e from pjbgf/bump-go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/61c8b859ce3366257354695e99d78fc3739b60fb\"\u003e\u003ccode\u003e61c8b85\u003c/code\u003e\u003c/a\u003e build: Bump Go test versions to 1.23-1.25 (v5)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e5a05ecd4fb91dc5323ec77667346ae94d84c043\"\u003e\u003ccode\u003ee5a05ec\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1744\"\u003e#1744\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-c...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1495930b098b5e72394ae8ccc2d9396b8aa7e013\"\u003e\u003ccode\u003e1495930\u003c/code\u003e\u003c/a\u003e plumbing: Remove use of non-constant format strings\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b6eadd8bb191e9564d5dadecc10291d35ac06932\"\u003e\u003ccode\u003eb6eadd8\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2207\"\u003e#2207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/93aa2732266afabbde66bd80d55563e339056432\"\u003e\u003ccode\u003e93aa273\u003c/code\u003e\u003c/a\u003e Improve performance of v1.NewHash (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2194\"\u003e#2194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/795787c558e1bee15319df39784c557c0d224681\"\u003e\u003ccode\u003e795787c\u003c/code\u003e\u003c/a\u003e mutate: don't skip dir replacements via whiteout in export (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2191\"\u003e#2191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow downloading S3 files from MinIO over http by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/570\"\u003ehashicorp/go-getter#570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/574\"\u003ehashicorp/go-getter#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group across 1 directory with 12 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/575\"\u003ehashicorp/go-getter#575\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/391","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/391","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/391/packages"},{"uuid":"3932642318","node_id":"PR_kwDOG3hzTs7DUgoZ","number":1080,"state":"open","title":"chore(deps): Bump github.com/CycloneDX/cyclonedx-go from 0.9.3 to 0.10.0 in /webhook","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-12T16:04:25.000Z","updated_at":"2026-02-24T16:13:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":"/webhook","ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.3 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.3\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/vmware-tanzu/cartographer-conventions/pull/1080","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/vmware-tanzu%2Fcartographer-conventions/issues/1080","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1080/packages"},{"uuid":"3916027333","node_id":"PR_kwDOKKY8LM7CdtPB","number":235,"state":"closed","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.3 to 0.10.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-02-10T14:23:31.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-09T11:59:57.000Z","updated_at":"2026-02-10T14:23:33.000Z","time_to_close":95014,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.3 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.3\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/codacy/codacy-trivy/pull/235","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/codacy%2Fcodacy-trivy/issues/235","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/235/packages"},{"uuid":"3900922554","node_id":"PR_kwDOGVphkM7BsX8r","number":545,"state":"open","title":"chore(deps): bump the common group across 1 directory with 28 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-05T10:48:47.000Z","updated_at":"2026-02-08T03:26:03.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":28,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.20.0","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/GoogleCloudPlatform/docker-credential-gcr/v2","old_version":"2.1.30","new_version":"2.1.31","repository_url":"https://github.com/GoogleCloudPlatform/docker-credential-gcr"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.1","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.2.0","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.4.0","new_version":"2.5.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.5.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.3.0","new_version":"5.3.1","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.8.3","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.11.0","new_version":"1.13.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/tetratelabs/wazero","old_version":"1.10.1","new_version":"1.11.0","repository_url":"https://github.com/tetratelabs/wazero"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"golang.org/x/mod","old_version":"0.31.0","new_version":"0.32.0","repository_url":"https://github.com/golang/mod"},{"name":"golang.org/x/tools","old_version":"0.40.0","new_version":"0.41.0","repository_url":"https://github.com/golang/tools"},{"name":"helm.sh/helm/v3","old_version":"3.19.2","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.40.1","new_version":"1.44.3"},{"name":"github.com/nikolalohinski/gonja/v2","old_version":"2.4.2","new_version":"2.5.2","repository_url":"https://github.com/nikolalohinski/gonja"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 21 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.20.0` | `1.21.0` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.3` | `0.10.0` |\n| [github.com/GoogleCloudPlatform/docker-credential-gcr/v2](https://github.com/GoogleCloudPlatform/docker-credential-gcr) | `2.1.30` | `2.1.31` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.1` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.2.0` | `2.2.1` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.4.0` | `2.5.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.5.0` | `3.5.1` |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.3.0` | `5.3.1` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.8.3` | `1.8.4` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.11.0` | `1.13.1` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/tetratelabs/wazero](https://github.com/tetratelabs/wazero) | `1.10.1` | `1.11.0` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [golang.org/x/mod](https://github.com/golang/mod) | `0.31.0` | `0.32.0` |\n| [golang.org/x/tools](https://github.com/golang/tools) | `0.40.0` | `0.41.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.19.2` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.40.1` | `1.44.3` |\n| [github.com/nikolalohinski/gonja/v2](https://github.com/nikolalohinski/gonja) | `2.4.2` | `2.5.2` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.20.0 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.20.0...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.3 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/GoogleCloudPlatform/docker-credential-gcr/v2` from 2.1.30 to 2.1.31\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases\"\u003egithub.com/GoogleCloudPlatform/docker-credential-gcr/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.31\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate version string tests to match version format by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/pull/185\"\u003eGoogleCloudPlatform/docker-credential-gcr#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github.com/sirupsen/logrus from 1.8.1 to 1.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/pull/184\"\u003eGoogleCloudPlatform/docker-credential-gcr#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/compare/v2.1.30...v2.1.31\"\u003ehttps://github.com/GoogleCloudPlatform/docker-credential-gcr/compare/v2.1.30...v2.1.31\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/commit/96df16c5a7c8545ae9df9c3d9554964dba7b3f8c\"\u003e\u003ccode\u003e96df16c\u003c/code\u003e\u003c/a\u003e Bump github.com/sirupsen/logrus from 1.8.1 to 1.8.3 (\u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/issues/184\"\u003e#184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/commit/e6984d08fcf06af852a75fe06b95cddb488d4417\"\u003e\u003ccode\u003ee6984d0\u003c/code\u003e\u003c/a\u003e Update version string tests to match version format (\u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/issues/185\"\u003e#185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/compare/v2.1.30...v2.1.31\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.1 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.2.0 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.2.0...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.4.0 to 2.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrint qualified type name when ErrorUnused=true causes errors for unused keys in embedded fields by \u003ca href=\"https://github.com/jmacd\"\u003e\u003ccode\u003e@​jmacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/113\"\u003ego-viper/mapstructure#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/126\"\u003ego-viper/mapstructure#126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.29.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/131\"\u003ego-viper/mapstructure#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/129\"\u003ego-viper/mapstructure#129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: support for automatically initializing squashed pointer structs by \u003ca href=\"https://github.com/tuunit\"\u003e\u003ccode\u003e@​tuunit\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/71\"\u003ego-viper/mapstructure#71\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/134\"\u003ego-viper/mapstructure#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/142\"\u003ego-viper/mapstructure#142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix slice deep map (owned) by \u003ca href=\"https://github.com/jphastings\"\u003e\u003ccode\u003e@​jphastings\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/144\"\u003ego-viper/mapstructure#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix lint violations by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/157\"\u003ego-viper/mapstructure#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: switch to devenv by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/158\"\u003ego-viper/mapstructure#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/151\"\u003ego-viper/mapstructure#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.10 to 4.31.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/153\"\u003ego-viper/mapstructure#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/154\"\u003ego-viper/mapstructure#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5.0.0 to 6.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/160\"\u003ego-viper/mapstructure#160\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 6.0.0 to 6.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/159\"\u003ego-viper/mapstructure#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.7 to 4.31.8 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/162\"\u003ego-viper/mapstructure#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/161\"\u003ego-viper/mapstructure#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.8 to 4.31.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/163\"\u003ego-viper/mapstructure#163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeature: Add map field name to convert structs dynamically instead of individually with a tag. by \u003ca href=\"https://github.com/thespags\"\u003e\u003ccode\u003e@​thespags\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/149\"\u003ego-viper/mapstructure#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(decoder): support multiple tag names in order by \u003ca href=\"https://github.com/DarkiT\"\u003e\u003ccode\u003e@​DarkiT\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/59\"\u003ego-viper/mapstructure#59\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: optional root object name by \u003ca href=\"https://github.com/andreev-fn\"\u003e\u003ccode\u003e@​andreev-fn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/137\"\u003ego-viper/mapstructure#137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unmarshaler interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/166\"\u003ego-viper/mapstructure#166\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jmacd\"\u003e\u003ccode\u003e@​jmacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/113\"\u003ego-viper/mapstructure#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tuunit\"\u003e\u003ccode\u003e@​tuunit\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/71\"\u003ego-viper/mapstructure#71\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jphastings\"\u003e\u003ccode\u003e@​jphastings\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/144\"\u003ego-viper/mapstructure#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thespags\"\u003e\u003ccode\u003e@​thespags\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/149\"\u003ego-viper/mapstructure#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DarkiT\"\u003e\u003ccode\u003e@​DarkiT\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/59\"\u003ego-viper/mapstructure#59\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andreev-fn\"\u003e\u003ccode\u003e@​andreev-fn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/137\"\u003ego-viper/mapstructure#137\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.4.0...v2.5.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.4.0...v2.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9aa3f77c68e2a56222ea436c1bfa631f1b1072d5\"\u003e\u003ccode\u003e9aa3f77\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/166\"\u003e#166\u003c/a\u003e from go-viper/unmarshal2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ae32a619963bc512eedecf39d6114c53b6141305\"\u003e\u003ccode\u003eae32a61\u003c/code\u003e\u003c/a\u003e doc: add more documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/320c8c9462b5fce88e6a6b2ca84ac6572f89e985\"\u003e\u003ccode\u003e320c8c9\u003c/code\u003e\u003c/a\u003e test: cover unmarshaler to map\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/5b228297c7907a2ccf111ba13384ef4e46ee21b3\"\u003e\u003ccode\u003e5b22829\u003c/code\u003e\u003c/a\u003e feat: add unmarshaler interface\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/fd74c75bae0e10fe9e986fc2256a29b0ecef1b86\"\u003e\u003ccode\u003efd74c75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/137\"\u003e#137\u003c/a\u003e from andreev-fn/opt-root-name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/dee46614248bbb8265a24fa3975216e4387cac36\"\u003e\u003ccode\u003edee4661\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/59\"\u003e#59\u003c/a\u003e from DarkiT/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/5605df44c49e65ca3f1205d23b50933d3e60f156\"\u003e\u003ccode\u003e5605df4\u003c/code\u003e\u003c/a\u003e chore: cover more test cases, fix edge cases, add docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/6166631c5a2cf200bdefb2e05352481ec2f36a35\"\u003e\u003ccode\u003e6166631\u003c/code\u003e\u003c/a\u003e fix(mapstructure): add multi-tag support and regression tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/6471aa6cf510a0cb2110e3e89ea769b76eadaa08\"\u003e\u003ccode\u003e6471aa6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/149\"\u003e#149\u003c/a\u003e from thespags/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/dbffaaa4db23836718adca6f080a536490cfbeb6\"\u003e\u003ccode\u003edbffaaa\u003c/code\u003e\u003c/a\u003e chore: add more tests and clarification to the documentation\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.4.0...v2.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.5.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.3.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔐 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd spellcheck Github action to catch common spelling mistakes by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithNotBeforeRequired\u003c/code\u003e parser option and add test coverage by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/456\"\u003egolang-jwt/jwt#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate godoc example func to properly refer to \u003ccode\u003eNewWithClaims()\u003c/code\u003e by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/459\"\u003egolang-jwt/jwt#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate github workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/462\"\u003egolang-jwt/jwt#462\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional test for CustomClaims that validates unmarshalling behaviour by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/457\"\u003egolang-jwt/jwt#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix early file close in jwt cli by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/472\"\u003egolang-jwt/jwt#472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TPM signature reference by \u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove misleading ParserOptions documentation in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/484\"\u003egolang-jwt/jwt#484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSave signature to Token struct after successful signing by \u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e by \u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e👒 Dependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump crate-ci/typos from 1.34.0 to 1.35.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/461\"\u003egolang-jwt/jwt#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.35.4 to 1.36.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/470\"\u003egolang-jwt/jwt#470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/478\"\u003egolang-jwt/jwt#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.36.2 to 1.39.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/480\"\u003egolang-jwt/jwt#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/481\"\u003egolang-jwt/jwt#481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/469\"\u003egolang-jwt/jwt#469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/488\"\u003egolang-jwt/jwt#488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/487\"\u003egolang-jwt/jwt#487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.40.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/490\"\u003egolang-jwt/jwt#490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.41.0 to 1.42.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/492\"\u003egolang-jwt/jwt#492\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db\"\u003e\u003ccode\u003e7ceae61\u003c/code\u003e\u003c/a\u003e Add release.yml for changelog configuration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5\"\u003e\u003ccode\u003edce8e4d\u003c/code\u003e\u003c/a\u003e Set token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/414\"\u003e#414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e\"\u003e\u003ccode\u003e8889e20\u003c/code\u003e\u003c/a\u003e Save signature to Token struct after successful signing (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1\"\u003e\u003ccode\u003ed237f82\u003c/code\u003e\u003c/a\u003e ci: update github-actions schedule interval to monthly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116\"\u003e\u003ccode\u003ed8dce95\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.41.0 to 1.42.1 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290\"\u003e\u003ccode\u003ee931803\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.40.0 to 1.41.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/490\"\u003e#490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d\"\u003e\u003ccode\u003ee6a0afa\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/487\"\u003e#487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e\"\u003e\u003ccode\u003e9f85c9e\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.39.0 to 1.40.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/488\"\u003e#488\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd\"\u003e\u003ccode\u003e60a8669\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/469\"\u003e#469\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434\"\u003e\u003ccode\u003e76f5828\u003c/code\u003e\u003c/a\u003e Remove misleading ParserOptions documentation (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/484\"\u003e#484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.8.3 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow downloading S3 files from MinIO over http by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/570\"\u003ehashicorp/go-getter#570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/574\"\u003ehashicorp/go-getter#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group across 1 directory with 12 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/575\"\u003ehashicorp/go-getter#575\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/576ab86838f39cc6ece14084683fc00119494028\"\u003e\u003ccode\u003e576ab86\u003c/code\u003e\u003c/a\u003e [chore] : Bump the go group across 1 directory with 12 updates (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/575\"\u003e#575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/efec2db5b357f8f723c580c0fa92354f0e0c25f7\"\u003e\u003ccode\u003eefec2db\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/574\"\u003e#574\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-36c6...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/7ccb947a22ae994092b8f3494763dbe21b08b634\"\u003e\u003ccode\u003e7ccb947\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group across 1 directory with 6 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/228ad65a8b515099a68e3f97fb287ec0e38d5650\"\u003e\u003ccode\u003e228ad65\u003c/code\u003e\u003c/a\u003e fix: allow downloading S3 files from MinIO over http (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/5cb8b18db2d17fdc2bf0489d53da84462617942c\"\u003e\u003ccode\u003e5cb8b18\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/567\"\u003e#567\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-92ca...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/f358fa6b0466d166078e556d5156985bfe742df7\"\u003e\u003ccode\u003ef358fa6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/571\"\u003e#571\u003c/a\u003e from hashicorp/compliance/update-headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/376d40ccb4e5d70cff2c997761ab5da9dfe345b7\"\u003e\u003ccode\u003e376d40c\u003c/code\u003e\u003c/a\u003e [COMPLIANCE] Update Copyright and License Headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9d34fba942c3d0641162edaac1c98874e55ddadd\"\u003e\u003ccode\u003e9d34fba\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group across 1 directory with 3 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/fd63a333b7645fd37f9e4bfde195e209be4ba23e\"\u003e\u003ccode\u003efd63a33\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/566\"\u003e#566\u003c/a\u003e from hashicorp/compliance/update-headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/ac8218db7281acbd3c610e172e162a48bb39733d\"\u003e\u003ccode\u003eac8218d\u003c/code\u003e\u003c/a\u003e [COMPLIANCE] Update Copyright and License Headers\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.9.0 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/232\"\u003ein-toto/in-toto-golang#232\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate maintainers and governance by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/233\"\u003ein-toto/in-toto-golang#233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/234\"\u003ein-toto/in-toto-golang#234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.3 to 2.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/235\"\u003ein-toto/in-toto-golang#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/236\"\u003ein-toto/in-toto-golang#236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix expired signature in test by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/241\"\u003ein-toto/in-toto-golang#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.8.0 to 0.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/240\"\u003ein-toto/in-toto-golang#240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.5 to 2.1.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/239\"\u003ein-toto/in-toto-golang#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/242\"\u003ein-toto/in-toto-golang#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/243\"\u003ein-toto/in-toto-golang#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions workflows by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/246\"\u003ein-toto/in-toto-golang#246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.9.0 to 0.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/245\"\u003ein-toto/in-toto-golang#245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove linters that are no longer supported and add to make file by \u003ca href=\"https://github.com/pxp928\"\u003e\u003ccode\u003e@​pxp928\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/249\"\u003ein-toto/in-toto-golang#249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd match products feature by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/237\"\u003ein-toto/in-toto-golang#237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unfinished link on record stop by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/248\"\u003ein-toto/in-toto-golang#248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/250\"\u003ein-toto/in-toto-golang#250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.6.0 to 0.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/251\"\u003ein-toto/in-toto-golang#251\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/255\"\u003ein-toto/in-toto-golang#255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd tests for coverage in envelope.go by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/256\"\u003ein-toto/in-toto-golang#256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/257\"\u003ein-toto/in-toto-golang#257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/258\"\u003ein-toto/in-toto-golang#258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/259\"\u003ein-toto/in-toto-golang#259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes filepath pattern matching in windows by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/254\"\u003ein-toto/in-toto-golang#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.5.3 to 3.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/261\"\u003ein-toto/in-toto-golang#261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.6.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/262\"\u003ein-toto/in-toto-golang#262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.11.0 to 0.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/263\"\u003ein-toto/in-toto-golang#263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/264\"\u003ein-toto/in-toto-golang#264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.0 to 1.58.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/266\"\u003ein-toto/in-toto-golang#266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate Provenance v1 struct in favor of /attestation protobufs by \u003ca href=\"https://github.com/marcelamelara\"\u003e\u003ccode\u003e@​marcelamelara\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/267\"\u003ein-toto/in-toto-golang#267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.1 to 1.58.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/269\"\u003ein-toto/in-toto-golang#269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/270\"\u003ein-toto/in-toto-golang#270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop use of \u003ccode\u003eany\u003c/code\u003e for hash objects by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/238\"\u003ein-toto/in-toto-golang#238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.12.0 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/271\"\u003ein-toto/in-toto-golang#271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/273\"\u003ein-toto/in-toto-golang#273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.2 to 1.58.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/272\"\u003ein-toto/in-toto-golang#272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/net from 0.12.0 to 0.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/274\"\u003ein-toto/in-toto-golang#274\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/275\"\u003ein-toto/in-toto-golang#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/276\"\u003ein-toto/in-toto-golang#276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTrigger workflow on pushes only to master branch by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/280\"\u003ein-toto/in-toto-golang#280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.13.0 to 0.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/278\"\u003ein-toto/in-toto-golang#278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/277\"\u003ein-toto/in-toto-golang#277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd openssf scorecard by \u003ca href=\"https://github.com/viveksahu26\"\u003e\u003ccode\u003e@​viveksahu26\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/281\"\u003ein-toto/in-toto-golang#281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/282\"\u003ein-toto/in-toto-golang#282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix coveralls, use action by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto...\n\n_Description has been truncated_","html_url":"https://github.com/aiflash/trivy/pull/545","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aiflash%2Ftrivy/issues/545","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/545/packages"},{"uuid":"3893952765","node_id":"PR_kwDOF7tDWs7BVUPc","number":243,"state":"closed","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.3 to 0.10.0 in the others group across 1 directory","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-04T06:55:39.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-04T00:56:25.000Z","updated_at":"2026-02-04T06:55:41.000Z","time_to_close":21554,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":"the others group across 1 directory","ecosystem":"go"},"body":"Bumps the others group with 1 update in the / directory: [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go).\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.3 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.3\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/BA7JCM/vuls/pull/243","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BA7JCM%2Fvuls/issues/243","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/243/packages"},{"uuid":"3886792844","node_id":"PR_kwDOFs4BQs7A9YbA","number":352,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 45 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-16T15:23:42.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-02T16:14:34.000Z","updated_at":"2026-02-16T15:23:44.000Z","time_to_close":1206548,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":45,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.2","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.11.0","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.1","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.4","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.4","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.3.0","new_version":"5.3.1","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.20.7","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.9","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.24.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.7.1","new_version":"1.13.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.5","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.2","new_version":"1.44.3"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 24 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.2` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.11.0` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.1` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.4` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.4` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.3.0` | `5.3.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.20.7` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.9` | `1.8.4` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.24.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.7.1` | `1.13.1` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.4.0` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.5` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.2` | `1.44.3` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.2 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.2...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.11.0 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.13.0\u003c/h2\u003e\n\u003ch2\u003e1.13.0 (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eAzurePowerShellCredential\u003c/code\u003e, which authenticates as the identity logged in to Azure PowerShell\n(thanks \u003ca href=\"https://github.com/ArmaanMcleod\"\u003eArmaanMcleod\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWhen \u003ccode\u003eAZURE_TOKEN_CREDENTIALS\u003c/code\u003e is set to \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e, \u003ccode\u003eDefaultAzureCredential\u003c/code\u003e behaves the same as\ndoes \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e when used directly. It doesn't apply special retry configuration or attempt to\ndetermine whether IMDS is available. (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25265\"\u003e#25265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved the \u003ccode\u003eWorkloadIdentityCredential\u003c/code\u003e support for identity binding mode added in v1.13.0-beta.1.\nIt will return in v1.14.0-beta.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.11.0...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.1 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.4 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.4...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/de8ecc3b52e6a37b24a5a8ca362b54cafed2bc0b\"\u003e\u003ccode\u003ede8ecc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1743\"\u003e#1743\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3e752f043d07fd7f34edb6818b187c0267a5c762\"\u003e\u003ccode\u003e3e752f0\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3a317549e0ca40927f062a3d53873ecc36a810c1\"\u003e\u003ccode\u003e3a31754\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1741\"\u003e#1741\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/acc28f117fb304f9197601cf0230ef8d263258a6\"\u003e\u003ccode\u003eacc28f1\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/95f388043ec1dd955327cec8b3b4b566a6e356ee\"\u003e\u003ccode\u003e95f3880\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1742\"\u003e#1742\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-n...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/329f9266ae5d8ca6cb58ce3206004165090bd3cc\"\u003e\u003ccode\u003e329f926\u003c/code\u003e\u003c/a\u003e build: Update module golang.org/x/net to v0.38.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/399e04beb0b3284c5cb0d2bf684bb430c6612146\"\u003e\u003ccode\u003e399e04b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1734\"\u003e#1734\u003c/a\u003e from pjbgf/fix-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/2025eae3aed7eeb0659893c069f918155c6b8b78\"\u003e\u003ccode\u003e2025eae\u003c/code\u003e\u003c/a\u003e build: test, Fix build on Windows.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fb6806f2711e17db162623faa01b1fb25c4dbfcc\"\u003e\u003ccode\u003efb6806f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1732\"\u003e#1732\u003c/a\u003e from swills/find-hash-panic-fix-backport\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/382530f513390f06a5271148b3e133eaa8ebf725\"\u003e\u003ccode\u003e382530f\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, prevent panic\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.3.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔐 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd spellcheck Github action to catch common spelling mistakes by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithNotBeforeRequired\u003c/code\u003e parser option and add test coverage by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/456\"\u003egolang-jwt/jwt#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate godoc example func to properly refer to \u003ccode\u003eNewWithClaims()\u003c/code\u003e by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/459\"\u003egolang-jwt/jwt#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate github workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/462\"\u003egolang-jwt/jwt#462\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional test for CustomClaims that validates unmarshalling behaviour by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/457\"\u003egolang-jwt/jwt#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix early file close in jwt cli by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/472\"\u003egolang-jwt/jwt#472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TPM signature reference by \u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove misleading ParserOptions documentation in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/484\"\u003egolang-jwt/jwt#484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSave signature to Token struct after successful signing by \u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e by \u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e👒 Dependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump crate-ci/typos from 1.34.0 to 1.35.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/461\"\u003egolang-jwt/jwt#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.35.4 to 1.36.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/470\"\u003egolang-jwt/jwt#470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/478\"\u003egolang-jwt/jwt#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.36.2 to 1.39.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/480\"\u003egolang-jwt/jwt#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/481\"\u003egolang-jwt/jwt#481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/469\"\u003egolang-jwt/jwt#469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/488\"\u003egolang-jwt/jwt#488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/487\"\u003egolang-jwt/jwt#487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.40.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/490\"\u003egolang-jwt/jwt#490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.41.0 to 1.42.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/492\"\u003egolang-jwt/jwt#492\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db\"\u003e\u003ccode\u003e7ceae61\u003c/code\u003e\u003c/a\u003e Add release.yml for changelog configuration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5\"\u003e\u003ccode\u003edce8e4d\u003c/code\u003e\u003c/a\u003e Set token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/414\"\u003e#414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e\"\u003e\u003ccode\u003e8889e20\u003c/code\u003e\u003c/a\u003e Save signature to Token struct after successful signing (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1\"\u003e\u003ccode\u003ed237f82\u003c/code\u003e\u003c/a\u003e ci: update github-actions schedule interval to monthly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116\"\u003e\u003ccode\u003ed8dce95\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.41.0 to 1.42.1 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290\"\u003e\u003ccode\u003ee931803\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.40.0 to 1.41.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/490\"\u003e#490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d\"\u003e\u003ccode\u003ee6a0afa\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/487\"\u003e#487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e\"\u003e\u003ccode\u003e9f85c9e\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.39.0 to 1.40.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/488\"\u003e#488\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd\"\u003e\u003ccode\u003e60a8669\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/469\"\u003e#469\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434\"\u003e\u003ccode\u003e76f5828\u003c/code\u003e\u003c/a\u003e Remove misleading ParserOptions documentation (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/484\"\u003e#484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.20.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e075f209120b2467fd1b7d24727f1890a0edb74a\"\u003e\u003ccode\u003ee075f20\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ego mod tidy\u003c/code\u003e on dependabot update (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2171\"\u003e#2171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/45aacf4b5f2c55bddec27ba3ee023e105c187187\"\u003e\u003ccode\u003e45aacf4\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2170\"\u003e#2170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/073b936909d86b06c25d6774243ae5979f85d6f1\"\u003e\u003ccode\u003e073b936\u003c/code\u003e\u003c/a\u003e Update dependencies and deprecate DockerVersion field (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2164\"\u003e#2164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/390dacd7ad170b73ff404a8cef0b58bbf5fb42d2\"\u003e\u003ccode\u003e390dacd\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2163\"\u003e#2163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/ca44d47f67072068ffbd4d2ead4851666c334a05\"\u003e\u003ccode\u003eca44d47\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2162\"\u003e#2162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/999cc1fbfb704fa24e4568a4f3cdb61752f08e83\"\u003e\u003ccode\u003e999cc1f\u003c/code\u003e\u003c/a\u003e Bump github.com/docker/docker (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2161\"\u003e#2161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d1809c862390e60825858e6cd5835f87a46d7e7c\"\u003e\u003ccode\u003ed1809c8\u003c/code\u003e\u003c/a\u003e Build artifacts for riscv64 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2159\"\u003e#2159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/7471efdf98711e7c834b884a5660143a8a91bced\"\u003e\u003ccode\u003e7471efd\u003c/code\u003e\u003c/a\u003e Bump the auxiliary-deps group across 3 directories with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2156\"\u003e#2156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/2bb5bb01b8d981642fc2c257afb8fb12731014b3\"\u003e\u003ccode\u003e2bb5bb0\u003c/code\u003e\u003c/a\u003e Bump the actions group with 5 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2155\"\u003e#2155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/16371c1fe7e601ac6a69d112ec1efd91cbad9049\"\u003e\u003ccode\u003e16371c1\u003c/code\u003e\u003c/a\u003e Remove manual vendor setting for dependabot (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2151\"\u003e#2151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.9 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"htt...\n\n_Description has been truncated_","html_url":"https://github.com/MaineK00n/trivy/pull/352","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/MaineK00n%2Ftrivy/issues/352","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/352/packages"},{"uuid":"3884281993","node_id":"PR_kwDOP6kBxs7A1Cjc","number":21,"state":"open","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.2 to 0.10.0 in /src","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-02T06:48:21.000Z","updated_at":"2026-02-02T06:48:21.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":"/src","ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.2 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.2\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/iron-kite/rudor/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iron-kite%2Frudor/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"},{"uuid":"3882486820","node_id":"PR_kwDOHCizo87AvI0I","number":459,"state":"open","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.5.2 to 0.10.0","user":"dependabot[bot]","labels":["dependencies","go","lifecycle/stale"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-01T17:14:05.000Z","updated_at":"2026-04-03T00:10:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.5.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.5.2 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39ede217f126cfbc80eabf880f6643be3d392a4f: feat: add MarshalXML and UnmarshalXML (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee9191ed11a269fcb6b3fb54e000ed6d81b5bf9db: feat: add UnmarshalJSON (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e80fede1f13a956d35eb14696cd2ca9d2d943f809: fix: add json tag for \u003ccode\u003eIdentity\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e24e9503293f0837e6e7ea3ff670ef958e6075b87: fix: tests (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed68a199bc1747e5d6a7d4196c2f270535bbf6e3e: fix: use \u003ccode\u003eidentity\u003c/code\u003e as array in \u003ccode\u003evalid-evidence.json\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff9cc28f9c9554328bd6c1ad56098be5a692d5e9: fix: use componentEvidence array for Evidence.Identity field (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e016ee293d464d6383be3a714f7fb0debebef8ad5: build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e77153ab5fe005f6484ac1e1225e7152df00db3f1: build(deps): bump actions/checkout from 4.2.0 to 4.2.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4f50d02c1282ac1d0d7448502b231a0e84a1e529: build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eb84451219e77e0fbbe7d5ba054bcf25dbc7aaea4: build(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e238cbea3479fed9fdfcbfa5f1751828390a05211: build(deps): bump actions/setup-go from 5.1.0 to 5.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ebbe8f3c2c7c4567514ae966c69bf93fc1b3dba2a: build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.5.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.5.2\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/project-zot/trivy/pull/459","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/project-zot%2Ftrivy/issues/459","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/459/packages"},{"uuid":"3802362842","node_id":"PR_kwDOP3jSus68mVBT","number":26,"state":"closed","title":"chore(deps): bump the others group across 1 directory with 18 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-16T00:12:13.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-12T00:24:27.000Z","updated_at":"2026-01-16T00:12:14.000Z","time_to_close":344866,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"others","update_count":18,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/storage/azblob","old_version":"1.6.2","new_version":"1.6.3","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/aws/aws-sdk-go-v2","old_version":"1.38.3","new_version":"1.41.0","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/config","old_version":"1.31.6","new_version":"1.32.6","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/service/s3","old_version":"1.87.3","new_version":"1.95.0","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.20.7","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/gosnmp/gosnmp","old_version":"1.42.1","new_version":"1.43.1","repository_url":"https://github.com/gosnmp/gosnmp"},{"name":"github.com/hashicorp/go-version","old_version":"1.7.0","new_version":"1.8.0","repository_url":"https://github.com/hashicorp/go-version"},{"name":"github.com/olekukonko/tablewriter","old_version":"1.0.9","new_version":"1.1.2","repository_url":"https://github.com/olekukonko/tablewriter"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/spf13/cobra","old_version":"1.10.1","new_version":"1.10.2","repository_url":"https://github.com/spf13/cobra"}],"path":null,"ecosystem":"go"},"body":"Bumps the others group with 12 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/storage/azblob](https://github.com/Azure/azure-sdk-for-go) | `1.6.2` | `1.6.3` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.9.3` |\n| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.38.3` | `1.41.0` |\n| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.31.6` | `1.32.6` |\n| [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.87.3` | `1.95.0` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.20.7` |\n| [github.com/gosnmp/gosnmp](https://github.com/gosnmp/gosnmp) | `1.42.1` | `1.43.1` |\n| [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.8.0` |\n| [github.com/olekukonko/tablewriter](https://github.com/olekukonko/tablewriter) | `1.0.9` | `1.1.2` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.1` | `1.10.2` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/storage/azblob` from 1.6.2 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/storage/azblob's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/storage/azblob/v1.6.3\u003c/h2\u003e\n\u003ch2\u003e1.6.3 (2025-10-16)\u003c/h2\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated service version to \u003ccode\u003e2025-11-05\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated \u003ccode\u003eazidentity\u003c/code\u003e version to \u003ccode\u003e1.13.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated \u003ccode\u003eazcore\u003c/code\u003e version to \u003ccode\u003e1.19.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/fb793bc9abed763f0b4e0f45bebe9451897351f3\"\u003e\u003ccode\u003efb793bc\u003c/code\u003e\u003c/a\u003e [Storage] Prep for release - stg99 GA (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25442\"\u003e#25442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6d8a42734f87cd925e84d39cc942868315445037\"\u003e\u003ccode\u003e6d8a427\u003c/code\u003e\u003c/a\u003e cosmos: add some extra logging in the query engine path (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25444\"\u003e#25444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/8ca57158d260613855520f07505d5e4195f4ff4f\"\u003e\u003ccode\u003e8ca5715\u003c/code\u003e\u003c/a\u003e [azappconfig] update README (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25427\"\u003e#25427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9ba44b8b5a5a4f5e4c8f99a8cf98d0b4f245f15e\"\u003e\u003ccode\u003e9ba44b8\u003c/code\u003e\u003c/a\u003e Changelog for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25428\"\u003e#25428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c554d029c027090190a9761609a696c3bf0580fb\"\u003e\u003ccode\u003ec554d02\u003c/code\u003e\u003c/a\u003e Update Key Vault CODEOWNERS (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25437\"\u003e#25437\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ad122df3a8ea66d7fba5789a9c0d64703dd4a55d\"\u003e\u003ccode\u003ead122df\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12501 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25435\"\u003e#25435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/29d03e50bf4671b41e38d2319db79169a5bac9ee\"\u003e\u003ccode\u003e29d03e5\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12483 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25423\"\u003e#25423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/61e4230a97bc81f4928f27a3e8e103c6d2d8f2b1\"\u003e\u003ccode\u003e61e4230\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/hdinsight/armhdinsight/1.3.0-beta.3 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25331\"\u003e#25331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/be00bdd7a6f30dcfee5552e22a50397d646adbda\"\u003e\u003ccode\u003ebe00bdd\u003c/code\u003e\u003c/a\u003e update release date (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25410\"\u003e#25410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/284da628bef96ccbc3bbf358a793c63d196f8cea\"\u003e\u003ccode\u003e284da62\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12467 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25422\"\u003e#25422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/storage/azblob/v1.6.2...sdk/storage/azblob/v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.9.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/72e4629d580624c7d6bd815e2d209a0a62d08047\"\u003e\u003ccode\u003e72e4629\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/243\"\u003e#243\u003c/a\u003e from madpah/fix/component-data-schema\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6636ce32f8b15a5104fda6636937e91d62d647e7\"\u003e\u003ccode\u003e6636ce3\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a39bf6be93d4ecca076f4379031dc24cddac4937\"\u003e\u003ccode\u003ea39bf6b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/232\"\u003e#232\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/cff8cd548a906d6a5534b60056f2ab4b3e9c522b\"\u003e\u003ccode\u003ecff8cd5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/233\"\u003e#233\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6a93b76287597c06d2aa64e9281bb8e003bb8bbb\"\u003e\u003ccode\u003e6a93b76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/234\"\u003e#234\u003c/a\u003e from rdghe/fix/add-missing-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3e0f245f7b936eb38e16d0518a2a0020c0d69223\"\u003e\u003ccode\u003e3e0f245\u003c/code\u003e\u003c/a\u003e fix: add missing properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f32eebc413c71327df4fd6f264aa9f22e6e8cce1\"\u003e\u003ccode\u003ef32eebc\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/5fcf097fbdcedb6832989d0a74195f0698b48de8\"\u003e\u003ccode\u003e5fcf097\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5.4.0 to 5.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75427c8613483b8939c4c5916d55f00fc1f458ef\"\u003e\u003ccode\u003e75427c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/222\"\u003e#222\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/551624d8f7fd283bc4b8d25fde912659b3f9a18e\"\u003e\u003ccode\u003e551624d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/217\"\u003e#217\u003c/a\u003e from CycloneDX/dependabot/github_actions/apache/skywa...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.9.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2` from 1.38.3 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2c5c1de983d67074b607e5e410102ab2821a06e0\"\u003e\u003ccode\u003e2c5c1de\u003c/code\u003e\u003c/a\u003e Release 2025-12-08\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/a968e75f31355127d6d21b5c1eeeef56c7293528\"\u003e\u003ccode\u003ea968e75\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b110f673443a879368b09088ddb3a41b42289810\"\u003e\u003ccode\u003eb110f67\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/82760c3f13f663592956106b7fc61e4f1fc1ce31\"\u003e\u003ccode\u003e82760c3\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/9e038d3c6c3dff3ed4d7da6c9ca8781bce3f4f69\"\u003e\u003ccode\u003e9e038d3\u003c/code\u003e\u003c/a\u003e [merge 12/8/25] default MaxConnsPerHost to 2048 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3245\"\u003e#3245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/55b9a85b5962a5529d4383caabb7c7c8cf2e34df\"\u003e\u003ccode\u003e55b9a85\u003c/code\u003e\u003c/a\u003e Release 2025-12-05\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/cb36f84a8640782421ce92ac04946ee270cbae98\"\u003e\u003ccode\u003ecb36f84\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/081bac07f1af24e5f7cd1028d120ef41cd1c2e42\"\u003e\u003ccode\u003e081bac0\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/25f26c231f47889249f6bf9b6b11ed817097abdf\"\u003e\u003ccode\u003e25f26c2\u003c/code\u003e\u003c/a\u003e Release 2025-12-04\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aadf9d36831914dd70472d25ba23bf9160304d67\"\u003e\u003ccode\u003eaadf9d3\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.38.3...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/config` from 1.31.6 to 1.32.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/776903f3dd7208803912e19d3aa25006a7fbdeee\"\u003e\u003ccode\u003e776903f\u003c/code\u003e\u003c/a\u003e Release 2024-12-02\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/170b13cac4658e0909b13468d3959f94c358faf3\"\u003e\u003ccode\u003e170b13c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/c1a02e760211a1d0762f664973ea4d896376a621\"\u003e\u003ccode\u003ec1a02e7\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2835f7bb8d4925acb36a5ab7813cca6ac8977cb7\"\u003e\u003ccode\u003e2835f7b\u003c/code\u003e\u003c/a\u003e Fix user agent to add business metrics at the end instead of prepend them (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ba4965dd291e68f9345c5eae4dec8a0f63bda436\"\u003e\u003ccode\u003eba4965d\u003c/code\u003e\u003c/a\u003e Release 2024-11-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/55149b05036afa39e3b7c6dd945543faee4069e6\"\u003e\u003ccode\u003e55149b0\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/fd6bb8b363cce171fba74b72d2bb4142b9306b7c\"\u003e\u003ccode\u003efd6bb8b\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/65ab4f88b048175d8fc13fab6f72f31b739a2455\"\u003e\u003ccode\u003e65ab4f8\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8939ed049c8b3490f9a3dbd4e4d3d56cf22a27f2\"\u003e\u003ccode\u003e8939ed0\u003c/code\u003e\u003c/a\u003e Release 2024-11-26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/23cf36b2492a3caf859a6235c6911f1c2fb715ca\"\u003e\u003ccode\u003e23cf36b\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.31.6...v1.32.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/credentials` from 1.18.10 to 1.19.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/c7c68659ce67e5b7e18f31bc66068cec9e3d790d\"\u003e\u003ccode\u003ec7c6865\u003c/code\u003e\u003c/a\u003e Release 2025-01-30\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/70f736c5dc0b8652c5fe5c387b2165c3b9beddb1\"\u003e\u003ccode\u003e70f736c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/28731c2bdef3c2555a95632396b6d4936e58099d\"\u003e\u003ccode\u003e28731c2\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/3505e4b255c327a1fa38f870612c327b93302dc0\"\u003e\u003ccode\u003e3505e4b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/0b4f6362bb9017615ed38124cdd20df7714bf98f\"\u003e\u003ccode\u003e0b4f636\u003c/code\u003e\u003c/a\u003e don't sign transfer-encoding header (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2991\"\u003e#2991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b820c5731d3bff3ae303166ea4379c73fb18a8d4\"\u003e\u003ccode\u003eb820c57\u003c/code\u003e\u003c/a\u003e Release 2025-01-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/40ddb76e611944643404e79a6b92ac335f2921f2\"\u003e\u003ccode\u003e40ddb76\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2b4adae0bf0cb97fd910110c1f567d5bbc1f348b\"\u003e\u003ccode\u003e2b4adae\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/78c2be4ca0b69cddb5825b20309e35d4f54c6cf4\"\u003e\u003ccode\u003e78c2be4\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;beta: feature/s3/transfermanager (S3 transfer manager v2) (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2988\"\u003e#2988\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5c9d67c15ecc49b769f7ddab05f840e723e146ac\"\u003e\u003ccode\u003e5c9d67c\u003c/code\u003e\u003c/a\u003e beta: feature/s3/transfermanager (S3 transfer manager v2) (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2988\"\u003e#2988\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.18.10...service/m2/v1.19.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.87.3 to 1.95.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/c6af97c5aac787ce84a5b3794be2c85e61faae56\"\u003e\u003ccode\u003ec6af97c\u003c/code\u003e\u003c/a\u003e Release 2025-12-23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/44c79bcf5ea5c91aa2cfacf1266550b840cddf72\"\u003e\u003ccode\u003e44c79bc\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/cbd895944cc8a09617c1b9100720f582a3250f2d\"\u003e\u003ccode\u003ecbd8959\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8db5742cd5c378d0529a19c693c7cc16fc16f882\"\u003e\u003ccode\u003e8db5742\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/567ea661f59a4b913e2d18078a96e90e488562e9\"\u003e\u003ccode\u003e567ea66\u003c/code\u003e\u003c/a\u003e Release 2025-12-22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6bedc004ae386aa60707c65519004b170b6193fa\"\u003e\u003ccode\u003e6bedc00\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/4b32467ac353bf36f904362c5e8be520c9150588\"\u003e\u003ccode\u003e4b32467\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/0183b9c8f1c84d6553146a29612356b754b9dab0\"\u003e\u003ccode\u003e0183b9c\u003c/code\u003e\u003c/a\u003e Release 2025-12-19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e3fc0009489b9b9b6c48aecd3ae16f6c988618a4\"\u003e\u003ccode\u003ee3fc000\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/552358d4e6aad86db68adb7514859428829f0817\"\u003e\u003ccode\u003e552358d\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.87.3...service/s3/v1.95.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.38.2 to 1.41.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8878ab2c86f54b5b35ae7c6b41b47f7c2ab1a128\"\u003e\u003ccode\u003e8878ab2\u003c/code\u003e\u003c/a\u003e Release 2025-12-09\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/3bb7070f414a0d3b0bdf3203af5a88d8c62141cb\"\u003e\u003ccode\u003e3bb7070\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/67298ad1e66d5d6c9fc284a45b2add8f6a2a76f1\"\u003e\u003ccode\u003e67298ad\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b57f9c7a9e62e3aea3c32499eec7b6b64bcfd102\"\u003e\u003ccode\u003eb57f9c7\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/18eff735fe4bb2d88a431b2821d54ed83a6bbe63\"\u003e\u003ccode\u003e18eff73\u003c/code\u003e\u003c/a\u003e upgrade to smithy v1.64.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3246\"\u003e#3246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2c5c1de983d67074b607e5e410102ab2821a06e0\"\u003e\u003ccode\u003e2c5c1de\u003c/code\u003e\u003c/a\u003e Release 2025-12-08\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/a968e75f31355127d6d21b5c1eeeef56c7293528\"\u003e\u003ccode\u003ea968e75\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b110f673443a879368b09088ddb3a41b42289810\"\u003e\u003ccode\u003eb110f67\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/82760c3f13f663592956106b7fc61e4f1fc1ce31\"\u003e\u003ccode\u003e82760c3\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/9e038d3c6c3dff3ed4d7da6c9ca8781bce3f4f69\"\u003e\u003ccode\u003e9e038d3\u003c/code\u003e\u003c/a\u003e [merge 12/8/25] default MaxConnsPerHost to 2048 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3245\"\u003e#3245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.38.2...service/sts/v1.41.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.20.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e075f209120b2467fd1b7d24727f1890a0edb74a\"\u003e\u003ccode\u003ee075f20\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ego mod tidy\u003c/code\u003e on dependabot update (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2171\"\u003e#2171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/45aacf4b5f2c55bddec27ba3ee023e105c187187\"\u003e\u003ccode\u003e45aacf4\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2170\"\u003e#2170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/073b936909d86b06c25d6774243ae5979f85d6f1\"\u003e\u003ccode\u003e073b936\u003c/code\u003e\u003c/a\u003e Update dependencies and deprecate DockerVersion field (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2164\"\u003e#2164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/390dacd7ad170b73ff404a8cef0b58bbf5fb42d2\"\u003e\u003ccode\u003e390dacd\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2163\"\u003e#2163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/ca44d47f67072068ffbd4d2ead4851666c334a05\"\u003e\u003ccode\u003eca44d47\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2162\"\u003e#2162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/999cc1fbfb704fa24e4568a4f3cdb61752f08e83\"\u003e\u003ccode\u003e999cc1f\u003c/code\u003e\u003c/a\u003e Bump github.com/docker/docker (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2161\"\u003e#2161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d1809c862390e60825858e6cd5835f87a46d7e7c\"\u003e\u003ccode\u003ed1809c8\u003c/code\u003e\u003c/a\u003e Build artifacts for riscv64 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2159\"\u003e#2159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/7471efdf98711e7c834b884a5660143a8a91bced\"\u003e\u003ccode\u003e7471efd\u003c/code\u003e\u003c/a\u003e Bump the auxiliary-deps group across 3 directories with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2156\"\u003e#2156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/2bb5bb01b8d981642fc2c257afb8fb12731014b3\"\u003e\u003ccode\u003e2bb5bb0\u003c/code\u003e\u003c/a\u003e Bump the actions group with 5 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2155\"\u003e#2155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/16371c1fe7e601ac6a69d112ec1efd91cbad9049\"\u003e\u003ccode\u003e16371c1\u003c/code\u003e\u003c/a\u003e Remove manual vendor setting for dependabot (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2151\"\u003e#2151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gosnmp/gosnmp` from 1.42.1 to 1.43.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gosnmp/gosnmp/releases\"\u003egithub.com/gosnmp/gosnmp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.43.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove spurious mock file by \u003ca href=\"https://github.com/SuperQ\"\u003e\u003ccode\u003e@​SuperQ\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/555\"\u003egosnmp/gosnmp#555\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gosnmp/gosnmp/compare/v1.43.0...v1.43.1\"\u003ehttps://github.com/gosnmp/gosnmp/compare/v1.43.0...v1.43.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.43.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 4.31.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/535\"\u003egosnmp/gosnmp#535\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/533\"\u003egosnmp/gosnmp#533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/530\"\u003egosnmp/gosnmp#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/529\"\u003egosnmp/gosnmp#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Go by \u003ca href=\"https://github.com/SuperQ\"\u003e\u003ccode\u003e@​SuperQ\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/536\"\u003egosnmp/gosnmp#536\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 6.0.0 to 6.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/541\"\u003egosnmp/gosnmp#541\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/538\"\u003egosnmp/gosnmp#538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5.0.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/540\"\u003egosnmp/gosnmp#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.2 to 4.31.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/539\"\u003egosnmp/gosnmp#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBER Length Parsing Fixes by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/546\"\u003egosnmp/gosnmp#546\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate golangci-lint. by \u003ca href=\"https://github.com/SuperQ\"\u003e\u003ccode\u003e@​SuperQ\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/549\"\u003egosnmp/gosnmp#549\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOID parsing: enforce RFC 2578 sub-identifier limit, optimize string b… by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/547\"\u003egosnmp/gosnmp#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor marshal functions with marshalTLV helper by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/548\"\u003egosnmp/gosnmp#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMarshal helpers - optimization: reduce allocations in OID, float, and length encoding  by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/550\"\u003egosnmp/gosnmp#550\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.7 to 4.31.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/553\"\u003egosnmp/gosnmp#553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix walk loop detection to catch decreasing OIDs by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/551\"\u003egosnmp/gosnmp#551\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/546\"\u003egosnmp/gosnmp#546\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gosnmp/gosnmp/compare/v1.42.1...v1.43.0\"\u003ehttps://github.com/gosnmp/gosnmp/compare/v1.42.1...v1.43.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/c79820a2fd21783e463a89c99a54a8f9e7fa6b26\"\u003e\u003ccode\u003ec79820a\u003c/code\u003e\u003c/a\u003e Remove spurious mock file (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/82c44b00f72aeb7881e93ccc9a435ff1bf9a0194\"\u003e\u003ccode\u003e82c44b0\u003c/code\u003e\u003c/a\u003e Fix walk loop detection to catch decreasing OIDs (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/3311c01c4ab22674c411060c27476c11ac3b1d25\"\u003e\u003ccode\u003e3311c01\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.31.7 to 4.31.9 (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/553\"\u003e#553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/b1c2733eb6c2aa89145db0a0d0f6da26b53c8913\"\u003e\u003ccode\u003eb1c2733\u003c/code\u003e\u003c/a\u003e Optimize marshal functions: reduce allocations in OID, float, and length enco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/635f9ead665b1793577a3cd4ea6b8a98d0885ad4\"\u003e\u003ccode\u003e635f9ea\u003c/code\u003e\u003c/a\u003e Add marshalTLV helper, fix BER length encoding boundary (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/548\"\u003e#548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/8c20421e00bb5f2846368d2846ad745db170e303\"\u003e\u003ccode\u003e8c20421\u003c/code\u003e\u003c/a\u003e OID parsing: enforce RFC 2578 sub-identifier limit, optimize string building ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/d753443c6e912f86f502e3e4233660abf972b6aa\"\u003e\u003ccode\u003ed753443\u003c/code\u003e\u003c/a\u003e Update golangci-lint. (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/1f4eae928414027f57f680859ea00511091cec8a\"\u003e\u003ccode\u003e1f4eae9\u003c/code\u003e\u003c/a\u003e BER Length Parsing Fixes (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/c7427906c931aeb39dc38bbe275d57574602ebd2\"\u003e\u003ccode\u003ec742790\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.31.2 to 4.31.6 (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/539\"\u003e#539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/a447907f24bc8d45ceae5078922c92ccb7a1cd8f\"\u003e\u003ccode\u003ea447907\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gosnmp/gosnmp/compare/v1.42.1...v1.43.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-version` from 1.7.0 to 1.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/releases\"\u003egithub.com/hashicorp/go-version's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot by \u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required by \u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd benchmark test for version.String() by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() by \u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/go-version's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.8.0 (Nov 28, 2025)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd benchmark test for version.String() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/505335eb9df1a0063c4f4edadabbd4ba68a6039c\"\u003e\u003ccode\u003e505335e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/175\"\u003e#175\u003c/a\u003e from florianl/drop-init\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/6dd734b3cefc90f66227c6fd5128379c58d6618e\"\u003e\u003ccode\u003e6dd734b\u003c/code\u003e\u003c/a\u003e drop init()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0824a8987d8bc2b76c928ccea7d8a4a4f0b6c9e0\"\u003e\u003ccode\u003e0824a89\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/172\"\u003e#172\u003c/a\u003e from hashicorp/compliance/update-headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/9325934670def5fb8afc1eb866fbbeba243f02ce\"\u003e\u003ccode\u003e9325934\u003c/code\u003e\u003c/a\u003e [COMPLIANCE] Update Copyright and License Headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/5b82b98895bba8b7269ab1602cf076c1e6478083\"\u003e\u003ccode\u003e5b82b98\u003c/code\u003e\u003c/a\u003e Bump the github-actions-breaking group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/6c6cd77a9f1ca9f2f2d863e01f6bab0d80b87cc6\"\u003e\u003ccode\u003e6c6cd77\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking grou...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0e50733d9b842663695165c14d72dac8a3950aae\"\u003e\u003ccode\u003e0e50733\u003c/code\u003e\u003c/a\u003e Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compati...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/4e24ef111919ceedd2f5908daac338ce5f1cb080\"\u003e\u003ccode\u003e4e24ef1\u003c/code\u003e\u003c/a\u003e Bytes implementation (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/161\"\u003e#161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/437649ae7dd2561bfb77ae0735f821ece7feb969\"\u003e\u003ccode\u003e437649a\u003c/code\u003e\u003c/a\u003e Add benchmark test for version.String() (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/159\"\u003e#159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b6c4db5a031c3799bba8a7632eb91db17519fbfc\"\u003e\u003ccode\u003eb6c4db5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/158\"\u003e#158\u003c/a\u003e from hashicorp/compliance-template\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/olekukonko/tablewriter` from 1.0.9 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/c64d84b3ecc64a18cfc8ba10cdd8c52cc13a7d23\"\u003e\u003ccode\u003ec64d84b\u003c/code\u003e\u003c/a\u003e change version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/7eeef404cceb9c74428fb602156fe14f7442271e\"\u003e\u003ccode\u003e7eeef40\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/olekukonko/tablewriter/issues/306\"\u003e#306\u003c/a\u003e from olekukonko/malawi\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/b0b5ed2f35d01376c422193a3288d7613859a60b\"\u003e\u003ccode\u003eb0b5ed2\u003c/code\u003e\u003c/a\u003e use state rather than \u003ccode\u003etrue\u003c/code\u003e \u0026amp; \u003ccode\u003efalse\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/b9d4454e7dd8d334a06692e944a81613d7773d50\"\u003e\u003ccode\u003eb9d4454\u003c/code\u003e\u003c/a\u003e update ll\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/a181ed90820987a905dbb143e2198c2a7e62b349\"\u003e\u003ccode\u003ea181ed9\u003c/code\u003e\u003c/a\u003e move the cache interface to a single place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/e4c235d81b3364219d6aea243ef1e80d71ba364c\"\u003e\u003ccode\u003ee4c235d\u003c/code\u003e\u003c/a\u003e use twcache in tablewriter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/a732dbbc103a36a722067e39725adb0113ceea67\"\u003e\u003ccode\u003ea732dbb\u003c/code\u003e\u003c/a\u003e introduce tw.Cache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/0681ddb36780c54dd789437e47252ff72fe726e1\"\u003e\u003ccode\u003e0681ddb\u003c/code\u003e\u003c/a\u003e use twcache in twwidth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/26504f0c9c5c143f5bb08a564e922d910804a199\"\u003e\u003ccode\u003e26504f0\u003c/code\u003e\u003c/a\u003e introduce twcache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/8b8a91ad406731865fadbe1ed8d639cfe566a62d\"\u003e\u003ccode\u003e8b8a91a\u003c/code\u003e\u003c/a\u003e minor cleanup\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/olekukonko/tablewriter/compare/v1.0.9...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/samber/lo` from 1.51.0 to 1.52.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/samber/lo/releases\"\u003egithub.com/samber/lo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.52.0\u003c/h2\u003e\n\u003cp\u003eThrilled to announce the latest release of \u003ccode\u003esamber/lo\u003c/code\u003e!\u003c/p\u003e\n\u003cp\u003eThis version brings major improvements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eA new \u003ccode\u003eit/\u003c/code\u003e sub-package for everything related to the \u003ccode\u003eiter\u003c/code\u003e package added in Go 1.23. Big up to \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e for its help on this\u003c/li\u003e\n\u003cli\u003eA new documentation -\u0026gt; \u003ca href=\"https://lo.samber.dev\"\u003elo.samber.dev\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLots of micro fixes and performance improvements\u003c/li\u003e\n\u003cli\u003eBetter code quality with many more linters\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e✨ A good introduction to streams in Go !\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(chunk): Copy chunk in a new slice by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/648\"\u003esamber/lo#648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(zipx): fix the max length calculation by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/649\"\u003esamber/lo#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(retry): fix potential race condition in debounce callback by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/650\"\u003esamber/lo#650\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeature: add Mode function with tests and documentation by \u003ca href=\"https://github.com/ghosx\"\u003e\u003ccode\u003e@​ghosx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/644\"\u003esamber/lo#644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd FilterKeys for map by \u003ca href=\"https://github.com/rasha108bik\"\u003e\u003ccode\u003e@​rasha108bik\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/631\"\u003esamber/lo#631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding FilterValues and fix FilterKeys signature by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/661\"\u003esamber/lo#661\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/samber/lo/pull/662\"\u003esamber/lo#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: more consistent panic strings by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/678\"\u003esamber/lo#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: minor example issues by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/676\"\u003esamber/lo#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: preserve type alias in DropByIndex and WithoutBy by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/675\"\u003esamber/lo#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding hassuffix + hasprefix by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/680\"\u003esamber/lo#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded Cut, CutPrefix, CutSuffix by \u003ca href=\"https://github.com/xelavopelk\"\u003e\u003ccode\u003e@​xelavopelk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/666\"\u003esamber/lo#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TrimXXX helpers by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/683\"\u003esamber/lo#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(string): fix division by zero by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/684\"\u003esamber/lo#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid recover() if possible by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/685\"\u003esamber/lo#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: panic when passing -1 to Drop by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/688\"\u003esamber/lo#688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: avoid Keyify twice in Trim by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/689\"\u003esamber/lo#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: new iter package by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/672\"\u003esamber/lo#672\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: from slice to map with index passed by \u003ca href=\"https://github.com/mabrarov\"\u003e\u003ccode\u003e@​mabrarov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/697\"\u003esamber/lo#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: from slice/iterator to map with index passed by \u003ca href=\"https://github.com/mabrarov\"\u003e\u003ccode\u003e@​mabrarov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/698\"\u003esamber/lo#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(generator): deprecate lo.Generator in favor of go \u0026quot;iter\u0026quot; package by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/700\"\u003esamber/lo#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimization of map access by \u003ca href=\"https://github.com/mabrarov\"\u003e\u003ccode\u003e@​mabrarov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/692\"\u003esamber/lo#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimize map access everywhere by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/693\"\u003esamber/lo#693\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eTests\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(tests): fix flaky time-based tests by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/699\"\u003esamber/lo#699\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eStyle\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003elint: unit test improvements by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/674\"\u003esamber/lo#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: fix CI warnings and avoid named return parameters by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/682\"\u003esamber/lo#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: enable 7 more linters by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/686\"\u003esamber/lo#686\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: enable gofumpt extra rules by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/690\"\u003esamber/lo#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStyle/rename internal rand by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/701\"\u003esamber/lo#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: Apply testifylint linter recommendations by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/669\"\u003esamber/lo#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStyle add golangci config by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/670\"\u003esamber/lo#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: minor whitespace fixes by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/677\"\u003esamber/lo#677\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/a25c42dbd5103a67ed497b49bfefeaf6bb1df2ee\"\u003e\u003ccode\u003ea25c42d\u003c/code\u003e\u003c/a\u003e bump v1.52.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/15ac6249133fb9ecc366d63fa4f73b4512de180c\"\u003e\u003ccode\u003e15ac624\u003c/code\u003e\u003c/a\u003e docs: adding go playground examples to it/ package (\u003ca href=\"https://redirect.github.com/samber/lo/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/c7e9459a8ba8a164c3ed413fb87f8e88ea40b115\"\u003e\u003ccode\u003ec7e9459\u003c/code\u003e\u003c/a\u003e docs: lots of various doc improvements (\u003ca href=\"https://redirect.github.com/samber/lo/issues/706\"\u003e#706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/fa2d72448a4343cd220574589849fbc1a44fff62\"\u003e\u003ccode\u003efa2d724\u003c/code\u003e\u003c/a\u003e doc: add it/mutable/parallel sub-package to llms.txt (\u003ca href=\"https://redirect.github.com/samber/lo/issues/707\"\u003e#707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/aa3a48daa9ff35e99309ba8ca0f4278b82efc79e\"\u003e\u003ccode\u003eaa3a48d\u003c/code\u003e\u003c/a\u003e fix(doc): add missing \u0026quot;contributing\u0026quot; entry in the menu\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/5def06dac581094370022d0a55993693dff42f64\"\u003e\u003ccode\u003e5def06d\u003c/code\u003e\u003c/a\u003e fix(doc): various hot fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/f9a57ef01de1a8a861e66bf6e3e4a3cd19ae85b7\"\u003e\u003ccode\u003ef9a57ef\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump typescript from 5.6.3 to 5.9.3 in /docs (\u003ca href=\"https://redirect.github.com/samber/lo/issues/704\"\u003e#704\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/8b8aa284f3650810efd5fed3ad5cedabb932a78a\"\u003e\u003ccode\u003e8b8aa28\u003c/code\u003e\u003c/a\u003e fix(doc): make \u0026quot;iter\u0026quot; package visible in doc sidebar\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/39e418f10e6574f6b78e8c29e74eaba410c28576\"\u003e\u003ccode\u003e39e418f\u003c/code\u003e\u003c/a\u003e doc: adding a \u0026quot;contributing\u0026quot; page\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/1b3cb42cd1357dcc3d77f3e22dacd53767f9acc6\"\u003e\u003ccode\u003e1b3cb42\u003c/code\u003e\u003c/a\u003e fix(doc): improve algolia search\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/samber/lo/compare/v1.51.0...v1.52.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cobra` from 1.10.1 to 1.10.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cobra/releases\"\u003egithub.com/spf13/cobra's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003e🔧 Dependencies\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Migrate from \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e to \u003ccode\u003ego.yaml.in/yaml/v3\u003c/code\u003e by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e - the \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of \u003ccode\u003espf13/cobra\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📈 CI/CD\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix linter and allow CI to pass by \u003ca href=\"https://github.com/marckhouzam\"\u003e\u003ccode\u003e@​marckhouzam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2327\"\u003espf13/cobra#2327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: actions/setup-go v6 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2337\"\u003espf13/cobra#2337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔥✍🏼 Docs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd documentation for repeated flags functionality by \u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🍂 Refactors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace several vars with consts by \u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change minUsagePadding from var to const by \u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🤗 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThank you to our amazing contributors!!!!! 🐍 🚀\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/88b30ab89da2d0d0abb153818746c5a2d30eccec\"\u003e\u003ccode\u003e88b30ab\u003c/code\u003e\u003c/a\u003e chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2336\"\u003e#2336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/346d408fe7d4be00ff9481ea4d43c4abb5e5f77d\"\u003e\u003ccode\u003e346d408\u003c/code\u003e\u003c/a\u003e fix: actions/setup-go v6 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2337\"\u003e#2337\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/fc81d2003469e2a5c440306d04a6d82a54065979\"\u003e\u003ccode\u003efc81d20\u003c/code\u003e\u003c/a\u003e refactor: change minUsagePadding from var to const (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2325\"\u003e#2325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/117698a604b65e80a1ad5b76df67b604bcd992e0\"\u003e\u003ccode\u003e117698a\u003c/code\u003e\u003c/a\u003e refactor: replace several vars with consts (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/e2dd29ddc39acacf3af13013b06e1fe58b5c3599\"\u003e\u003ccode\u003ee2dd29d\u003c/code\u003e\u003c/a\u003e Add documentation for repeated flags functionality (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2316\"\u003e#2316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/062989255670f5e100abf70fa5e291a394915f89\"\u003e\u003ccode\u003e0629892\u003c/code\u003e\u003c/a\u003e Fix linter (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.31.0 to 0.33.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/f28b0b5467dda26d56f1240381158f7c334654d1\"\u003e\u003ccode\u003ef28b0b5\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/fd15e0fe894866ebff17ca3503d3706a967b061a\"\u003e\u003ccode\u003efd15e0f\u003c/code\u003e\u003c/a\u003e x/oauth2: populate RetrieveError from DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/792c8776358f0c8689d84eef0d0c966937d560fb\"\u003e\u003ccode\u003e792c877\u003c/code\u003e\u003c/a\u003e oauth2: use strings.Builder instead of bytes.Buffer\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.31.0...v0.33.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/sync` from 0.17.0 to 0.18.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sync/commit/1966f539bbd7664efd5bb7462ae94d9db67f4502\"\u003e\u003ccode\u003e1966f53\u003c/code\u003e\u003c/a\u003e errgroup: fix some typos in comment\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/sync/compare/v0.17.0...v0.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/term` from 0.34.0 to 0.37.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/1231d5465be98a7c5f01140358c142d365d4fbb6\"\u003e\u003ccode\u003e1231d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/3475bc8ef1a53c8b2f1fa69d5f804135ca97f035\"\u003e\u003ccode\u003e3475bc8\u003c/code\u003e\u003c/a\u003e term: fix some comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/3a0828a6667fd19fb680702513ff01f7afe76772\"\u003e\u003ccode\u003e3a0828a\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/1a11b45a6fdc76d25c81fa21867a34052ba8fbd1\"\u003e\u003ccode\u003e1a11b45\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/d862cd548e11aa25b32848fd8a08ab1a178f30fa\"\u003e\u003ccode\u003ed862cd5\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.24.0 [generated]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/term/compare/v0.34.0...v0.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/text` from 0.28.0 to 0.31.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/text/commit/e7ff6b3572e1a83c072ef150c9...\n\n_Description has been truncated_","html_url":"https://github.com/blitzy-showcase/vuls/pull/26","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/blitzy-showcase%2Fvuls/issues/26","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/26/packages"},{"uuid":"3766182538","node_id":"PR_kwDOF48Qv866w1b6","number":384,"state":"open","title":"chore(deps): bump the common group across 1 directory with 43 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-29T01:05:43.000Z","updated_at":"2026-01-26T02:15:15.602Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":43,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.20.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.9.1","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.4","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.20.7","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.3","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/go-version","old_version":"1.7.0","new_version":"1.8.0","repository_url":"https://github.com/hashicorp/go-version"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.24.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.12.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/secure-systems-lab/go-securesystemslib","old_version":"0.9.0","new_version":"0.9.1","repository_url":"https://github.com/secure-systems-lab/go-securesystemslib"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.4.3","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.6","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.19.4","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.42.2"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 23 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.20.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.9.3` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.9.1` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.4` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.20.7` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.3` |\n| [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.8.0` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.24.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.12.1` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib) | `0.9.0` | `0.9.1` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.4.3` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.6` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.19.4` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.42.2` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.20.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.19.1\u003c/h2\u003e\n\u003ch2\u003e1.19.1 (2025-09-11)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed resource identifier parsing for provider-specific resource hierarchies containing \u0026quot;resourceGroups\u0026quot; segments.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved error fall-back for improperly authored long-running operations.\u003c/li\u003e\n\u003cli\u003eUpgraded dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/466795e90c61fba2bef23d311a61d4085b873718\"\u003e\u003ccode\u003e466795e\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.20.0 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25563\"\u003e#25563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6fce23847166ed80b4cf520f668cbe696dc13eea\"\u003e\u003ccode\u003e6fce238\u003c/code\u003e\u003c/a\u003e [azsystemevents] Remove gopls (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25555\"\u003e#25555\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c0ac8eac0bcf293604a62be6c222981953f01c49\"\u003e\u003ccode\u003ec0ac8ea\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12476 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25549\"\u003e#25549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/047fb66f149d197b250b287b0e2463fcd0fe5d52\"\u003e\u003ccode\u003e047fb66\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/containerregistry/armcontainerregistry/2.0.0 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/908cfea8611fcd1925ebb6fcadc7e6967a8ec4f0\"\u003e\u003ccode\u003e908cfea\u003c/code\u003e\u003c/a\u003e [azsystemevents] Fixing build.go to work properly with tsp-client as the orch...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c30fd4cce97631fddfcd7220a248f118d58f7bdb\"\u003e\u003ccode\u003ec30fd4c\u003c/code\u003e\u003c/a\u003e cosmos: Allow the Query Pipeline to return an alternative query to execute in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1b445641d79282db0d522c12aef63269ad7648d0\"\u003e\u003ccode\u003e1b44564\u003c/code\u003e\u003c/a\u003e fixed resource type validation in ParseResourceType and correlated tests (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25\"\u003e#25\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e566eecdeb64e820ae1a53b3823fa68c0f3ae44b\"\u003e\u003ccode\u003ee566eec\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12531 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25545\"\u003e#25545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/053de1a0b1667030bca9bb7918c31ebb9397e3b7\"\u003e\u003ccode\u003e053de1a\u003c/code\u003e\u003c/a\u003e Increment package version after release of data/azcosmos (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25544\"\u003e#25544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/8e673bb221981d1737e8754c58fe24fcad140dc9\"\u003e\u003ccode\u003e8e673bb\u003c/code\u003e\u003c/a\u003e release pr (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25543\"\u003e#25543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.20.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.13.0\u003c/h2\u003e\n\u003ch2\u003e1.13.0 (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eAzurePowerShellCredential\u003c/code\u003e, which authenticates as the identity logged in to Azure PowerShell\n(thanks \u003ca href=\"https://github.com/ArmaanMcleod\"\u003eArmaanMcleod\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWhen \u003ccode\u003eAZURE_TOKEN_CREDENTIALS\u003c/code\u003e is set to \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e, \u003ccode\u003eDefaultAzureCredential\u003c/code\u003e behaves the same as\ndoes \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e when used directly. It doesn't apply special retry configuration or attempt to\ndetermine whether IMDS is available. (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25265\"\u003e#25265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved the \u003ccode\u003eWorkloadIdentityCredential\u003c/code\u003e support for identity binding mode added in v1.13.0-beta.1.\nIt will return in v1.14.0-beta.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.13.0-beta.1\u003c/h2\u003e\n\u003ch2\u003e1.13.0-beta.1 (2025-09-17)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eAzurePowerShellCredential\u003c/code\u003e, which authenticates as the identity logged in to Azure PowerShell\n(thanks \u003ca href=\"https://github.com/ArmaanMcleod\"\u003eArmaanMcleod\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWorkloadIdentityCredential\u003c/code\u003e supports identity binding mode (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25056\"\u003e#25056\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.12.0\u003c/h2\u003e\n\u003ch2\u003e1.12.0 (2025-09-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eDefaultAzureCredentialOptions.RequireAzureTokenCredentials\u003c/code\u003e. \u003ccode\u003eNewDefaultAzureCredential\u003c/code\u003e returns an\nerror when this option is true and the environment variable \u003ccode\u003eAZURE_TOKEN_CREDENTIALS\u003c/code\u003e has no value.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureDeveloperCLICredential\u003c/code\u003e no longer hangs when AZD_DEBUG is set\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eGetToken\u003c/code\u003e methods of \u003ccode\u003eAzureCLICredential\u003c/code\u003e and \u003ccode\u003eAzureDeveloperCLICredential\u003c/code\u003e return an error when\n\u003ccode\u003eTokenRequestOptions.Claims\u003c/code\u003e has a value because these credentials can't acquire a token in that\ncase. The error messages describe the action required to get a token.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.9.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/72e4629d580624c7d6bd815e2d209a0a62d08047\"\u003e\u003ccode\u003e72e4629\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/243\"\u003e#243\u003c/a\u003e from madpah/fix/component-data-schema\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6636ce32f8b15a5104fda6636937e91d62d647e7\"\u003e\u003ccode\u003e6636ce3\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a39bf6be93d4ecca076f4379031dc24cddac4937\"\u003e\u003ccode\u003ea39bf6b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/232\"\u003e#232\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/cff8cd548a906d6a5534b60056f2ab4b3e9c522b\"\u003e\u003ccode\u003ecff8cd5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/233\"\u003e#233\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6a93b76287597c06d2aa64e9281bb8e003bb8bbb\"\u003e\u003ccode\u003e6a93b76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/234\"\u003e#234\u003c/a\u003e from rdghe/fix/add-missing-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3e0f245f7b936eb38e16d0518a2a0020c0d69223\"\u003e\u003ccode\u003e3e0f245\u003c/code\u003e\u003c/a\u003e fix: add missing properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f32eebc413c71327df4fd6f264aa9f22e6e8cce1\"\u003e\u003ccode\u003ef32eebc\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/5fcf097fbdcedb6832989d0a74195f0698b48de8\"\u003e\u003ccode\u003e5fcf097\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5.4.0 to 5.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75427c8613483b8939c4c5916d55f00fc1f458ef\"\u003e\u003ccode\u003e75427c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/222\"\u003e#222\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/551624d8f7fd283bc4b8d25fde912659b3f9a18e\"\u003e\u003ccode\u003e551624d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/217\"\u003e#217\u003c/a\u003e from CycloneDX/dependabot/github_actions/apache/skywa...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.9.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.9.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/8b690afa33319b0a1869367f594e53977e38bc99\"\u003e\u003ccode\u003e8b690af\u003c/code\u003e\u003c/a\u003e note about optimization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/792c3c946327797e17e733d738a09bae0c86ee75\"\u003e\u003ccode\u003e792c3c9\u003c/code\u003e\u003c/a\u003e perf: reduce string construction in isZeroLengthPattern\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/de8ecc3b52e6a37b24a5a8ca362b54cafed2bc0b\"\u003e\u003ccode\u003ede8ecc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1743\"\u003e#1743\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3e752f043d07fd7f34edb6818b187c0267a5c762\"\u003e\u003ccode\u003e3e752f0\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3a317549e0ca40927f062a3d53873ecc36a810c1\"\u003e\u003ccode\u003e3a31754\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1741\"\u003e#1741\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/acc28f117fb304f9197601cf0230ef8d263258a6\"\u003e\u003ccode\u003eacc28f1\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/95f388043ec1dd955327cec8b3b4b566a6e356ee\"\u003e\u003ccode\u003e95f3880\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1742\"\u003e#1742\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-n...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/329f9266ae5d8ca6cb58ce3206004165090bd3cc\"\u003e\u003ccode\u003e329f926\u003c/code\u003e\u003c/a\u003e build: Update module golang.org/x/net to v0.38.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/399e04beb0b3284c5cb0d2bf684bb430c6612146\"\u003e\u003ccode\u003e399e04b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1734\"\u003e#1734\u003c/a\u003e from pjbgf/fix-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/2025eae3aed7eeb0659893c069f918155c6b8b78\"\u003e\u003ccode\u003e2025eae\u003c/code\u003e\u003c/a\u003e build: test, Fix build on Windows.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fb6806f2711e17db162623faa01b1fb25c4dbfcc\"\u003e\u003ccode\u003efb6806f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1732\"\u003e#1732\u003c/a\u003e from swills/find-hash-panic-fix-backport\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/382530f513390f06a5271148b3e133eaa8ebf725\"\u003e\u003ccode\u003e382530f\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, prevent panic\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.20.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e075f209120b2467fd1b7d24727f1890a0edb74a\"\u003e\u003ccode\u003ee075f20\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ego mod tidy\u003c/code\u003e on dependabot update (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2171\"\u003e#2171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/45aacf4b5f2c55bddec27ba3ee023e105c187187\"\u003e\u003ccode\u003e45aacf4\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2170\"\u003e#2170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/073b936909d86b06c25d6774243ae5979f85d6f1\"\u003e\u003ccode\u003e073b936\u003c/code\u003e\u003c/a\u003e Update dependencies and deprecate DockerVersion field (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2164\"\u003e#2164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/390dacd7ad170b73ff404a8cef0b58bbf5fb42d2\"\u003e\u003ccode\u003e390dacd\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2163\"\u003e#2163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/ca44d47f67072068ffbd4d2ead4851666c334a05\"\u003e\u003ccode\u003eca44d47\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2162\"\u003e#2162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/999cc1fbfb704fa24e4568a4f3cdb61752f08e83\"\u003e\u003ccode\u003e999cc1f\u003c/code\u003e\u003c/a\u003e Bump github.com/docker/docker (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2161\"\u003e#2161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d1809c862390e60825858e6cd5835f87a46d7e7c\"\u003e\u003ccode\u003ed1809c8\u003c/code\u003e\u003c/a\u003e Build artifacts for riscv64 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2159\"\u003e#2159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/7471efdf98711e7c834b884a5660143a8a91bced\"\u003e\u003ccode\u003e7471efd\u003c/code\u003e\u003c/a\u003e Bump the auxiliary-deps group across 3 directories with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2156\"\u003e#2156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/2bb5bb01b8d981642fc2c257afb8fb12731014b3\"\u003e\u003ccode\u003e2bb5bb0\u003c/code\u003e\u003c/a\u003e Bump the actions group with 5 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2155\"\u003e#2155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/16371c1fe7e601ac6a69d112ec1efd91cbad9049\"\u003e\u003ccode\u003e16371c1\u003c/code\u003e\u003c/a\u003e Remove manual vendor setting for dependabot (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2151\"\u003e#2151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump actions/cache from 4.2.4 to 4.3.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/562\"\u003ehashicorp/go-getter#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump aws-actions/configure-aws-credentials from 5.0.0 to 5.1.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/563\"\u003ehashicorp/go-getter#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove failed decompressed files by \u003ca href=\"https://github.com/allisonlarson\"\u003e\u003ccode\u003e@​allisonlarson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/564\"\u003ehashicorp/go-getter#564\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/allisonlarson\"\u003e\u003ccode\u003e@​allisonlarson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/564\"\u003ehashicorp/go-getter#564\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.2...v1.8.3\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.2...v1.8.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure temporary directory symlinks do not cause errors by \u003ca href=\"https://github.com/cam-stitt\"\u003e\u003ccode\u003e@​cam-stitt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/560\"\u003ehashicorp/go-getter#560\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cam-stitt\"\u003e\u003ccode\u003e@​cam-stitt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/560\"\u003ehashicorp/go-getter#560\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.1...v1.8.2\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.1...v1.8.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump ulikunitz/xz to v0.5.15 by \u003ca href=\"https://github.com/thevilledev\"\u003e\u003ccode\u003e@​thevilledev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/550\"\u003ehashicorp/go-getter#550\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove CI/CD, fix tests by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/554\"\u003ehashicorp/go-getter#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[fix] Windows junction handling by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/557\"\u003ehashicorp/go-getter#557\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thevilledev\"\u003e\u003ccode\u003e@​thevilledev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/550\"\u003ehashicorp/go-getter#550\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.0...v1.8.1\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.0...v1.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump the actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/543\"\u003ehashicorp/go-getter#543\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump google-github-actions/auth from 2.1.12 to 3.0.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/546\"\u003ehashicorp/go-getter#546\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego: bump ulikunitz/xz to v.0.5.14 to resolve GHSA-jc7w-c686-c4v9 by \u003ca href=\"https://github.com/ryancragun\"\u003e\u003ccode\u003e@​ryancragun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/547\"\u003ehashicorp/go-getter#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to aws-sdk-go-v2, v1 is unsupported by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/548\"\u003ehashicorp/go-getter#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModernize codebase: Fix linting issues, update CI/CD workflow, and improve test categorization by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/549\"\u003ehashicorp/go-getter#549\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryancragun\"\u003e\u003ccode\u003e@​ryancragun\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/547\"\u003ehashicorp/go-getter#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/548\"\u003ehashicorp/go-getter#548\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.9...v1.8.0\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.9...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/13f1bb2b1a00fca5829b8d38d52101dca1b50368\"\u003e\u003ccode\u003e13f1bb2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/564\"\u003e#564\u003c/a\u003e from allisonlarson/b-chmod-failed-tar\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c0ef527809f03855ca2da3b7599ce9edff81ade0\"\u003e\u003ccode\u003ec0ef527\u003c/code\u003e\u003c/a\u003e close file before removing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d1113d84d328a6f19a011cb60abab2e3261d1608\"\u003e\u003ccode\u003ed1113d8\u003c/code\u003e\u003c/a\u003e Handle failed decompressed files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/cfc3a4f04b43804b040abc07b844946526918d64\"\u003e\u003ccode\u003ecfc3a4f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/563\"\u003e#563\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-e02f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/0c1f6684debbb053ca216d5cf1236532a99fb023\"\u003e\u003ccode\u003e0c1f668\u003c/code\u003e\u003c/a\u003e [chore] : Bump aws-actions/configure-aws-credentials\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/5e2f62af483e4558205b0cecfed21ac3e4c21512\"\u003e\u003ccode\u003e5e2f62a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/562\"\u003e#562\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-f175...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/5b4c45ff7f9f13f7d882b08a2cf4bd15373cca45\"\u003e\u003ccode\u003e5b4c45f\u003c/code\u003e\u003c/a\u003e [chore] : Bump actions/cache from 4.2.4 to 4.3.0 in the actions group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/60a3d53b2d0930891aa02051873f45971f580b25\"\u003e\u003ccode\u003e60a3d53\u003c/code\u003e\u003c/a\u003e Ensure temporary directory symlinks do not cause errors (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/560\"\u003e#560\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d2e581e463eadea306c25431b008227381d56f78\"\u003e\u003ccode\u003ed2e581e\u003c/code\u003e\u003c/a\u003e [fix] Windows junction handling (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/557\"\u003e#557\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/928ae39251607aeb4103fe04f48d026f4ada82b7\"\u003e\u003ccode\u003e928ae39\u003c/code\u003e\u003c/a\u003e [chore] : Bump actions/setup-go from 5.5.0 to 6.0.0 in the actions group (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.8.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-version` from 1.7.0 to 1.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/releases\"\u003egithub.com/hashicorp/go-version's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot by \u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required by \u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd benchmark test for version.String() by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() by \u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/go-version's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.8.0 (Nov 28, 2025)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd benchmark test for version.String() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/g...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/384","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/384","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/384/packages"}],"issue_packages":[{"old_version":"0.10.0","new_version":"0.11.0","update_type":"minor","path":null,"pr_created_at":"2026-06-01T01:23:40.000Z","version_change":"0.10.0 → 0.11.0","issue":{"uuid":"4559678904","node_id":"PR_kwDOSaHso87hMC9j","number":24,"state":"closed","title":"chore(deps)(deps): bump the patch-and-minor group across 1 directory with 6 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-08T00:35:44.000Z","author_association":null,"state_reason":null,"created_at":"2026-06-01T01:23:40.000Z","updated_at":"2026-06-08T00:35:46.000Z","time_to_close":601924,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): bump","group_name":"patch-and-minor","update_count":6,"packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/elazarl/goproxy","old_version":"1.8.3","new_version":"1.8.4","repository_url":"https://github.com/elazarl/goproxy"},{"name":"github.com/gorilla/websocket","old_version":"1.5.1","new_version":"1.5.3","repository_url":"https://github.com/gorilla/websocket"},{"name":"github.com/open-policy-agent/opa","old_version":"1.15.2","new_version":"1.17.0","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/rs/zerolog","old_version":"1.35.0","new_version":"1.35.1","repository_url":"https://github.com/rs/zerolog"},{"name":"github.com/sigstore/protobuf-specs","old_version":"0.5.0","new_version":"0.5.1","repository_url":"https://github.com/sigstore/protobuf-specs"}],"path":null,"ecosystem":"go"},"body":"Bumps the patch-and-minor group with 6 updates in the /cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/elazarl/goproxy](https://github.com/elazarl/goproxy) | `1.8.3` | `1.8.4` |\n| [github.com/gorilla/websocket](https://github.com/gorilla/websocket) | `1.5.1` | `1.5.3` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.15.2` | `1.17.0` |\n| [github.com/rs/zerolog](https://github.com/rs/zerolog) | `1.35.0` | `1.35.1` |\n| [github.com/sigstore/protobuf-specs](https://github.com/sigstore/protobuf-specs) | `0.5.0` | `0.5.1` |\n\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/elazarl/goproxy` from 1.8.3 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/elazarl/goproxy/releases\"\u003egithub.com/elazarl/goproxy's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: don't set Transfer-Encoding: chunked on 304 responses by \u003ca href=\"https://github.com/Yanhu007\"\u003e\u003ccode\u003e@​Yanhu007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/770\"\u003eelazarl/goproxy#770\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add missing godoc comments to exported symbols by \u003ca href=\"https://github.com/scovl\"\u003e\u003ccode\u003e@​scovl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/768\"\u003eelazarl/goproxy#768\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp: forward upstream response trailers by \u003ca href=\"https://github.com/0b01\"\u003e\u003ccode\u003e@​0b01\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/773\"\u003eelazarl/goproxy#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove insecure skip verify from origin transport by \u003ca href=\"https://github.com/ErikPelli\"\u003e\u003ccode\u003e@​ErikPelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/774\"\u003eelazarl/goproxy#774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid chunked response when there is http.NoBody  by \u003ca href=\"https://github.com/ErikPelli\"\u003e\u003ccode\u003e@​ErikPelli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/776\"\u003eelazarl/goproxy#776\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(https): close client connection when target connection errors by \u003ca href=\"https://github.com/wucm667\"\u003e\u003ccode\u003e@​wucm667\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/779\"\u003eelazarl/goproxy#779\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: restore examples module health and clarify sample apps by \u003ca href=\"https://github.com/Thiago-Tertuliano\"\u003e\u003ccode\u003e@​Thiago-Tertuliano\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/780\"\u003eelazarl/goproxy#780\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: append headers instead of overwriting when keepDestHeaders is true by \u003ca href=\"https://github.com/Yanhu007\"\u003e\u003ccode\u003e@​Yanhu007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/771\"\u003eelazarl/goproxy#771\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Yanhu007\"\u003e\u003ccode\u003e@​Yanhu007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/770\"\u003eelazarl/goproxy#770\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/scovl\"\u003e\u003ccode\u003e@​scovl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/768\"\u003eelazarl/goproxy#768\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/0b01\"\u003e\u003ccode\u003e@​0b01\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/773\"\u003eelazarl/goproxy#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wucm667\"\u003e\u003ccode\u003e@​wucm667\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/779\"\u003eelazarl/goproxy#779\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Thiago-Tertuliano\"\u003e\u003ccode\u003e@​Thiago-Tertuliano\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/elazarl/goproxy/pull/780\"\u003eelazarl/goproxy#780\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/elazarl/goproxy/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/elazarl/goproxy/compare/v1.8.3...v1.8.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/636207d4c044d260140a1f7a6f13efb609dbadc0\"\u003e\u003ccode\u003e636207d\u003c/code\u003e\u003c/a\u003e fix: append headers instead of overwriting when keepDestHeaders is true (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/771\"\u003e#771\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/6584eeeb52783bbb3ef0ca44c6edc3241e65bc9d\"\u003e\u003ccode\u003e6584eee\u003c/code\u003e\u003c/a\u003e fix: restore examples module health and clarify sample apps (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/780\"\u003e#780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/038e3b90031f25eead7d60a7db162de131321fe7\"\u003e\u003ccode\u003e038e3b9\u003c/code\u003e\u003c/a\u003e fix(https): close client connection when target connection errors (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/779\"\u003e#779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/e493e1c4c552ece20c55b21b6cffcaf6d8fe7794\"\u003e\u003ccode\u003ee493e1c\u003c/code\u003e\u003c/a\u003e Avoid chunked response when there is http.NoBody  (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/776\"\u003e#776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/f97c26404238ee206e3d926b572b45c89879784b\"\u003e\u003ccode\u003ef97c264\u003c/code\u003e\u003c/a\u003e Remove insecure skip verify from origin transport (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/774\"\u003e#774\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/a89a8d68cf9254355a755b3dac842be2e92947ae\"\u003e\u003ccode\u003ea89a8d6\u003c/code\u003e\u003c/a\u003e http: forward upstream response trailers (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/773\"\u003e#773\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/7d1c3b5d3ea4b08c50e5cce34c3655a9b1d97768\"\u003e\u003ccode\u003e7d1c3b5\u003c/code\u003e\u003c/a\u003e Add test to verify that the response handler can add a value to a header with...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/5013f6d9188082dc82dd1f1905fd3289125346cd\"\u003e\u003ccode\u003e5013f6d\u003c/code\u003e\u003c/a\u003e docs: add missing godoc comments to exported symbols (\u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/768\"\u003e#768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/3c677be915208ae25a9ab4d2fb650e6247040dcd\"\u003e\u003ccode\u003e3c677be\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/elazarl/goproxy/issues/770\"\u003e#770\u003c/a\u003e from Yanhu007/fix/304-transfer-encoding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elazarl/goproxy/commit/503e66e58a23cb92286a268ffd080e64dace4dc6\"\u003e\u003ccode\u003e503e66e\u003c/code\u003e\u003c/a\u003e fix: don't set Transfer-Encoding: chunked on 304 responses\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/elazarl/goproxy/compare/v1.8.3...v1.8.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gorilla/websocket` from 1.5.1 to 1.5.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gorilla/websocket/releases\"\u003egithub.com/gorilla/websocket's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.3\u003c/h2\u003e\n\u003ch2\u003eImportant change\u003c/h2\u003e\n\u003cp\u003eThis reverts the websockets package back to \u003ca href=\"https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\"\u003ehttps://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(echoreadall): fix function echoReadAll comment by \u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emake tests parallel by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrader.Upgrade: use http.ResposnseController by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/871\"\u003egorilla/websocket#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not handle network error in \u003ccode\u003eSetCloseHandler()\u003c/code\u003e by \u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: reduce timer in write_control by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/879\"\u003egorilla/websocket#879\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: lint example code by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/890\"\u003egorilla/websocket#890\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: format message type by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/889\"\u003egorilla/websocket#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove hideTempErr to allow downstream users to check for errors like net.ErrClosed by \u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not timeout when WriteControl deadline is zero in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/898\"\u003egorilla/websocket#898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExcludes errchecks linter by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn errors instead of printing to logs by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/897\"\u003egorilla/websocket#897\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot; by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/908\"\u003egorilla/websocket#908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes broken random value generation by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/926\"\u003egorilla/websocket#926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReverts back to v1.5.0 by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/929\"\u003egorilla/websocket#929\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ehttps://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/ce903f6d1d961af3a8602f2842c8b1c3fca58c4d\"\u003e\u003ccode\u003ece903f6\u003c/code\u003e\u003c/a\u003e Reverts to v1.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/9ec25ca502ec881a7e873d3cdf35da60eab22037\"\u003e\u003ccode\u003e9ec25ca\u003c/code\u003e\u003c/a\u003e fixes broken random value generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/1bddf2e0dba6f35492b0f5614905b291cd0ab88d\"\u003e\u003ccode\u003e1bddf2e\u003c/code\u003e\u003c/a\u003e bumps go version \u0026amp; removes deprecated module usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/750bf92096b4cd4d75082948a4e143f303a65390\"\u003e\u003ccode\u003e750bf92\u003c/code\u003e\u003c/a\u003e adds GHA \u0026amp; Makefile configs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2c246b2ec6f86b53889c79022fec8dabe0a20bb\"\u003e\u003ccode\u003eb2c246b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/09a6bab4667fc302c7f23ad770ce48be6fc2d15f\"\u003e\u003ccode\u003e09a6bab\u003c/code\u003e\u003c/a\u003e removing error handling while closing connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/58af150309a40ad57463b8087fe33d59d5a490d3\"\u003e\u003ccode\u003e58af150\u003c/code\u003e\u003c/a\u003e return errors instead of printing to logs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/e5f1a0aad0accdff7dc9131fdcce912e28d8f4d5\"\u003e\u003ccode\u003ee5f1a0a\u003c/code\u003e\u003c/a\u003e excludes errchecks linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2a86a174473e870c9fcc3eaba8957689090d2cc\"\u003e\u003ccode\u003eb2a86a1\u003c/code\u003e\u003c/a\u003e Do not timeout when WriteControl deadline is zero\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/695e9095ce8736ac99c83939ca6b0fe93768f680\"\u003e\u003ccode\u003e695e909\u003c/code\u003e\u003c/a\u003e Remove hideTempErr to allow downstream users to check for errors like net.Err...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/open-policy-agent/opa` from 1.15.2 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/releases\"\u003egithub.com/open-policy-agent/opa's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.17.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes.  Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eA new \u003ccode\u003efuture.keywords.not\u003c/code\u003e import that adds improved semantics to the \u003ccode\u003enot\u003c/code\u003e keyword.\u003c/li\u003e\n\u003cli\u003eRule Labels in Decision Logs\u003c/li\u003e\n\u003cli\u003ePublished json schema for IR and bundle manifest\u003c/li\u003e\n\u003cli\u003eDropped automaxprocs and x/net dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImproved Negation Semantics (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8387\"\u003e#8387\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eThis OPA release introduces a new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/keywords/not#improved-negation-semantics\"\u003e\u003ccode\u003efuture.keywords.not\u003c/code\u003e import\u003c/a\u003e\nthat fixes a long-standing semantic issue with negation in Rego.\u003c/p\u003e\n\u003cp\u003eWithout the import, the compiler expands a negated composite expression like\n\u003ccode\u003enot f(g(input.x))\u003c/code\u003e into a series of sub-expressions evaluated \u003cem\u003ebefore\u003c/em\u003e the\n\u003ccode\u003enot\u003c/code\u003e:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003e__local0__ = input.x\r\ng(__local0__, __local1__)\r\nnot f(__local1__)\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eIf any sub-expression fails — for example, \u003ccode\u003einput.x\u003c/code\u003e is undefined or \u003ccode\u003eg\u003c/code\u003e\nproduces an undefined result — the entire rule fails rather than the \u003ccode\u003enot\u003c/code\u003e succeeding.\nThis is unintuitive: the user's intent is \u0026quot;the condition does not hold,\u0026quot; but\nan undefined intermediate value causes a silent failure instead of the expected\n\u003ccode\u003enot\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eWith \u003ccode\u003eimport future.keywords.not\u003c/code\u003e, composite-expression negation wraps the full compiler\nexpansion in an implicit body:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003enot { __local0__ = input.x; g(__local0__, __local1__); f(__local1__) }\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eNow, if \u003cem\u003eany\u003c/em\u003e sub-expression is undefined or fails, the body is unsatisfiable\nand the \u003ccode\u003enot\u003c/code\u003e expression succeeds; matching the intuition that \u0026quot;the condition does not hold.\u0026quot;\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eUsers are recommended to import \u003ccode\u003efuture.keywords.not\u003c/code\u003e whenever the \u003ccode\u003enot\u003c/code\u003e keyword is used in a policy.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eAuthored by \u003ca href=\"https://github.com/johanfylling\"\u003e\u003ccode\u003e@​johanfylling\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRule Labels in Decision Logs (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eRule annotations now support a \u003ccode\u003elabels\u003c/code\u003e field. Labels from all successfully evaluated\nrules are collected and included in each decision log entry as a top-level \u003ccode\u003erule_labels\u003c/code\u003e\narray. Each element is the merged label map for one successfully evaluated rule, with\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md\"\u003egithub.com/open-policy-agent/opa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.17.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes.  Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eA new \u003ccode\u003efuture.keywords.not\u003c/code\u003e import that adds improved semantics to the \u003ccode\u003enot\u003c/code\u003e keyword.\u003c/li\u003e\n\u003cli\u003eRule Labels in Decision Logs\u003c/li\u003e\n\u003cli\u003ePublished json schema for IR and bundle manifest\u003c/li\u003e\n\u003cli\u003eDropped automaxprocs and x/net dependencies\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImproved Negation Semantics (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8387\"\u003e#8387\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eThis OPA release introduces a new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/keywords/not#improved-negation-semantics\"\u003e\u003ccode\u003efuture.keywords.not\u003c/code\u003e import\u003c/a\u003e\nthat fixes a long-standing semantic issue with negation in Rego.\u003c/p\u003e\n\u003cp\u003eWithout the import, the compiler expands a negated composite expression like\n\u003ccode\u003enot f(g(input.x))\u003c/code\u003e into a series of sub-expressions evaluated \u003cem\u003ebefore\u003c/em\u003e the\n\u003ccode\u003enot\u003c/code\u003e:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003e__local0__ = input.x\ng(__local0__, __local1__)\nnot f(__local1__)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eIf any sub-expression fails — for example, \u003ccode\u003einput.x\u003c/code\u003e is undefined or \u003ccode\u003eg\u003c/code\u003e\nproduces an undefined result — the entire rule fails rather than the \u003ccode\u003enot\u003c/code\u003e succeeding.\nThis is unintuitive: the user's intent is \u0026quot;the condition does not hold,\u0026quot; but\nan undefined intermediate value causes a silent failure instead of the expected\n\u003ccode\u003enot\u003c/code\u003e result.\u003c/p\u003e\n\u003cp\u003eWith \u003ccode\u003eimport future.keywords.not\u003c/code\u003e, composite-expression negation wraps the full compiler\nexpansion in an implicit body:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003enot { __local0__ = input.x; g(__local0__, __local1__); f(__local1__) }\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eNow, if \u003cem\u003eany\u003c/em\u003e sub-expression is undefined or fails, the body is unsatisfiable\nand the \u003ccode\u003enot\u003c/code\u003e expression succeeds; matching the intuition that \u0026quot;the condition does not hold.\u0026quot;\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eUsers are recommended to import \u003ccode\u003efuture.keywords.not\u003c/code\u003e whenever the \u003ccode\u003enot\u003c/code\u003e keyword is used in a policy.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eAuthored by \u003ca href=\"https://github.com/johanfylling\"\u003e\u003ccode\u003e@​johanfylling\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRule Labels in Decision Logs (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/2089\"\u003e#2089\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eRule annotations now support a \u003ccode\u003elabels\u003c/code\u003e field. Labels from all successfully evaluated\nrules are collected and included in each decision log entry as a top-level \u003ccode\u003erule_labels\u003c/code\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/64a3625d33bc6ad8e7c40df03b76ce2fb3ab4d21\"\u003e\u003ccode\u003e64a3625\u003c/code\u003e\u003c/a\u003e Release v1.17.0 (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8710\"\u003e#8710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/68c9de5da00ea9d631c50327c709d5d7e8844bba\"\u003e\u003ccode\u003e68c9de5\u003c/code\u003e\u003c/a\u003e benchmarks: tweak per-PR benchmark regression check based on pr-check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/7fe3066154b7780eac16c290475f8506573a427f\"\u003e\u003ccode\u003e7fe3066\u003c/code\u003e\u003c/a\u003e server: remove dead code (s.partials) (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8708\"\u003e#8708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/37830be801a9ce4ec6d23df33f645bb6095f3043\"\u003e\u003ccode\u003e37830be\u003c/code\u003e\u003c/a\u003e ast,storage/inmem: Add \u003ccode\u003einmem.NewFromASTObject\u003c/code\u003e and add missing string case t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/1661f22ba399e94d08d8fb85218580a61779bdc4\"\u003e\u003ccode\u003e1661f22\u003c/code\u003e\u003c/a\u003e ast: add some schema $ref tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/3e22f562f1e370973c1b6750eff11d06fe554c70\"\u003e\u003ccode\u003e3e22f56\u003c/code\u003e\u003c/a\u003e benchmarks: only run for go changes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/13aaeabce2221217cb6c175b269475803740fad2\"\u003e\u003ccode\u003e13aaeab\u003c/code\u003e\u003c/a\u003e benchmarks: move env vars, remove zizmor-ignore comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/93e170868ac37f87696adfc2d7f672a0f1814936\"\u003e\u003ccode\u003e93e1708\u003c/code\u003e\u003c/a\u003e benchmarks: fix PR message, skip tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/4ce3991901eed5b622a21f2f629029727e192ba7\"\u003e\u003ccode\u003e4ce3991\u003c/code\u003e\u003c/a\u003e benchmarks: use go tool machinery, add benchstat\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/41df8df4a26d8de7a81bf4c5d78cb94f10a108d5\"\u003e\u003ccode\u003e41df8df\u003c/code\u003e\u003c/a\u003e benchmarks: use benchlab for per-PR feedback\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-policy-agent/opa/compare/v1.15.2...v1.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/rs/zerolog` from 1.35.0 to 1.35.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rs/zerolog/commit/116c8060e034e8d46855354d22db2acbc8df9e1e\"\u003e\u003ccode\u003e116c806\u003c/code\u003e\u003c/a\u003e event: restore Err() logging when ErrorStackMarshaler returns nil (\u003ca href=\"https://redirect.github.com/rs/zerolog/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rs/zerolog/compare/v1.35.0...v1.35.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/protobuf-specs` from 0.5.0 to 0.5.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/protobuf-specs/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/protobuf-specs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ML-DSA-44 algorithm identifier (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/pull/860\"\u003e#860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/3001afe9102b15b04ca1b91efccd613976bdf514\"\u003e\u003ccode\u003e3001afe\u003c/code\u003e\u003c/a\u003e Bump ts to v0.5.1 for new release (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/874\"\u003e#874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/f68ef153e50a5842b6c88c38294ee541825aee58\"\u003e\u003ccode\u003ef68ef15\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/873\"\u003e#873\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/985935846f22a5021b967afd844900e7fb9098e6\"\u003e\u003ccode\u003e9859358\u003c/code\u003e\u003c/a\u003e build(deps): bump gradle-wrapper in /java in the java-deps group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/866\"\u003e#866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/51546ad474b8153975966b617cf9010320db3d17\"\u003e\u003ccode\u003e51546ad\u003c/code\u003e\u003c/a\u003e build(deps): bump ts-proto from 2.11.2 to 2.11.5 in /protoc-builder/hack in t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/8bb3cb3e6c7e64dccaeb0db05052f7ef88a73da4\"\u003e\u003ccode\u003e8bb3cb3\u003c/code\u003e\u003c/a\u003e build(deps): bump the docker-refs group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/867\"\u003e#867\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/9dfb871b0f36911a4aa66ff18143954bec6383b2\"\u003e\u003ccode\u003e9dfb871\u003c/code\u003e\u003c/a\u003e Update GRPC_GATEWAY_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/864\"\u003e#864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/80abc3f2d43989e5171f8e3f790dca757e9964d9\"\u003e\u003ccode\u003e80abc3f\u003c/code\u003e\u003c/a\u003e build(deps): bump the rust-deps group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/869\"\u003e#869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/c24db24a34511f0463a7774cc5d4e73b405fccf0\"\u003e\u003ccode\u003ec24db24\u003c/code\u003e\u003c/a\u003e build(deps): bump homebrew/core/protobuf from 33.4 to 34.1 in /protoc-builder...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/6a50d86ffd80e1047b33a8d48ad3a4bb467465ec\"\u003e\u003ccode\u003e6a50d86\u003c/code\u003e\u003c/a\u003e Update GOOGLEAPIS_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/863\"\u003e#863\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/a2cbebd8d61283f943cfc2acf6aa65b1fae0f755\"\u003e\u003ccode\u003ea2cbebd\u003c/code\u003e\u003c/a\u003e Bump packages for 0.5.1, bump deps (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/862\"\u003e#862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/protobuf-specs/compare/v0.5.0...v0.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/skillledger/skillledger/pull/24","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/skillledger%2Fskillledger/issues/24","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/24/packages"}},{"old_version":"0.10.0","new_version":"0.11.0","update_type":"minor","path":null,"pr_created_at":"2026-05-28T09:09:13.000Z","version_change":"0.10.0 → 0.11.0","issue":{"uuid":"4539162287","node_id":"PR_kwDOFu-Xms7gKsQp","number":263,"state":"closed","title":"chore(deps): bump the others group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-01T00:06:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-28T09:09:13.000Z","updated_at":"2026-06-01T00:06:49.000Z","time_to_close":313055,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"others","update_count":8,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/storage/azblob","old_version":"1.6.4","new_version":"1.7.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/aws/aws-sdk-go-v2/config","old_version":"1.32.17","new_version":"1.32.18","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/google/go-containerregistry","old_version":"0.21.5","new_version":"0.21.6","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/package-url/packageurl-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the others group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/storage/azblob](https://github.com/Azure/azure-sdk-for-go) | `1.6.4` | `1.7.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.32.17` | `1.32.18` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.21.5` | `0.21.6` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.5` | `0.1.6` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/storage/azblob` from 1.6.4 to 1.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/storage/azblob's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/storage/azblob/v1.7.0\u003c/h2\u003e\n\u003ch2\u003e1.7.0 (2026-05-14)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIncludes all features from \u003ccode\u003e1.7.0-beta.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/624babab3d2e3a95628afa61d1474a035cc7d094\"\u003e\u003ccode\u003e624baba\u003c/code\u003e\u003c/a\u003e bump azcore version number\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ce7217c3f5f5a2f88f3a5d1ded48da338f3d8d06\"\u003e\u003ccode\u003ece7217c\u003c/code\u003e\u003c/a\u003e Prep for azcore v1.7.0 release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21149\"\u003e#21149\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/62a8079d41783914d9a5f585bcdb6f6b91223e5c\"\u003e\u003ccode\u003e62a8079\u003c/code\u003e\u003c/a\u003e Add support for shallow cloning azcore.Client instances (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21065\"\u003e#21065\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21098\"\u003e#21098\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/47286b065b0e3aa7d367fb20212aad3a143e6343\"\u003e\u003ccode\u003e47286b0\u003c/code\u003e\u003c/a\u003e Add flag to enable skipping of dependency checks (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/21146\"\u003e#21146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ee762d4420eb57051cdebe55e55b107dae4f6bfc\"\u003e\u003ccode\u003eee762d4\u003c/code\u003e\u003c/a\u003e Fix populating module name in telemetry policy (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20967\"\u003e#20967\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20971\"\u003e#20971\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/02431759c00a99a31e159e9905c392b8f430c897\"\u003e\u003ccode\u003e0243175\u003c/code\u003e\u003c/a\u003e Prep azcore v1.6.1 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20961\"\u003e#20961\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c9d62a1d612cf1f9e6902ddd3c538abd90b955c\"\u003e\u003ccode\u003e9c9d62a\u003c/code\u003e\u003c/a\u003e Increment package version after release of azcore (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20740\"\u003e#20740\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/36f766d2feba70f64bed923c23b57602998e16c8\"\u003e\u003ccode\u003e36f766d\u003c/code\u003e\u003c/a\u003e add sdk/resourcemanager/cosmos/armcosmos live test (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20705\"\u003e#20705\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c005ed6159fdf2104077694b5f89e7063a0cc586\"\u003e\u003ccode\u003ec005ed6\u003c/code\u003e\u003c/a\u003e sdk/resourcemanager/network/armnetwork live test (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20331\"\u003e#20331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5fa7df4852a100f4a7502d5064ae54b0aceb8260\"\u003e\u003ccode\u003e5fa7df4\u003c/code\u003e\u003c/a\u003e add sdk/resourcemanager/compute/armcompute live test (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/20048\"\u003e#20048\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/storage/azblob/v1.6.4...sdk/azcore/v1.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/config` from 1.32.17 to 1.32.18\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/db9f4e546dfe2f62a6bc3bf54b9da42ebace6372\"\u003e\u003ccode\u003edb9f4e5\u003c/code\u003e\u003c/a\u003e Release 2026-05-22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/34e7ddc9400e830a9ae226a7e3c2161e5ece4f19\"\u003e\u003ccode\u003e34e7ddc\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f9db036cf7b3b8a1ea5eb67c3d296da4b48b6e2b\"\u003e\u003ccode\u003ef9db036\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ae5eae1e3ec46433bd99496bfa6936f8f09a2e72\"\u003e\u003ccode\u003eae5eae1\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/429dbdd2a35d325aabc5757edfc9ebf09c2ad12e\"\u003e\u003ccode\u003e429dbdd\u003c/code\u003e\u003c/a\u003e Feat discover endpoint partition validation (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3410\"\u003e#3410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ab4f5b60785064ec6346c922604d94b63d9c7299\"\u003e\u003ccode\u003eab4f5b6\u003c/code\u003e\u003c/a\u003e Release 2026-05-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/757a09909a97a15e5a481d9839b83f15b8fdc4bc\"\u003e\u003ccode\u003e757a099\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/02c8323ee6c99be82dae3a3923616756cb164525\"\u003e\u003ccode\u003e02c8323\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f4ac954c5b3567f7918fbaa845bd05a8b211f54e\"\u003e\u003ccode\u003ef4ac954\u003c/code\u003e\u003c/a\u003e Bump smithy-go version and update imports for evenstream protocoltests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3420\"\u003e#3420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6d937001e020def8b587dccbe5d803933ce57bfd\"\u003e\u003ccode\u003e6d93700\u003c/code\u003e\u003c/a\u003e Add replace for credentials dependency added on go.mod (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3419\"\u003e#3419\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.32.17...config/v1.32.18\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/credentials` from 1.19.16 to 1.19.17\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/db9f4e546dfe2f62a6bc3bf54b9da42ebace6372\"\u003e\u003ccode\u003edb9f4e5\u003c/code\u003e\u003c/a\u003e Release 2026-05-22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/34e7ddc9400e830a9ae226a7e3c2161e5ece4f19\"\u003e\u003ccode\u003e34e7ddc\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f9db036cf7b3b8a1ea5eb67c3d296da4b48b6e2b\"\u003e\u003ccode\u003ef9db036\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ae5eae1e3ec46433bd99496bfa6936f8f09a2e72\"\u003e\u003ccode\u003eae5eae1\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/429dbdd2a35d325aabc5757edfc9ebf09c2ad12e\"\u003e\u003ccode\u003e429dbdd\u003c/code\u003e\u003c/a\u003e Feat discover endpoint partition validation (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3410\"\u003e#3410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ab4f5b60785064ec6346c922604d94b63d9c7299\"\u003e\u003ccode\u003eab4f5b6\u003c/code\u003e\u003c/a\u003e Release 2026-05-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/757a09909a97a15e5a481d9839b83f15b8fdc4bc\"\u003e\u003ccode\u003e757a099\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/02c8323ee6c99be82dae3a3923616756cb164525\"\u003e\u003ccode\u003e02c8323\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f4ac954c5b3567f7918fbaa845bd05a8b211f54e\"\u003e\u003ccode\u003ef4ac954\u003c/code\u003e\u003c/a\u003e Bump smithy-go version and update imports for evenstream protocoltests (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3420\"\u003e#3420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6d937001e020def8b587dccbe5d803933ce57bfd\"\u003e\u003ccode\u003e6d93700\u003c/code\u003e\u003c/a\u003e Add replace for credentials dependency added on go.mod (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3419\"\u003e#3419\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/credentials/v1.19.16...credentials/v1.19.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.21.5 to 0.21.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: update dependencies to use new azure sdk components by \u003ca href=\"https://github.com/gaganhr94\"\u003e\u003ccode\u003e@​gaganhr94\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2262\"\u003egoogle/go-containerregistry#2262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: restore resp.Body in retryError so CheckError can parse it by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2264\"\u003egoogle/go-containerregistry#2264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/registry: return 202 Accepted for PATCH chunk uploads by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2265\"\u003egoogle/go-containerregistry#2265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFollow OCI distribution spec for artifactType and annotations by \u003ca href=\"https://github.com/malt3\"\u003e\u003ccode\u003e@​malt3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2269\"\u003egoogle/go-containerregistry#2269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eactions: attach Codecov token to coverage tests on main by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2270\"\u003egoogle/go-containerregistry#2270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: use DeleteScope (with \u0026quot;delete\u0026quot; action) for manifest deletion by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2266\"\u003egoogle/go-containerregistry#2266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: limit concurrent layer pulls by \u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2271\"\u003egoogle/go-containerregistry#2271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/registry: reject corrupt disk blobs by \u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2272\"\u003egoogle/go-containerregistry#2272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emutate: close layer readers during export by \u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2277\"\u003egoogle/go-containerregistry#2277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane/flatten: preserve image media type when flattening by \u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2267\"\u003egoogle/go-containerregistry#2267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump goreleaser/goreleaser-action from 7.0.0 to 7.2.1 in the actions group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2273\"\u003egoogle/go-containerregistry#2273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump go.opentelemetry.io/otel from 1.36.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2278\"\u003egoogle/go-containerregistry#2278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the go-deps group across 3 directories with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2280\"\u003egoogle/go-containerregistry#2280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace go-homedir with os.UserHomeDir by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2282\"\u003egoogle/go-containerregistry#2282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/name: only treat .localhost as non-HTTPS, not .local by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2281\"\u003egoogle/go-containerregistry#2281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: block unspecified IPs (0.0.0.0, ::) in validateRealmURL by \u003ca href=\"https://github.com/marwan9696\"\u003e\u003ccode\u003e@​marwan9696\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2285\"\u003egoogle/go-containerregistry#2285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(mutate): add Extract round-trip test for filesystem object preservation by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2283\"\u003egoogle/go-containerregistry#2283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexperiments: remove deprecated support for estargz by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2288\"\u003egoogle/go-containerregistry#2288\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aws-actions/configure-aws-credentials from 6.1.0 to 6.1.1 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2289\"\u003egoogle/go-containerregistry#2289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: limit HTTP response body reads to prevent OOM by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2296\"\u003egoogle/go-containerregistry#2296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump the go-deps group across 3 directories with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2297\"\u003egoogle/go-containerregistry#2297\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: block redirects from token server to private/link-local addresses (SSRF fix) by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2292\"\u003egoogle/go-containerregistry#2292\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epkg/v1/mutate: preserve relative symlinks that stay within rootfs in Extract by \u003ca href=\"https://github.com/anishesg\"\u003e\u003ccode\u003e@​anishesg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2279\"\u003egoogle/go-containerregistry#2279\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003evalidate: skip non-layer layers by \u003ca href=\"https://github.com/imjasonh\"\u003e\u003ccode\u003e@​imjasonh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2298\"\u003egoogle/go-containerregistry#2298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: validate foreign layer URLs to prevent SSRF (fixes \u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2259\"\u003e#2259\u003c/a\u003e) by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2293\"\u003egoogle/go-containerregistry#2293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremote: block SSRF via private-IP Location headers in blob uploads by \u003ca href=\"https://github.com/adilburaksen\"\u003e\u003ccode\u003e@​adilburaksen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2295\"\u003egoogle/go-containerregistry#2295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mutate): preserve config blob and layers for non-Docker OCI artifacts by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2286\"\u003egoogle/go-containerregistry#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: preserve per-occurrence layer identity in mutate.Image.Layers() by \u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2299\"\u003egoogle/go-containerregistry#2299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: retry HTTP 429 (Too Many Requests) by \u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2301\"\u003egoogle/go-containerregistry#2301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: allow bearer realm at same host:port as registry by \u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2302\"\u003egoogle/go-containerregistry#2302\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version to 1.26.3 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2300\"\u003egoogle/go-containerregistry#2300\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gaganhr94\"\u003e\u003ccode\u003e@​gaganhr94\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2262\"\u003egoogle/go-containerregistry#2262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alliasgher\"\u003e\u003ccode\u003e@​alliasgher\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2264\"\u003egoogle/go-containerregistry#2264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/malt3\"\u003e\u003ccode\u003e@​malt3\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2269\"\u003egoogle/go-containerregistry#2269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gnix0\"\u003e\u003ccode\u003e@​gnix0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2271\"\u003egoogle/go-containerregistry#2271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2281\"\u003egoogle/go-containerregistry#2281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/marwan9696\"\u003e\u003ccode\u003e@​marwan9696\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2285\"\u003egoogle/go-containerregistry#2285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anishesg\"\u003e\u003ccode\u003e@​anishesg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2279\"\u003egoogle/go-containerregistry#2279\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/adilburaksen\"\u003e\u003ccode\u003e@​adilburaksen\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2295\"\u003egoogle/go-containerregistry#2295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/iahsanGill\"\u003e\u003ccode\u003e@​iahsanGill\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2299\"\u003egoogle/go-containerregistry#2299\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.5...v0.21.6\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.5...v0.21.6\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/53f7e39e15bfd6aeea6a5f733ee1a8fcf54c15cf\"\u003e\u003ccode\u003e53f7e39\u003c/code\u003e\u003c/a\u003e Update go version to 1.26.3 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2300\"\u003e#2300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/bf87c3bfe4cc3218ac0baa364545d72729d2906d\"\u003e\u003ccode\u003ebf87c3b\u003c/code\u003e\u003c/a\u003e transport: allow bearer realm at same host:port as registry (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2302\"\u003e#2302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/c55facddfbd7fc3d648c6fdda9860b350b013a76\"\u003e\u003ccode\u003ec55facd\u003c/code\u003e\u003c/a\u003e transport: retry HTTP 429 (Too Many Requests) (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2301\"\u003e#2301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/68a569e4a0eb927d36ccb0fcdf4578425c03b5a2\"\u003e\u003ccode\u003e68a569e\u003c/code\u003e\u003c/a\u003e fix: preserve per-occurrence layer identity in Layers() (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2299\"\u003e#2299\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/35b354b436879457221028f05a580fe1c0deccbc\"\u003e\u003ccode\u003e35b354b\u003c/code\u003e\u003c/a\u003e fix(mutate): preserve config blob and layers for non-Docker OCI artifacts (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e5983f2a67ec46b76984ce6de85de08a44eee955\"\u003e\u003ccode\u003ee5983f2\u003c/code\u003e\u003c/a\u003e remote: block SSRF via private-IP Location headers in blob uploads (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2295\"\u003e#2295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/6dad820da7de0d619f1127c46914f2eaf58e3b46\"\u003e\u003ccode\u003e6dad820\u003c/code\u003e\u003c/a\u003e remote: validate foreign layer URLs to prevent SSRF (fixes \u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2259\"\u003e#2259\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2293\"\u003e#2293\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/78bdf1b7e2105cdfcd8f23509992c78357ce16ed\"\u003e\u003ccode\u003e78bdf1b\u003c/code\u003e\u003c/a\u003e validate: skip non-layer layers (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2298\"\u003e#2298\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/c29d91cdc394cb288270f4dd04a31f81054946f4\"\u003e\u003ccode\u003ec29d91c\u003c/code\u003e\u003c/a\u003e pkg/v1/mutate: preserve relative symlinks that stay within rootfs in Extract ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/a70d75a6915ed3137792206dac4bca21d1924959\"\u003e\u003ccode\u003ea70d75a\u003c/code\u003e\u003c/a\u003e transport: block redirects from token server to private/link-local addresses ...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.5...v0.21.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/package-url/packageurl-go` from 0.1.5 to 0.1.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/package-url/packageurl-go/releases\"\u003egithub.com/package-url/packageurl-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.1.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize parsing and serialization performance by \u003ca href=\"https://github.com/andrew\"\u003e\u003ccode\u003e@​andrew\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/package-url/packageurl-go/pull/86\"\u003epackage-url/packageurl-go#86\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andrew\"\u003e\u003ccode\u003e@​andrew\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/package-url/packageurl-go/pull/86\"\u003epackage-url/packageurl-go#86\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/package-url/packageurl-go/compare/v0.1.5...v0.1.6\"\u003ehttps://github.com/package-url/packageurl-go/compare/v0.1.5...v0.1.6\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/package-url/packageurl-go/commit/a74324e4e5d01ba49accd9f2f327e22206c7920d\"\u003e\u003ccode\u003ea74324e\u003c/code\u003e\u003c/a\u003e Optimize parsing and serialization performance (\u003ca href=\"https://redirect.github.com/package-url/packageurl-go/issues/86\"\u003e#86\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/package-url/packageurl-go/commit/b41f387d16428dd565a73fe18800629c8ad0338f\"\u003e\u003ccode\u003eb41f387\u003c/code\u003e\u003c/a\u003e Address review feedback and add chrome-extension validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/package-url/packageurl-go/commit/a546cc5887560ce7b304fe8d7d95e0e2e4407a7f\"\u003e\u003ccode\u003ea546cc5\u003c/code\u003e\u003c/a\u003e Optimize parsing and serialization performance\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/package-url/packageurl-go/compare/v0.1.5...v0.1.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/term` from 0.42.0 to 0.43.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/3c3e4855f7d2eb06c3e48933554add9ec6b599b5\"\u003e\u003ccode\u003e3c3e485\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/term/compare/v0.42.0...v0.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/text` from 0.36.0 to 0.37.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/text/commit/3ef517e623a4bfc08d6457f87d73afda7af7d8e1\"\u003e\u003ccode\u003e3ef517e\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/text/compare/v0.36.0...v0.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/bruto001/vuls/pull/263","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/bruto001%2Fvuls/issues/263","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/263/packages"}},{"old_version":"0.10.0","new_version":"0.11.0","update_type":"minor","path":null,"pr_created_at":"2026-05-22T21:40:50.000Z","version_change":"0.10.0 → 0.11.0","issue":{"uuid":"4505746886","node_id":"PR_kwDORsXlm87egJsd","number":36,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 31 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-29T23:34:58.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-22T21:40:50.000Z","updated_at":"2026-05-29T23:35:00.000Z","time_to_close":611648,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":31,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.21.0","new_version":"1.21.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.37.0","new_version":"2.38.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/apparentlymart/go-cidr","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/apparentlymart/go-cidr"},{"name":"github.com/containerd/containerd/v2","old_version":"2.2.2","new_version":"2.3.0","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.17.2","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/google/go-containerregistry","old_version":"0.21.2","new_version":"0.21.5","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.3","new_version":"0.9.5","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.25.0","new_version":"0.25.2","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.17.1","new_version":"1.17.2","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/mattn/go-shellwords","old_version":"1.0.12","new_version":"1.0.13","repository_url":"https://github.com/mattn/go-shellwords"},{"name":"github.com/open-policy-agent/opa","old_version":"1.15.2","new_version":"1.16.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.7","new_version":"0.2.8","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.5","new_version":"0.1.6","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/secure-systems-lab/go-securesystemslib","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/secure-systems-lab/go-securesystemslib"},{"name":"golang.org/x/crypto","old_version":"0.50.0","new_version":"0.51.0","repository_url":"https://github.com/golang/crypto"},{"name":"golang.org/x/net","old_version":"0.53.0","new_version":"0.54.0","repository_url":"https://github.com/golang/net"},{"name":"golang.org/x/vuln","old_version":"1.1.4","new_version":"1.3.0","repository_url":"https://github.com/golang/vuln"},{"name":"helm.sh/helm/v3","old_version":"3.20.2","new_version":"3.21.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.48.2","new_version":"1.50.1"},{"name":"github.com/invopop/jsonschema","old_version":"0.13.0","new_version":"0.14.0","repository_url":"https://github.com/invopop/jsonschema"},{"name":"github.com/nikolalohinski/gonja/v2","old_version":"2.7.0","new_version":"2.8.0","repository_url":"https://github.com/nikolalohinski/gonja"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 23 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.21.0` | `1.21.1` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.37.0` | `2.38.0` |\n| [github.com/apparentlymart/go-cidr](https://github.com/apparentlymart/go-cidr) | `1.1.0` | `1.1.1` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.2.2` | `2.3.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.17.2` | `5.19.0` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.21.2` | `0.21.5` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.3` | `0.9.5` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.25.0` | `0.25.2` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.10.0` | `0.11.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.17.1` | `1.17.2` |\n| [github.com/mattn/go-shellwords](https://github.com/mattn/go-shellwords) | `1.0.12` | `1.0.13` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.15.2` | `1.16.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.7` | `0.2.8` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.5` | `0.1.6` |\n| [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib) | `0.10.0` | `0.11.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.50.0` | `0.51.0` |\n| [golang.org/x/net](https://github.com/golang/net) | `0.53.0` | `0.54.0` |\n| [golang.org/x/vuln](https://github.com/golang/vuln) | `1.1.4` | `1.3.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.20.2` | `3.21.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.48.2` | `1.50.1` |\n| [github.com/invopop/jsonschema](https://github.com/invopop/jsonschema) | `0.13.0` | `0.14.0` |\n| [github.com/nikolalohinski/gonja/v2](https://github.com/nikolalohinski/gonja) | `2.7.0` | `2.8.0` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.21.0 to 1.21.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.1\u003c/h2\u003e\n\u003ch2\u003e1.21.1 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue in \u003ccode\u003eResponseError.Error()\u003c/code\u003e where the request URL path was being logged unescaped.\u003c/li\u003e\n\u003cli\u003eRedact query parameters when logging errors.\u003c/li\u003e\n\u003cli\u003eFor \u003ccode\u003eruntime.JoinPaths\u003c/code\u003e, don't add a slash between root and paths when \u003ccode\u003epaths\u003c/code\u003e starts with \u003ccode\u003e?\u003c/code\u003e (query string).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to Go 1.25.0.\u003c/li\u003e\n\u003cli\u003eUpgraded dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/63e4ba18204b0df554e330df8f85662e653e67ab\"\u003e\u003ccode\u003e63e4ba1\u003c/code\u003e\u003c/a\u003e Bump release date for azcore (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26613\"\u003e#26613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/fa0312174d17ff4cb7cb0118fa80de07409841c2\"\u003e\u003ccode\u003efa03121\u003c/code\u003e\u003c/a\u003e remove bypass local dns (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26609\"\u003e#26609\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c47f9a60dd1e9be6943ff0d6a5666a0ac09f6cfa\"\u003e\u003ccode\u003ec47f9a6\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 15153 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26607\"\u003e#26607\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/88b8b5b38ecebb929a2e302df054fed1d68618b8\"\u003e\u003ccode\u003e88b8b5b\u003c/code\u003e\u003c/a\u003e Changelog for v2.2.0 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26567\"\u003e#26567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/72ca19ae2b8b4514c4f48a5ff33495b03c08afd0\"\u003e\u003ccode\u003e72ca19a\u003c/code\u003e\u003c/a\u003e Storage STG 101 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26568\"\u003e#26568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/b64baf56c6b168d258b2a0678290ac5f9ab97938\"\u003e\u003ccode\u003eb64baf5\u003c/code\u003e\u003c/a\u003e Sync .github directory with azure-sdk-tools repository (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26600\"\u003e#26600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ecd64dd6500a04da22107925c3ba9fbe8e636f2c\"\u003e\u003ccode\u003eecd64dd\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.1 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26596\"\u003e#26596\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1d02f204d0146ffd7d13d5585bf3766e53c32cc5\"\u003e\u003ccode\u003e1d02f20\u003c/code\u003e\u003c/a\u003e Update copilot code review instructions and migration breaking change mitigat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6e9ce3212cc9d654d349778f19065eb5d849197\"\u003e\u003ccode\u003ef6e9ce3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 14973 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26531\"\u003e#26531\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d5a3baf11e0b743a4009efb8e84cbaee335fc0eb\"\u003e\u003ccode\u003ed5a3baf\u003c/code\u003e\u003c/a\u003e Update CODEOWNERS to remove one owner from Custom Providers (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26588\"\u003e#26588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.21.0...sdk/azcore/v1.21.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.37.0 to 2.38.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDELEX and fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.38.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d67bfae4c370e8451561165eca6ddc50f056f083\"\u003e\u003ccode\u003ed67bfae\u003c/code\u003e\u003c/a\u003e update changelog for v2.38.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/2b1abd81e1c58fb6d440b4637287d3ee09f7f66a\"\u003e\u003ccode\u003e2b1abd8\u003c/code\u003e\u003c/a\u003e DELEX (partly) (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/452dd373d138f7ad858dd6e25e2a92753f83498e\"\u003e\u003ccode\u003e452dd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/440\"\u003e#440\u003c/a\u003e from infastin/server-alias\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b5b8ec2cfde407552ea028514409599dbd5e1600\"\u003e\u003ccode\u003eb5b8ec2\u003c/code\u003e\u003c/a\u003e feat: add 'server' alias to 'redis' in lua scripts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/ecc4af14f2444ea1a57d040185781fe197bdfc9d\"\u003e\u003ccode\u003eecc4af1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/439\"\u003e#439\u003c/a\u003e from TomBailey167/xinfo-stream-last-generated-id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/4a2a33e841b359a2569fe9a35d6d46414bf40aec\"\u003e\u003ccode\u003e4a2a33e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/435\"\u003e#435\u003c/a\u003e from evan-choi/fix/xadd-equals-trim-modifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d6261eff59117ccea7387f3a608caa1006b1adef\"\u003e\u003ccode\u003ed6261ef\u003c/code\u003e\u003c/a\u003e feat: add last-generated-id to XINFO STREAM response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/f4d8aa342425de1b740a6f22a7dd230f83e3712a\"\u003e\u003ccode\u003ef4d8aa3\u003c/code\u003e\u003c/a\u003e fix: accept = trim modifier in xadd\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.37.0...v2.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/apparentlymart/go-cidr` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apparentlymart/go-cidr/commit/5730b04c510e662932577c247c0b194f97fb101f\"\u003e\u003ccode\u003e5730b04\u003c/code\u003e\u003c/a\u003e SubnetBig returns error for negative subnet number\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apparentlymart/go-cidr/commit/fab7bb4b664d0c94dceb4a54fab3500ffb2a2977\"\u003e\u003ccode\u003efab7bb4\u003c/code\u003e\u003c/a\u003e HostBig: Don't crash for out-of-range hostnum greater than max uint64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apparentlymart/go-cidr/commit/e4ff799e34b9b5c2040704a175c01a6a1df7b56c\"\u003e\u003ccode\u003ee4ff799\u003c/code\u003e\u003c/a\u003e Update doc comment spacing for newer gofmt behavior\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/apparentlymart/go-cidr/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.2.2 to 2.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.3.0\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.3.0 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe third minor release of containerd 2.x focuses on continued stability alongside\nnew features and improvements. This is the third time-based release for containerd.\u003c/p\u003e\n\u003cp\u003eStarting with containerd 2.3, the project has moved to release cadence aligned with\nthe Kubernetes release schedule, with new minor releases about every 4 months. The\ncontainerd 2.3 release is also the first annual LTS (Long Term Stable) release under\nthis new schedule, with support planned for at least two years. Direct upgrades\nbetween sequential LTS releases (e.g., 1.7 to 2.3) will be tested and supported.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd transfer types for container filesystem copy (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13165\"\u003e#13165\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd option to inject trace ID to logs (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13117\"\u003e#13117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePropagate OpenTelemetry traces in outgoing RPCs from plugin clients (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13113\"\u003e#13113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate plugin config migration to run on load (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12608\"\u003e#12608\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate sandbox API to include spec field (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12840\"\u003e#12840\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAllow containers to use user namespaces with host networking (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12518\"\u003e#12518\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWire UpdatePodSandboxResources to Sandbox API (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13118\"\u003e#13118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUnpack images with per-layer labels for specific runtime (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12835\"\u003e#12835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePopulate ImageId field in container status (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12787\"\u003e#12787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSet annotations parameter in CreateSandbox request (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12566\"\u003e#12566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd background stats collector to calculate UsageNanoCores for containers and pod sandboxes (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12629\"\u003e#12629\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eSupport zstd-wrapped EROFS layers (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13185\"\u003e#13185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd os.features support for EROFS native container images (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13091\"\u003e#13091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd EROFS layer media type (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12567\"\u003e#12567\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Storage\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eAdd dmverity support to the erofs snapshotter (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12502\"\u003e#12502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse fsmount API to avoid PAGE_SIZE limit for erofs (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12783\"\u003e#12783\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eNode Resource Interface (NRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003ePass container user (uid, gids) to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12769\"\u003e#12769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass seccomp policy to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12768\"\u003e#12768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass any POSIX rlimits to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12765\"\u003e#12765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass extended container status to NRI. (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12770\"\u003e#12770\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass injected CDI devices to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12767\"\u003e#12767\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePass linux sysctl to plugins (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12766\"\u003e#12766\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse dedicated RPC calls for all pod and container life-cycle events via the NRI wire protocol (\u003ca href=\"https://redirect.github.com/containerd/nri/pull/274\"\u003econtainerd/nri#274\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd basic metrics collection for the NRI framework (\u003ca href=\"https://redirect.github.com/containerd/nri/pull/277\"\u003econtainerd/nri#277\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/blob/main/RELEASES.md\"\u003egithub.com/containerd/containerd/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eVersioning and Release\u003c/h1\u003e\n\u003cp\u003eThis document details the versioning and release plan for containerd. Stability\nis a top goal for this project, and we hope that this document and the processes\nit entails will help to achieve that. It covers the release process, versioning\nnumbering, backporting, API stability and support horizons.\u003c/p\u003e\n\u003cp\u003eIf you rely on containerd, it would be good to spend time understanding the\nareas of the API that are and are not supported and how they impact your\nproject in the future.\u003c/p\u003e\n\u003cp\u003eThis document will be considered a living document. Supported timelines,\nbackport targets and API stability guarantees will be updated here as they\nchange.\u003c/p\u003e\n\u003cp\u003eIf there is something that you require or this document leaves out, please\nreach out by \u003ca href=\"https://github.com/containerd/containerd/issues\"\u003efiling an issue\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eReleases\u003c/h2\u003e\n\u003cp\u003eReleases of containerd will be versioned using dotted triples, similar to\n\u003ca href=\"http://semver.org/\"\u003eSemantic Version\u003c/a\u003e. For the purposes of this document, we\nwill refer to the respective components of this triple as\n\u003ccode\u003e\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;.\u0026lt;patch\u0026gt;\u003c/code\u003e. The version number may have additional information,\nsuch as alpha, beta and release candidate qualifications. Such releases will be\nconsidered \u0026quot;pre-releases\u0026quot;.\u003c/p\u003e\n\u003ch3\u003eMajor and Minor Releases\u003c/h3\u003e\n\u003cp\u003eMajor and minor releases of containerd will be made from main. Releases of\ncontainerd will be marked with GPG signed tags and announced at\n\u003ca href=\"https://github.com/containerd/containerd/releases\"\u003ehttps://github.com/containerd/containerd/releases\u003c/a\u003e. The tag will be of the\nformat \u003ccode\u003ev\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;.\u0026lt;patch\u0026gt;\u003c/code\u003e and should be made with the command \u003ccode\u003egit tag -s v\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;.\u0026lt;patch\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eAfter a minor release, a branch will be created, with the format\n\u003ccode\u003erelease/\u0026lt;major\u0026gt;.\u0026lt;minor\u0026gt;\u003c/code\u003e from the minor tag. All further patch releases will\nbe done from that branch. For example, once we release \u003ccode\u003ev1.0.0\u003c/code\u003e, a branch\n\u003ccode\u003erelease/1.0\u003c/code\u003e will be created from that tag. All future patch releases will be\ndone against that branch.\u003c/p\u003e\n\u003ch3\u003eRelease Cadence\u003c/h3\u003e\n\u003cp\u003eSince containerd v2.3 in April 2026, minor releases are provided on a time basis\nwith a cadence of 4 months. New minor releases are scheduled for April, August,\nand December of each year. This cadence is synchronized with the Kubernetes\nrelease schedule to ensure that new features in containerd can be smoothly\nadopted by new Kubernetes releases.\u003c/p\u003e\n\u003cp\u003eThe maintainers will maintain a roadmap and milestones for each release, however,\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/2976f38ccbfcda5ef1364d63d60b0a304e4bf94a\"\u003e\u003ccode\u003e2976f38\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13325\"\u003e#13325\u003c/a\u003e from dmcgowan/prepare-v2.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/77eeb2d8ea1d334cd64fc205411869ec3720f674\"\u003e\u003ccode\u003e77eeb2d\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.3.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c55ada3f312a965eb9aaf12477416e8cc2c940cf\"\u003e\u003ccode\u003ec55ada3\u003c/code\u003e\u003c/a\u003e Update api to v1.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ebf4404e39a1a11975e5bf78127e44ff2b1b3788\"\u003e\u003ccode\u003eebf4404\u003c/code\u003e\u003c/a\u003e Update release document\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f49640ec1f78fd0b04aca64c10ffaff3dfec5b12\"\u003e\u003ccode\u003ef49640e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13321\"\u003e#13321\u003c/a\u003e from dmcgowan/remove-erofs-fsmerge-threshold\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e3d5fe82b16cd6d05c33150f69800822a9205b0f\"\u003e\u003ccode\u003ee3d5fe8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13322\"\u003e#13322\u003c/a\u003e from dmcgowan/prepare-api-v1.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ee17fa123684303d6f6e083c318146d0425961d7\"\u003e\u003ccode\u003eee17fa1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13317\"\u003e#13317\u003c/a\u003e from fuweid/fix-merge-issue\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b7f8c3510d9135ad56277140f9e5aa86eb0e9a66\"\u003e\u003ccode\u003eb7f8c35\u003c/code\u003e\u003c/a\u003e erofs: remove fsmerge threshold from snapshotter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/8f2fce4ce57fd3a5772d479d5cbee1707ef7b3b4\"\u003e\u003ccode\u003e8f2fce4\u003c/code\u003e\u003c/a\u003e Prepare release notes for v1.11.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ce2955c7ce9d142e7d9f5e902037e625930033b9\"\u003e\u003ccode\u003ece2955c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13319\"\u003e#13319\u003c/a\u003e from mxpv/depr\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.2.2...v2.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.17.2 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.21.2 to 0.21.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/cli v29.4.0, moby/api v1.54.1, moby/client v0.4.0 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2254\"\u003egoogle/go-containerregistry#2254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate to Go 1.26.2 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2255\"\u003egoogle/go-containerregistry#2255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 in the actions group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2257\"\u003egoogle/go-containerregistry#2257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 in the go-deps group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2260\"\u003egoogle/go-containerregistry#2260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: do not make a viral minimum go version by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2237\"\u003egoogle/go-containerregistry#2237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid pruning absolute links from extracted and flattened images by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2241\"\u003egoogle/go-containerregistry#2241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 5 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2245\"\u003egoogle/go-containerregistry#2245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to go1.25.8, and use separate .go-version file by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2246\"\u003egoogle/go-containerregistry#2246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump CI go version to 1.26.1 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2242\"\u003egoogle/go-containerregistry#2242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2240\"\u003egoogle/go-containerregistry#2240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efork distribution client v3 auth-challenge as an internal package (squashed) by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2248\"\u003egoogle/go-containerregistry#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: validate Bearer realm URL to prevent SSRF by \u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2243\"\u003egoogle/go-containerregistry#2243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erevert path traversal and symlink escape from \u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2227\"\u003e#2227\u003c/a\u003e by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2250\"\u003egoogle/go-containerregistry#2250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix pkg/v1/google/auth tests for arm64  by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2085\"\u003egoogle/go-containerregistry#2085\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egoreleaser: Update goreleaser config and GH action by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2253\"\u003egoogle/go-containerregistry#2253\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/evilgensec\"\u003e\u003ccode\u003e@​evilgensec\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2243\"\u003egoogle/go-containerregistry#2243\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.3...v0.21.4\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.3...v0.21.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdds local file support to the \u003ccode\u003ecrane index\u003c/code\u003e subcommand  by \u003ca href=\"https://github.com/edwardthiele\"\u003e\u003ccode\u003e@​edwardthiele\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2223\"\u003egoogle/go-containerregistry#2223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emigrate to github.com/moby/moby modules by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2228\"\u003egoogle/go-containerregistry#2228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 4 directories with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2233\"\u003egoogle/go-containerregistry#2233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump goreleaser/goreleaser-action from 6.4.0 to 7.0.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2220\"\u003egoogle/go-containerregistry#2220\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emutate: reject path traversal and symlink escape in Extract by \u003ca href=\"https://github.com/KevinZhao\"\u003e\u003ccode\u003e@​KevinZhao\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2227\"\u003egoogle/go-containerregistry#2227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etarball: detect symlink cycles in extractFileFromTar by \u003ca href=\"https://github.com/vnykmshr\"\u003e\u003ccode\u003e@​vnykmshr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2232\"\u003egoogle/go-containerregistry#2232\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebump golang to 1.25.7 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2236\"\u003egoogle/go-containerregistry#2236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/edwardthiele\"\u003e\u003ccode\u003e@​edwardthiele\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2223\"\u003egoogle/go-containerregistry#2223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2228\"\u003egoogle/go-containerregistry#2228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KevinZhao\"\u003e\u003ccode\u003e@​KevinZhao\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2227\"\u003egoogle/go-containerregistry#2227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vnykmshr\"\u003e\u003ccode\u003e@​vnykmshr\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2232\"\u003egoogle/go-containerregistry#2232\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.2...v0.21.3\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.2...v0.21.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/5b80281da727dae218e1697ab8529b631b9efa64\"\u003e\u003ccode\u003e5b80281\u003c/code\u003e\u003c/a\u003e build(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 in the go-deps gro...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b99bca24a8df1bd88afc1d299d4c0ebba0555cf8\"\u003e\u003ccode\u003eb99bca2\u003c/code\u003e\u003c/a\u003e build(deps): bump aws-actions/configure-aws-credentials (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2257\"\u003e#2257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/f8be1d442e6fc85c791e4aa50155aa8806ca8312\"\u003e\u003ccode\u003ef8be1d4\u003c/code\u003e\u003c/a\u003e update to Go 1.26.2 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2255\"\u003e#2255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/87ad88b4a000e418add5c1bb4ae1da908cbc3b85\"\u003e\u003ccode\u003e87ad88b\u003c/code\u003e\u003c/a\u003e Bump docker/cli v29.4.0, moby/api v1.54.1, moby/client v0.4.0 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2254\"\u003e#2254\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e8813dd0a00e799459cae01d8a4659b9be2fd871\"\u003e\u003ccode\u003ee8813dd\u003c/code\u003e\u003c/a\u003e goreleaser: Update goreleaser config and GH action for releases (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e90447d319233b94dcdc75a24246ccbee6d1e72a\"\u003e\u003ccode\u003ee90447d\u003c/code\u003e\u003c/a\u003e replace gcloud in binary calls in pkg/v1/google tests (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2085\"\u003e#2085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/0d0368c2a5fa524c4765a6c0b7df4ff6d6951471\"\u003e\u003ccode\u003e0d0368c\u003c/code\u003e\u003c/a\u003e revert path traversal and symlink escape changes (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2250\"\u003e#2250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/a2f47d4202de443f68e8bafa95ddd41407327168\"\u003e\u003ccode\u003ea2f47d4\u003c/code\u003e\u003c/a\u003e transport: validate Bearer realm URL to prevent SSRF (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2243\"\u003e#2243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/19a36cd8c44dd465a84f9d6ffea3009023f73660\"\u003e\u003ccode\u003e19a36cd\u003c/code\u003e\u003c/a\u003e fork distribution client v3 auth-challenge as an internal package (squashed) ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/c612a9b20a4c533454b7fa8b39a8c8139065f0b1\"\u003e\u003ccode\u003ec612a9b\u003c/code\u003e\u003c/a\u003e Bump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2240\"\u003e#2240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.2...v0.21.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/hc-install` from 0.9.3 to 0.9.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/hc-install/releases\"\u003egithub.com/hashicorp/hc-install's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.9.5\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: Lower compatibility constraint from 1.25.8 to 1.25.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/376\"\u003e#376\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.4\u003c/h2\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Prefer \u003ccode\u003ego.mod\u003c/code\u003e if Go versions mismatch (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/368\"\u003e#368\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eBUG FIXES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate PGP pubkey to replace expired one (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/355\"\u003e#355\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/372\"\u003e#372\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/349\"\u003e#349\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/363\"\u003e#363\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/369\"\u003e#369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/360\"\u003e#360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/ProtonMail/go-crypto from 1.3.0 to 1.4.1 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/351\"\u003e#351\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/358\"\u003e#358\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/mod from 0.33.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/354\"\u003e#354\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/365\"\u003e#365\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ego: bump to 1.25 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/pull/357\"\u003e#357\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/2f46abfd7f9e78d5df1e17d599a6c12098432cee\"\u003e\u003ccode\u003e2f46abf\u003c/code\u003e\u003c/a\u003e Prepare for 0.9.5 release (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/377\"\u003e#377\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/78781831051e592c57ee890addd7cddd03578878\"\u003e\u003ccode\u003e7878183\u003c/code\u003e\u003c/a\u003e go.mod: Keep compatibility constraint separate from build (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/376\"\u003e#376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/d5841a31c41f78fabaf2ea59e5816e6616e0f618\"\u003e\u003ccode\u003ed5841a3\u003c/code\u003e\u003c/a\u003e version: cleanup after 0.9.4 release (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/374\"\u003e#374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/13edb5e7b4b6bd1b62729e852fede0e1a5135a39\"\u003e\u003ccode\u003e13edb5e\u003c/code\u003e\u003c/a\u003e Prepare for 0.9.4 release (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/373\"\u003e#373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/8233b7ab4ae1d7e063a52f4f647a67c50af7c03c\"\u003e\u003ccode\u003e8233b7a\u003c/code\u003e\u003c/a\u003e pubkey: Replace two keys with the new one (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/372\"\u003e#372\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/99a174c773ddf5cca96008ee8b3444c88e1af75b\"\u003e\u003ccode\u003e99a174c\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/go-git/go-git/v5 from 5.17.2 to 5.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/369\"\u003e#369\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/77c3fbdd247381c5b3ef58020faec881b88a6031\"\u003e\u003ccode\u003e77c3fbd\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 in the github-a...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/dbcbf5ff1d32880435f7abfba5b40c1d645b7ec9\"\u003e\u003ccode\u003edbcbf5f\u003c/code\u003e\u003c/a\u003e build: Prefer go.mod if Go versions mismatch (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/368\"\u003e#368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/ad8a98be88668e65a93d45fdfe3e174229acc6f7\"\u003e\u003ccode\u003ead8a98b\u003c/code\u003e\u003c/a\u003e build(deps): bump golang.org/x/mod from 0.34.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/365\"\u003e#365\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/hc-install/commit/9a8707266a2315a7520cab7e488b90996c1dea77\"\u003e\u003ccode\u003e9a87072\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/hc-install/issues/360\"\u003e#360\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/hc-install/compare/v0.9.3...v0.9.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/terraform-exec` from 0.25.0 to 0.25.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/terraform-exec/releases\"\u003egithub.com/hashicorp/terraform-exec's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.25.2\u003c/h2\u003e\n\u003cp\u003eNOTES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: Lower compatibility constraint from 1.25.8 to 1.25.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/581\"\u003e#581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.4 to 0.9.5 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.25.1\u003c/h2\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.17.0 to 1.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/568\"\u003e#568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/574\"\u003e#574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/576\"\u003e#576\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.3 to 0.9.4 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/terraform-exec/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/terraform-exec's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e0.25.2 (April 29, 2026)\u003c/h1\u003e\n\u003cp\u003eNOTES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: Lower compatibility constraint from 1.25.8 to 1.25.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/581\"\u003e#581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.4 to 0.9.5 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e0.25.1 (April 22, 2026)\u003c/h1\u003e\n\u003cp\u003eDEPENDENCIES:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.17.0 to 1.18.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/568\"\u003e#568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/574\"\u003e#574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/576\"\u003e#576\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/hashicorp/hc-install from 0.9.3 to 0.9.4 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/pull/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/56a0d8b1e947ab88cd0f7a2752495ab90e3f0b96\"\u003e\u003ccode\u003e56a0d8b\u003c/code\u003e\u003c/a\u003e v0.25.2 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/94a3afe0d3d6b0d7495b2287bdc9f6f68ce3414f\"\u003e\u003ccode\u003e94a3afe\u003c/code\u003e\u003c/a\u003e Update Changelog in preparation for 0.25.2 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/586\"\u003e#586\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/ac26db5996e0ed0b4f9a8d1d1b5ce51f4ef960e7\"\u003e\u003ccode\u003eac26db5\u003c/code\u003e\u003c/a\u003e go.mod: Keep compatibility constraint separate from build (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/581\"\u003e#581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/e856badee6e800dad3f8f2dfdc9c0b25b0e3b938\"\u003e\u003ccode\u003ee856bad\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/hc-install from 0.9.4 to 0.9.5 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/585\"\u003e#585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/5418a753fa2599ebb4e296dc22d16564e0ff54d8\"\u003e\u003ccode\u003e5418a75\u003c/code\u003e\u003c/a\u003e v0.25.1 [skip ci]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/c5053a65eed7ffbf6ab4aaab14a24dfc22633f92\"\u003e\u003ccode\u003ec5053a6\u003c/code\u003e\u003c/a\u003e Update Changelog in preparation for 0.25.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/580\"\u003e#580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/f5ab655f3dba9ca5f5762b47e9a983818f7bd01d\"\u003e\u003ccode\u003ef5ab655\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/hc-install from 0.9.3 to 0.9.4 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/578\"\u003e#578\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/f49a90a4b6c8af99b43cc3444d70f9d7f779bde7\"\u003e\u003ccode\u003ef49a90a\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/zclconf/go-cty from 1.18.0 to 1.18.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/576\"\u003e#576\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/a919c3c63f65c6366f60ad89108834510459f155\"\u003e\u003ccode\u003ea919c3c\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.1 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/573\"\u003e#573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/terraform-exec/commit/5b8e8921441672128aca27007f40f286a6152266\"\u003e\u003ccode\u003e5b8e892\u003c/code\u003e\u003c/a\u003e build(deps): bump github.com/hashicorp/go-version from 1.8.0 to 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/terraform-exec/issues/574\"\u003e#574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/terraform-exec/compare/v0.25.0...v0.25.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump the all group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/453\"\u003ein-toto/in-toto-golang#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump the all group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/452\"\u003ein-toto/in-toto-golang#452\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/457\"\u003ein-toto/in-toto-golang#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/459\"\u003ein-toto/in-toto-golang#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ematch: Replace ^ with ! for negation in character classes by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/462\"\u003ein-toto/in-toto-golang#462\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/36d782ffb2ca3adbffcdce1fd971c23319dd4469\"\u003e\u003ccode\u003e36d782f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/462\"\u003e#462\u003c/a\u003e from in-toto/fix-negation-character\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/4a09e3bbc44bc687577b6532e57e8a4abfa5ddf4\"\u003e\u003ccode\u003e4a09e3b\u003c/code\u003e\u003c/a\u003e match: Replace ^ with ! for negation in character classes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c3302e8bc36e46119f7ae17c07eb879ff3507caa\"\u003e\u003ccode\u003ec3302e8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/459\"\u003e#459\u003c/a\u003e from in-toto/dependabot/go_modules/github.com/go-jose...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/016e87efbb55c6dd8772ce227002eeb1b6e3f593\"\u003e\u003ccode\u003e016e87e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/5b9df76e685eaa0a950ea9ba3f4a5561e87e13ad\"\u003e\u003ccode\u003e5b9df76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/457\"\u003e#457\u003c/a\u003e from in-toto/dependabot/go_modules/google.golang.org/...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/595b3fe0a13f481eb0ef898ccaff5e345e492a2f\"\u003e\u003ccode\u003e595b3fe\u003c/code\u003e\u003c/a\u003e chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/e396d248c9cf19f9e144f4e90c476af88742bf35\"\u003e\u003ccode\u003ee396d24\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/452\"\u003e#452\u003c/a\u003e from in-toto/dependabot/github_actions/all-502588e1ca\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/142b779059713332fe5c7856e98f1c564c6d6a09\"\u003e\u003ccode\u003e142b779\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/453\"\u003e#453\u003c/a\u003e from in-toto/dependabot/go_modules/all-d8ef5820aa\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/f741bcc43330554606b813fa0f8fe0c284fcdaea\"\u003e\u003ccode\u003ef741bcc\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c374dc9808137651fe8754eed363ec816cd59d2a\"\u003e\u003ccode\u003ec374dc9\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group across 1 directory with 2 updates\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/magefile/mage` from 1.17.1 to 1.17.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/magefile/mage/releases\"\u003egithub.com/magefile/mage's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.17.2 - Tab Completion\u003c/h2\u003e\n\u003ch2\u003eWhat's New\u003c/h2\u003e\n\u003cp\u003eTab completion is now available by running \u003ccode\u003emage -install \u0026lt;shell\u0026gt;\u003c/code\u003e where the currently supported shells are zsh, bash, fish, and powershell.  This was a long-requested feature that always made me nervous because it presumes a lot about your local machine... but I guess we're in for it now. Please report any issues you see.... it's rather a hard feature to test. But... it works on my machine? 😬\u003c/p\u003e\n\u003cp\u003eFixed a backtick bug in comments and \u003ccode\u003emage -l\u003c/code\u003e and \u003ccode\u003emage -h\u003c/code\u003e no longer require compiling a binary, so they're way faster now.\u003c/p\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e0953947c1673fd745a51c032aadeb3c63f9f3368 make -h no long require compiling (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e791a5b40794d4bcdd840f7e7523d886ac25b2a96 Support Tab Completion (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ecff82a6fab83f756a382e841029a537714bd9a02 fix bug \u003ca href=\"https://redirect.github.com/magefile/mage/issues/537\"\u003e#537\u003c/a\u003e - backticks in comments break output (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/544\"\u003e#544\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magefile/mage/commit/0953947c1673fd745a51c032aadeb3c63f9f3368\"\u003e\u003ccode\u003e0953947\u003c/code\u003e\u003c/a\u003e make -h no long require compiling (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/552\"\u003e#552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magefile/mage/commit/791a5b40794d4bcdd840f7e7523d886ac25b2a96\"\u003e\u003ccode\u003e791a5b4\u003c/code\u003e\u003c/a\u003e Support Tab Completion (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/magefile/mage/commit/cff82a6fab83f756a382e841029a537714bd9a02\"\u003e\u003ccode\u003ecff82a6\u003c/code\u003e\u003c/a\u003e fix bug \u003ca href=\"https://redirect.github.com/magefile/mage/issues/537\"\u003e#537\u003c/a\u003e - backticks in comments break output (\u003ca href=\"https://redirect.github.com/magefile/mage/issues/544\"\u003e#544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/magefile/mage/compare/v1.17.1...v1.17.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/mattn/go-shellwords` from 1.0.12 to 1.0.13\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/fd1aa6cdc3ae8152427063af41b4c89b9a2c9742\"\u003e\u003ccode\u003efd1aa6c\u003c/code\u003e\u003c/a\u003e Run gofmt: add missing //go:build directives and trailing newlines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/e73986e335d259042797a7b3fdcbf1fd935908aa\"\u003e\u003ccode\u003ee73986e\u003c/code\u003e\u003c/a\u003e Treat bare ')' as syntax error regardless of ParseBacktick\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/9a7880332903fa5e4ab1ca3b6a250a1efb8c6a0f\"\u003e\u003ccode\u003e9a78803\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mattn/go-shellwords/issues/60\"\u003e#60\u003c/a\u003e from scumfrog/security-fix-cve\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/b074fa047f436778aa95c2c98617e85b28992e6b\"\u003e\u003ccode\u003eb074fa0\u003c/code\u003e\u003c/a\u003e fix: preserve parser compatibility for unmatched ')' handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/735b5e8f670e10e77a40bb2c2bbf618be9b3f9b0\"\u003e\u003ccode\u003e735b5e8\u003c/code\u003e\u003c/a\u003e Implement tests for shellwords parser functionality\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/e2951fc82d97921ba06a218a46f683441204d07b\"\u003e\u003ccode\u003ee2951fc\u003c/code\u003e\u003c/a\u003e Fix dollarQuote state management in shellwords.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/551a1d06ad870a8ad2a82043d29da07d7036fa34\"\u003e\u003ccode\u003e551a1d0\u003c/code\u003e\u003c/a\u003e Update CI: Go 1.25/1.26 and latest GitHub Actions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/f3bbb6f7f6510c6059561a79e3f105578be4fcce\"\u003e\u003ccode\u003ef3bbb6f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/mattn/go-shellwords/issues/53\"\u003e#53\u003c/a\u003e from ndeloof/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattn/go-shellwords/commit/f6737fe5ef6a6aa549c31c4afeaf8e8305ecd408\"\u003e\u003ccode\u003ef6737fe\u003c/code\u003e\u003c/a\u003e parse \u003ccode\u003e\\t\u003c/code\u003e as TAB, not escaped \u003ccode\u003et\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/mattn/go-shellwords/compare/v1.0.12...v1.0.13\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/open-policy-agent/opa` from 1.15.2 to 1.16.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/releases\"\u003egithub.com/open-policy-agent/opa's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression in the plugin manager that may cause the service to hang on shutdown (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e).\u003c/p\u003e\n\u003ch2\u003ev1.16.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\u003c/p\u003e\n\u003cp\u003eA regression has been found in the plugin manager, which may cause the service to hang on shutdown.\nUsers are advised to go directly to v1.16.1.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\r\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md\"\u003egithub.com/open-policy-agent/opa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e) in the plugin manager that may cause the service to hang on shutdown.\u003c/p\u003e\n\u003ch2\u003e1.16.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003ch4\u003euri.is_valid\u003c/h4\u003e\n\u003cp\u003eReturns \u003ccode\u003etrue\u003c/code\u003e if the input can be parsed as a URI, \u003ccode\u003efalse\u003c/code\u003e otherwise.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/85f6d990d19094da38e829561813e7da7fbae272\"\u003e\u003ccode\u003e85f6d99\u003c/code\u003e\u003c/a\u003e Prepare v1.16.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/1466714b633b056d8e04551f60457fec2f0aad99\"\u003e\u003ccode\u003e1466714\u003c/code\u003e\u003c/a\u003e build: bump go 1.26.2 -\u0026gt; 1.26.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/a72f9fa5e7c5e10a614f44dbe40700f90816d59d\"\u003e\u003ccode\u003ea72f9fa\u003c/code\u003e\u003c/a\u003e Prepare v1.16.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/9339812894af83578c840590bf1b9a33da472630\"\u003e\u003ccode\u003e9339812\u003c/code\u003e\u003c/a\u003e plugins: Ensure plugin status functions don't hang after manager is stopped (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/f3adf61f72b67e06115178851e3ffd7e2ef1a0cd\"\u003e\u003ccode\u003ef3adf61\u003c/code\u003e\u003c/a\u003e Release v1.16.0 (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/c5a446f09d6377bca3dfc6d1c6ddfd7058739205\"\u003e\u003ccode\u003ec5a446f\u003c/code\u003e\u003c/a\u003e Add regression test for comparing objects with array keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/7bc92c60755f51de00a950edfead4760b2cd8e3a\"\u003e\u003ccode\u003e7bc92c6\u003c/code\u003e\u003c/a\u003e workflow: update benchmarks notebook generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/882d5a71171899e3f17d2b6ad16a962a587cc3a2\"\u003e\u003ccode\u003e882d5a7\u003c/code\u003e\u003c/a\u003e build(deps): bump the dependencies group across 2 directories with 9 updates ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/b33179c25828d2c0ea0801b95238616396a37ddb\"\u003e\u003ccode\u003eb33179c\u003c/code\u003e\u003c/a\u003e docs: Fix input value type in not undefined example (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8580\"\u003e#8580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/3d602ca6a35a3ddbdc456653c5e4c34de30aea7e\"\u003e\u003ccode\u003e3d602ca\u003c/code\u003e\u003c/a\u003e perf: Add CopyNonGround() methods for Array, Set, and Object (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8323\"\u003e#8323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-policy-agent/opa/compare/v1.15.2...v1.16.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/openvex/go-vex` from 0.2.7 to 0.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/openvex/go-vex/releases\"\u003egithub.com/openvex/go-vex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.2.8\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openvex/go-vex/commit/a340b5d7c0a6b2254962d227a36376917790e342\"\u003e\u003ccode\u003ea340b5d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/openvex/go-vex/issues/201\"\u003e#201\u003c/a\u003e from openvex/dependabot/go_modules/all-218c634111\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/openvex/go-vex/commit/214cbfcd64d6fd07ab1a9d3869829a46307728e8\"\u003e\u003ccode\u003e214cbfc\u003c/code\u003e\u003c/a\u003e Bump github.com/package-url/packageurl-go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https:...\n\n_Description has been truncated_","html_url":"https://github.com/ScorpionBytes/trivy/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ScorpionBytes%2Ftrivy/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"}},{"old_version":"0.10.0","new_version":"0.11.0","update_type":"minor","path":null,"pr_created_at":"2026-05-18T00:57:23.000Z","version_change":"0.10.0 → 0.11.0","issue":{"uuid":"4465538002","node_id":"PR_kwDOSaHso87ceE-Q","number":21,"state":"closed","title":"chore(deps)(deps): bump the patch-and-minor group across 1 directory with 5 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-01T01:23:29.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-18T00:57:23.000Z","updated_at":"2026-06-01T01:23:30.000Z","time_to_close":1211166,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): bump","group_name":"patch-and-minor","update_count":5,"packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/gorilla/websocket","old_version":"1.5.1","new_version":"1.5.3","repository_url":"https://github.com/gorilla/websocket"},{"name":"github.com/open-policy-agent/opa","old_version":"1.15.2","new_version":"1.16.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/rs/zerolog","old_version":"1.35.0","new_version":"1.35.1","repository_url":"https://github.com/rs/zerolog"},{"name":"github.com/sigstore/protobuf-specs","old_version":"0.5.0","new_version":"0.5.1","repository_url":"https://github.com/sigstore/protobuf-specs"}],"path":null,"ecosystem":"go"},"body":"Bumps the patch-and-minor group with 5 updates in the /cli directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.10.0` | `0.11.0` |\n| [github.com/gorilla/websocket](https://github.com/gorilla/websocket) | `1.5.1` | `1.5.3` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.15.2` | `1.16.2` |\n| [github.com/rs/zerolog](https://github.com/rs/zerolog) | `1.35.0` | `1.35.1` |\n| [github.com/sigstore/protobuf-specs](https://github.com/sigstore/protobuf-specs) | `0.5.0` | `0.5.1` |\n\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e32221d4829e8ec6007896af2d7f11fd6ba13d6c5: build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea42a4dd9163df91c4173d41db2cc7ed67f0db0b6: build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9810ab9f48d46f134ad9a13bbabd1397cc64804e: build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2cef05662cba14b4ae948b1858fee532f8adadd1: Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5: Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a42a4dd9163df91c4173d41db2cc7ed67f0db0b6\"\u003e\u003ccode\u003ea42a4dd\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e08a7c68\u003c/code\u003e to \u003ccode\u003e00059ff\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/255\"\u003e#255\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/9810ab9f48d46f134ad9a13bbabd1397cc64804e\"\u003e\u003ccode\u003e9810ab9\u003c/code\u003e\u003c/a\u003e build(deps): bump goreleaser/goreleaser-action from 6.4.0 to 7.2.1 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/263\"\u003e#263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/32221d4829e8ec6007896af2d7f11fd6ba13d6c5\"\u003e\u003ccode\u003e32221d4\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 6.2.0 to 6.4.0 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/261\"\u003e#261\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2cef05662cba14b4ae948b1858fee532f8adadd1\"\u003e\u003ccode\u003e2cef056\u003c/code\u003e\u003c/a\u003e Add comprehensive support for CycloneDX 1.7 specification (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/257\"\u003e#257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3ed34da50502f9b9d6ac9dff64df8b08e53aa2a5\"\u003e\u003ccode\u003e3ed34da\u003c/code\u003e\u003c/a\u003e Added 5 missing fields to match CycloneDX 1.6 spec: (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/256\"\u003e#256\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gorilla/websocket` from 1.5.1 to 1.5.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gorilla/websocket/releases\"\u003egithub.com/gorilla/websocket's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.3\u003c/h2\u003e\n\u003ch2\u003eImportant change\u003c/h2\u003e\n\u003cp\u003eThis reverts the websockets package back to \u003ca href=\"https://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\"\u003ehttps://github.com/gorilla/websocket/commit/931041c5ee6de24fe9cba1aa16f1a0b910284d6d\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs(echoreadall): fix function echoReadAll comment by \u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emake tests parallel by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrader.Upgrade: use http.ResposnseController by \u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/871\"\u003egorilla/websocket#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not handle network error in \u003ccode\u003eSetCloseHandler()\u003c/code\u003e by \u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: reduce timer in write_control by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/879\"\u003egorilla/websocket#879\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: lint example code by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/890\"\u003egorilla/websocket#890\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: format message type by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/889\"\u003egorilla/websocket#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove hideTempErr to allow downstream users to check for errors like net.ErrClosed by \u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDo not timeout when WriteControl deadline is zero in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/898\"\u003egorilla/websocket#898\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExcludes errchecks linter by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReturn errors instead of printing to logs by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/897\"\u003egorilla/websocket#897\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot; by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/908\"\u003egorilla/websocket#908\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes broken random value generation by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/926\"\u003egorilla/websocket#926\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReverts back to v1.5.0 by \u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/929\"\u003egorilla/websocket#929\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/XdpCs\"\u003e\u003ccode\u003e@​XdpCs\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/881\"\u003egorilla/websocket#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ninedraft\"\u003e\u003ccode\u003e@​ninedraft\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/872\"\u003egorilla/websocket#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nak3\"\u003e\u003ccode\u003e@​nak3\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/863\"\u003egorilla/websocket#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/UnAfraid\"\u003e\u003ccode\u003e@​UnAfraid\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/894\"\u003egorilla/websocket#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/apoorvajagtap\"\u003e\u003ccode\u003e@​apoorvajagtap\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/904\"\u003egorilla/websocket#904\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ehttps://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes subprotocol selection (aling with rfc6455) by \u003ca href=\"https://github.com/KSDaemon\"\u003e\u003ccode\u003e@​KSDaemon\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/823\"\u003egorilla/websocket#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md, replace master to main by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/862\"\u003egorilla/websocket#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse status code constant by \u003ca href=\"https://github.com/mstmdev\"\u003e\u003ccode\u003e@​mstmdev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/864\"\u003egorilla/websocket#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econn.go: default close handler should not return ErrCloseSent. by \u003ca href=\"https://github.com/pnx\"\u003e\u003ccode\u003e@​pnx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/865\"\u003egorilla/websocket#865\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: replace ioutil.readfile with os.readfile by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/868\"\u003egorilla/websocket#868\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add comment for the readBufferSize and writeBufferSize by \u003ca href=\"https://github.com/rfyiamcool\"\u003e\u003ccode\u003e@​rfyiamcool\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/869\"\u003egorilla/websocket#869\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove noisy printf in NextReader() and beginMessage() by \u003ca href=\"https://github.com/bcreane\"\u003e\u003ccode\u003e@​bcreane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gorilla/websocket/pull/878\"\u003egorilla/websocket#878\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/ce903f6d1d961af3a8602f2842c8b1c3fca58c4d\"\u003e\u003ccode\u003ece903f6\u003c/code\u003e\u003c/a\u003e Reverts to v1.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/9ec25ca502ec881a7e873d3cdf35da60eab22037\"\u003e\u003ccode\u003e9ec25ca\u003c/code\u003e\u003c/a\u003e fixes broken random value generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/1bddf2e0dba6f35492b0f5614905b291cd0ab88d\"\u003e\u003ccode\u003e1bddf2e\u003c/code\u003e\u003c/a\u003e bumps go version \u0026amp; removes deprecated module usage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/750bf92096b4cd4d75082948a4e143f303a65390\"\u003e\u003ccode\u003e750bf92\u003c/code\u003e\u003c/a\u003e adds GHA \u0026amp; Makefile configs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2c246b2ec6f86b53889c79022fec8dabe0a20bb\"\u003e\u003ccode\u003eb2c246b\u003c/code\u003e\u003c/a\u003e Revert \u0026quot; Update go version \u0026amp; add verification/testing tools (\u003ca href=\"https://redirect.github.com/gorilla/websocket/issues/840\"\u003e#840\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/09a6bab4667fc302c7f23ad770ce48be6fc2d15f\"\u003e\u003ccode\u003e09a6bab\u003c/code\u003e\u003c/a\u003e removing error handling while closing connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/58af150309a40ad57463b8087fe33d59d5a490d3\"\u003e\u003ccode\u003e58af150\u003c/code\u003e\u003c/a\u003e return errors instead of printing to logs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/e5f1a0aad0accdff7dc9131fdcce912e28d8f4d5\"\u003e\u003ccode\u003ee5f1a0a\u003c/code\u003e\u003c/a\u003e excludes errchecks linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/b2a86a174473e870c9fcc3eaba8957689090d2cc\"\u003e\u003ccode\u003eb2a86a1\u003c/code\u003e\u003c/a\u003e Do not timeout when WriteControl deadline is zero\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gorilla/websocket/commit/695e9095ce8736ac99c83939ca6b0fe93768f680\"\u003e\u003ccode\u003e695e909\u003c/code\u003e\u003c/a\u003e Remove hideTempErr to allow downstream users to check for errors like net.Err...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gorilla/websocket/compare/v1.5.1...v1.5.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/open-policy-agent/opa` from 1.15.2 to 1.16.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/releases\"\u003egithub.com/open-policy-agent/opa's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression in the plugin manager that may cause the service to hang on shutdown (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e).\u003c/p\u003e\n\u003ch2\u003ev1.16.0\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\u003c/p\u003e\n\u003cp\u003eA regression has been found in the plugin manager, which may cause the service to hang on shutdown.\nUsers are advised to go directly to v1.16.1.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\r\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-policy-agent/opa/blob/main/CHANGELOG.md\"\u003egithub.com/open-policy-agent/opa's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.16.2\u003c/h2\u003e\n\u003cp\u003eThis release updates the version of Go used to build the OPA binaries and images to 1.26.3;\naddressing \u003ca href=\"https://groups.google.com/g/golang-announce/c/qcCIEXso47M\"\u003ea number of vulnerabilities\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003e1.16.1\u003c/h2\u003e\n\u003cp\u003eThis is a patch release addressing a regression (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8590\"\u003e#8590\u003c/a\u003e) in the plugin manager that may cause the service to hang on shutdown.\u003c/p\u003e\n\u003ch2\u003e1.16.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a mix of new features, performance improvements, and bugfixes. Notably:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions\u003c/li\u003e\n\u003cli\u003eData API Request/Response Metadata\u003c/li\u003e\n\u003cli\u003ePrometheus metrics exported via OTLP\u003c/li\u003e\n\u003cli\u003eFormatter improvements\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e\u003cstrong\u003e\u003cem\u003eNOTE:\u003c/em\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eIn v1.15.x, OPA was dropping logs for bundle downloads, \u003ccode\u003eprint()\u003c/code\u003e calls and other plugin-originated logs.\nUsers are advised to update, v1.16.0 fixes this bug in (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/pull/8544\"\u003e#8544\u003c/a\u003e).\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eNew \u003ccode\u003euri.parse\u003c/code\u003e and \u003ccode\u003euri.is_valid\u003c/code\u003e built-in functions (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8263\"\u003e#8263\u003c/a\u003e)\u003c/h3\u003e\n\u003cp\u003eTwo new \u003ca href=\"https://www.openpolicyagent.org/docs/policy-reference/builtins\"\u003ebuilt-in functions\u003c/a\u003e have been added: \u003ccode\u003euri.parse\u003c/code\u003e for parsing a given URI, and \u003ccode\u003euri.is_valid\u003c/code\u003e for verifying the structure of a given URI.\u003c/p\u003e\n\u003ch4\u003euri.parse\u003c/h4\u003e\n\u003cp\u003eParses a URI and returns an object containing its components according to \u003ca href=\"https://www.rfc-editor.org/rfc/rfc3986.html\"\u003eRFC 3986\u003c/a\u003e. Empty components are omitted.\u003c/p\u003e\n\u003cpre lang=\"rego\"\u003e\u003ccode\u003epackage example\n\u003cp\u003etest_uri if {\nuri.parse(\u0026quot;\u003ca href=\"https://example.com:8080/api?q=1#top\"\u003ehttps://example.com:8080/api?q=1#top\u003c/a\u003e\u0026quot;) == {\n\u0026quot;scheme\u0026quot;: \u0026quot;https\u0026quot;,\n\u0026quot;hostname\u0026quot;: \u0026quot;example.com\u0026quot;,\n\u0026quot;port\u0026quot;: \u0026quot;8080\u0026quot;,\n\u0026quot;path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_path\u0026quot;: \u0026quot;/api\u0026quot;,\n\u0026quot;raw_query\u0026quot;: \u0026quot;q=1\u0026quot;,\n\u0026quot;fragment\u0026quot;: \u0026quot;top\u0026quot;,\n}\n}\n\u003c/code\u003e\u003c/pre\u003e\u003c/p\u003e\n\u003ch4\u003euri.is_valid\u003c/h4\u003e\n\u003cp\u003eReturns \u003ccode\u003etrue\u003c/code\u003e if the input can be parsed as a URI, \u003ccode\u003efalse\u003c/code\u003e otherwise.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/85f6d990d19094da38e829561813e7da7fbae272\"\u003e\u003ccode\u003e85f6d99\u003c/code\u003e\u003c/a\u003e Prepare v1.16.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/1466714b633b056d8e04551f60457fec2f0aad99\"\u003e\u003ccode\u003e1466714\u003c/code\u003e\u003c/a\u003e build: bump go 1.26.2 -\u0026gt; 1.26.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/a72f9fa5e7c5e10a614f44dbe40700f90816d59d\"\u003e\u003ccode\u003ea72f9fa\u003c/code\u003e\u003c/a\u003e Prepare v1.16.1 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/9339812894af83578c840590bf1b9a33da472630\"\u003e\u003ccode\u003e9339812\u003c/code\u003e\u003c/a\u003e plugins: Ensure plugin status functions don't hang after manager is stopped (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/f3adf61f72b67e06115178851e3ffd7e2ef1a0cd\"\u003e\u003ccode\u003ef3adf61\u003c/code\u003e\u003c/a\u003e Release v1.16.0 (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/c5a446f09d6377bca3dfc6d1c6ddfd7058739205\"\u003e\u003ccode\u003ec5a446f\u003c/code\u003e\u003c/a\u003e Add regression test for comparing objects with array keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/7bc92c60755f51de00a950edfead4760b2cd8e3a\"\u003e\u003ccode\u003e7bc92c6\u003c/code\u003e\u003c/a\u003e workflow: update benchmarks notebook generation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/882d5a71171899e3f17d2b6ad16a962a587cc3a2\"\u003e\u003ccode\u003e882d5a7\u003c/code\u003e\u003c/a\u003e build(deps): bump the dependencies group across 2 directories with 9 updates ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/b33179c25828d2c0ea0801b95238616396a37ddb\"\u003e\u003ccode\u003eb33179c\u003c/code\u003e\u003c/a\u003e docs: Fix input value type in not undefined example (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8580\"\u003e#8580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-policy-agent/opa/commit/3d602ca6a35a3ddbdc456653c5e4c34de30aea7e\"\u003e\u003ccode\u003e3d602ca\u003c/code\u003e\u003c/a\u003e perf: Add CopyNonGround() methods for Array, Set, and Object (\u003ca href=\"https://redirect.github.com/open-policy-agent/opa/issues/8323\"\u003e#8323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-policy-agent/opa/compare/v1.15.2...v1.16.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/rs/zerolog` from 1.35.0 to 1.35.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rs/zerolog/commit/116c8060e034e8d46855354d22db2acbc8df9e1e\"\u003e\u003ccode\u003e116c806\u003c/code\u003e\u003c/a\u003e event: restore Err() logging when ErrorStackMarshaler returns nil (\u003ca href=\"https://redirect.github.com/rs/zerolog/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/rs/zerolog/compare/v1.35.0...v1.35.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/protobuf-specs` from 0.5.0 to 0.5.1\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/protobuf-specs/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/protobuf-specs's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.5.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ML-DSA-44 algorithm identifier (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/pull/860\"\u003e#860\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/3001afe9102b15b04ca1b91efccd613976bdf514\"\u003e\u003ccode\u003e3001afe\u003c/code\u003e\u003c/a\u003e Bump ts to v0.5.1 for new release (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/874\"\u003e#874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/f68ef153e50a5842b6c88c38294ee541825aee58\"\u003e\u003ccode\u003ef68ef15\u003c/code\u003e\u003c/a\u003e build(deps): bump the actions-deps group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/873\"\u003e#873\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/985935846f22a5021b967afd844900e7fb9098e6\"\u003e\u003ccode\u003e9859358\u003c/code\u003e\u003c/a\u003e build(deps): bump gradle-wrapper in /java in the java-deps group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/866\"\u003e#866\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/51546ad474b8153975966b617cf9010320db3d17\"\u003e\u003ccode\u003e51546ad\u003c/code\u003e\u003c/a\u003e build(deps): bump ts-proto from 2.11.2 to 2.11.5 in /protoc-builder/hack in t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/8bb3cb3e6c7e64dccaeb0db05052f7ef88a73da4\"\u003e\u003ccode\u003e8bb3cb3\u003c/code\u003e\u003c/a\u003e build(deps): bump the docker-refs group (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/867\"\u003e#867\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/9dfb871b0f36911a4aa66ff18143954bec6383b2\"\u003e\u003ccode\u003e9dfb871\u003c/code\u003e\u003c/a\u003e Update GRPC_GATEWAY_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/864\"\u003e#864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/80abc3f2d43989e5171f8e3f790dca757e9964d9\"\u003e\u003ccode\u003e80abc3f\u003c/code\u003e\u003c/a\u003e build(deps): bump the rust-deps group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/869\"\u003e#869\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/c24db24a34511f0463a7774cc5d4e73b405fccf0\"\u003e\u003ccode\u003ec24db24\u003c/code\u003e\u003c/a\u003e build(deps): bump homebrew/core/protobuf from 33.4 to 34.1 in /protoc-builder...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/6a50d86ffd80e1047b33a8d48ad3a4bb467465ec\"\u003e\u003ccode\u003e6a50d86\u003c/code\u003e\u003c/a\u003e Update GOOGLEAPIS_COMMIT in versions.mk (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/863\"\u003e#863\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/protobuf-specs/commit/a2cbebd8d61283f943cfc2acf6aa65b1fae0f755\"\u003e\u003ccode\u003ea2cbebd\u003c/code\u003e\u003c/a\u003e Bump packages for 0.5.1, bump deps (\u003ca href=\"https://redirect.github.com/sigstore/protobuf-specs/issues/862\"\u003e#862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/protobuf-specs/compare/v0.5.0...v0.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/skillledger/skillledger/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/skillledger%2Fskillledger/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"0.9.1","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-05-06T04:52:39.000Z","version_change":"0.9.1 → 0.10.0","issue":{"uuid":"4388820570","node_id":"PR_kwDOSVhi8M7YolS5","number":6,"state":"open","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.1 to 0.10.0","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-06T04:52:39.000Z","updated_at":"2026-05-06T04:52:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.1","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.1 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39ede217f126cfbc80eabf880f6643be3d392a4f: feat: add MarshalXML and UnmarshalXML (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee9191ed11a269fcb6b3fb54e000ed6d81b5bf9db: feat: add UnmarshalJSON (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e80fede1f13a956d35eb14696cd2ca9d2d943f809: fix: add json tag for \u003ccode\u003eIdentity\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e24e9503293f0837e6e7ea3ff670ef958e6075b87: fix: tests (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed68a199bc1747e5d6a7d4196c2f270535bbf6e3e: fix: use \u003ccode\u003eidentity\u003c/code\u003e as array in \u003ccode\u003evalid-evidence.json\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff9cc28f9c9554328bd6c1ad56098be5a692d5e9: fix: use componentEvidence array for Evidence.Identity field (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e016ee293d464d6383be3a714f7fb0debebef8ad5: build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e77153ab5fe005f6484ac1e1225e7152df00db3f1: build(deps): bump actions/checkout from 4.2.0 to 4.2.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4f50d02c1282ac1d0d7448502b231a0e84a1e529: build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eb84451219e77e0fbbe7d5ba054bcf25dbc7aaea4: build(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e238cbea3479fed9fdfcbfa5f1751828390a05211: build(deps): bump actions/setup-go from 5.1.0 to 5.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ebbe8f3c2c7c4567514ae966c69bf93fc1b3dba2a: build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.1...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.1\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/Chinmaya0011/syftsbom/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chinmaya0011%2Fsyftsbom/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}},{"old_version":"0.9.3","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-05-04T00:51:04.000Z","version_change":"0.9.3 → 0.10.0","issue":{"uuid":"4373451391","node_id":"PR_kwDOSDAo-c7X2SRu","number":30,"state":"closed","title":"chore(deps): bump the go-modules group across 1 directory with 4 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-11T00:54:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-04T00:51:04.000Z","updated_at":"2026-05-11T00:54:51.000Z","time_to_close":605025,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go-modules","update_count":4,"packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/gofrs/flock","old_version":"0.12.1","new_version":"0.13.0","repository_url":"https://github.com/gofrs/flock"},{"name":"github.com/google/jsonschema-go","old_version":"0.4.2","new_version":"0.4.3","repository_url":"https://github.com/google/jsonschema-go"},{"name":"github.com/modelcontextprotocol/go-sdk","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/modelcontextprotocol/go-sdk"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-modules group with 4 updates in the / directory: [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go), [github.com/gofrs/flock](https://github.com/gofrs/flock), [github.com/google/jsonschema-go](https://github.com/google/jsonschema-go) and [github.com/modelcontextprotocol/go-sdk](https://github.com/modelcontextprotocol/go-sdk).\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.3 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gofrs/flock` from 0.12.1 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gofrs/flock/releases\"\u003egithub.com/gofrs/flock's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eMinimum Go version 1.24\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add Stat method by \u003ca href=\"https://github.com/ferhatelmas\"\u003e\u003ccode\u003e@​ferhatelmas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gofrs/flock/pull/127\"\u003egofrs/flock#127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.22.0 to 0.37.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ehttps://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/bfec60bb026171031050af631b6dec974f14e9fa\"\u003e\u003ccode\u003ebfec60b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/7094284415ad11369be4662a7c12be25963b4ea5\"\u003e\u003ccode\u003e7094284\u003c/code\u003e\u003c/a\u003e chore: update linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/8111aec69ca1501f26bb5198ed02673e87806e65\"\u003e\u003ccode\u003e8111aec\u003c/code\u003e\u003c/a\u003e feat: add Stat method (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/127\"\u003e#127\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/6f0f0ed4e14d546b238ae500710aba38b924e135\"\u003e\u003ccode\u003e6f0f0ed\u003c/code\u003e\u003c/a\u003e chore(deps): bump the github-actions group with 4 updates (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/126\"\u003e#126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/fe44231e563ec57fda028bc2484140fb1f24a6d1\"\u003e\u003ccode\u003efe44231\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/f74f0fb0332646c6b3730bfe9cce6fc0badc52c6\"\u003e\u003ccode\u003ef74f0fb\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 in the go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c1f6d161c8e3b29a4d612e34ff17b37d00d4cd2f\"\u003e\u003ccode\u003ec1f6d16\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c542c57ff5f6af1d62b6864144170b612731796a\"\u003e\u003ccode\u003ec542c57\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.29.2 to 3.29.5 in the github-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/425570ba9b698b04bb9506c4906f137fb34ac7e0\"\u003e\u003ccode\u003e425570b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/12753ea298e1aeb97f0881ff3fc07eabcb2b86e5\"\u003e\u003ccode\u003e12753ea\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.28.18 to 3.29.2 in the github-a...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/jsonschema-go` from 0.4.2 to 0.4.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/jsonschema-go/releases\"\u003egithub.com/google/jsonschema-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.4.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eimprove anyOf errors by \u003ca href=\"https://github.com/jba\"\u003e\u003ccode\u003e@​jba\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/61\"\u003egoogle/jsonschema-go#61\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: infer - support map with non-string key type by \u003ca href=\"https://github.com/rafaeljusto\"\u003e\u003ccode\u003e@​rafaeljusto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/70\"\u003egoogle/jsonschema-go#70\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/jsonschema-go/compare/v0.4.2...0.4.3\"\u003ehttps://github.com/google/jsonschema-go/compare/v0.4.2...0.4.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.4.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eimprove anyOf errors by \u003ca href=\"https://github.com/jba\"\u003e\u003ccode\u003e@​jba\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/61\"\u003egoogle/jsonschema-go#61\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: infer - support map with non-string key type by \u003ca href=\"https://github.com/rafaeljusto\"\u003e\u003ccode\u003e@​rafaeljusto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/jsonschema-go/pull/70\"\u003egoogle/jsonschema-go#70\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/jsonschema-go/compare/v0.4.2...v0.4.3\"\u003ehttps://github.com/google/jsonschema-go/compare/v0.4.2...v0.4.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/jsonschema-go/commit/8c4ab4f02ef64dcea5502e47a6113e8292944087\"\u003e\u003ccode\u003e8c4ab4f\u003c/code\u003e\u003c/a\u003e fix: infer - support map with non-string key type (\u003ca href=\"https://redirect.github.com/google/jsonschema-go/issues/70\"\u003e#70\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/jsonschema-go/commit/8bd57428bbbea55d718267fa5b20bbb59b4f9fbd\"\u003e\u003ccode\u003e8bd5742\u003c/code\u003e\u003c/a\u003e improve anyOf errors (\u003ca href=\"https://redirect.github.com/google/jsonschema-go/issues/61\"\u003e#61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/jsonschema-go/compare/v0.4.2...0.4.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/modelcontextprotocol/go-sdk` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/releases\"\u003egithub.com/modelcontextprotocol/go-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0-pre.1\u003c/h2\u003e\n\u003cp\u003eIn this release we introduce several smaller fixes and improvements, and we started working for release 2026-06-30. The main new feature is the introduction of \u003ccode\u003eClientCredentialsHandler\u003c/code\u003e for OAuth client credentials grant.\u003c/p\u003e\n\u003ch2\u003eAdd \u003ccode\u003eClientCredentialsHandler\u003c/code\u003e for OAuth client credentials grant\u003c/h2\u003e\n\u003cp\u003eAdded \u003ccode\u003eClientCredentialsHandler\u003c/code\u003e implementing \u003ccode\u003eauth.OAuthHandler\u003c/code\u003e using the OAuth 2.0 Client Credentials grant (RFC 6749 Section 4.4) for service-to-service authentication with pre-registered credentials.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eextauth: add ClientCredentialsHandler for OAuth client credentials grant by \u003ca href=\"https://github.com/ravyg\"\u003e\u003ccode\u003e@​ravyg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/895\"\u003emodelcontextprotocol/go-sdk#895\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2026-06-30 Release related PRs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003efeat: add automatic application_type inference by \u003ca href=\"https://github.com/guglielmo-san\"\u003e\u003ccode\u003e@​guglielmo-san\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/904\"\u003emodelcontextprotocol/go-sdk#904\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eNew \u003ccode\u003eapplication_type\u003c/code\u003e field is added to the \u003ccode\u003eClientRegistrationMetadata\u003c/code\u003e for DynamicClientRegistration. If not specified, the \u003ccode\u003eapplication_type\u003c/code\u003e will be inferred from the RedirectURIs. This implements \u003ca href=\"https://redirect.github.com/modelcontextprotocol/modelcontextprotocol/pull/837\"\u003eSEP-837\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003efeat: HTTP Header Standardization for method and name by \u003ca href=\"https://github.com/guglielmo-san\"\u003e\u003ccode\u003e@​guglielmo-san\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/907\"\u003emodelcontextprotocol/go-sdk#907\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eBy mirroring key fields from the JSON-RPC payload into HTTP headers, network intermediaries such as load balancers, proxies, and observability tools can route and process MCP traffic without deep packet inspection, reducing latency and computational overhead. This partially implements \u003ca href=\"https://modelcontextprotocol.io/seps/2243-http-standardization\"\u003eSEP-2243\u003c/a\u003e.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBehavior Changes\u003c/h2\u003e\n\u003ch3\u003e\u003ccode\u003eSetError\u003c/code\u003e Behavior Change\u003c/h3\u003e\n\u003cp\u003ePreviously the \u003ccode\u003eSetError\u003c/code\u003e method on \u003ccode\u003eCallToolResult\u003c/code\u003e always overwrote the \u003ccode\u003eContent\u003c/code\u003e field with the error text. Now \u003ccode\u003eSetError\u003c/code\u003e preserves the existing value if it has already been populated. You can restore the previous behavior by setting the environment variable \u003ccode\u003eseterroroverwrite=1\u003c/code\u003e.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003emcp: preserve existing Content in SetError by \u003ca href=\"https://github.com/ravyg\"\u003e\u003ccode\u003e@​ravyg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/864\"\u003emodelcontextprotocol/go-sdk#864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCross-Origin Protection Default Change\u003c/h3\u003e\n\u003cp\u003ePreviously (v1.4.1-v1.5.0) default (zero-value) cross-origin protection was applied when \u003ccode\u003eCrossOriginProtection\u003c/code\u003e in \u003ccode\u003eStreamableHTTPOptions\u003c/code\u003e was \u003ccode\u003enil\u003c/code\u003e. Now cross-origin protection is not enabled by default when \u003ccode\u003eCrossOriginProtection\u003c/code\u003e is nil.\nYou can restore the previous behavior (enable by default) by setting \u003ccode\u003eenableoriginverification=1\u003c/code\u003e.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003emcp: remove default cross origin protection by \u003ca href=\"https://github.com/maciej-kisiel\"\u003e\u003ccode\u003e@​maciej-kisiel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/906\"\u003emodelcontextprotocol/go-sdk#906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ccode\u003edisablecrossoriginprotection\u003c/code\u003e was replaced by \u003ccode\u003eenableoriginverification\u003c/code\u003e after the default was changed to not enable cross-origin protection.\u003c/p\u003e\n\u003cp\u003e\u003ccode\u003ejsonescaping\u003c/code\u003e option was removed, according to plan.\u003c/p\u003e\n\u003ch2\u003eOther Changes to the SDK\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: remove unused util functions by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/871\"\u003emodelcontextprotocol/go-sdk#871\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.32.4 to 4.35.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/873\"\u003emodelcontextprotocol/go-sdk#873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 6.3.0 to 6.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/874\"\u003emodelcontextprotocol/go-sdk#874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-node from 6.2.0 to 6.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/875\"\u003emodelcontextprotocol/go-sdk#875\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump dominikh/staticcheck-action from 1.4.0 to 1.4.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/872\"\u003emodelcontextprotocol/go-sdk#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoauthex: accept 200 in client registration by \u003ca href=\"https://github.com/MatyasVondraOutreach\"\u003e\u003ccode\u003e@​MatyasVondraOutreach\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/877\"\u003emodelcontextprotocol/go-sdk#877\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: allow Content-Type parameters in streamable transport by \u003ca href=\"https://github.com/rafaeljusto\"\u003e\u003ccode\u003e@​rafaeljusto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/878\"\u003emodelcontextprotocol/go-sdk#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: preserve existing Content in SetError by \u003ca href=\"https://github.com/ravyg\"\u003e\u003ccode\u003e@​ravyg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/864\"\u003emodelcontextprotocol/go-sdk#864\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: fix race condition in \u003ccode\u003eServerSession.startKeepalive\u003c/code\u003e by \u003ca href=\"https://github.com/begelundmuller\"\u003e\u003ccode\u003e@​begelundmuller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/856\"\u003emodelcontextprotocol/go-sdk#856\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: preserve CNAME when deploying to GitHub pages by \u003ca href=\"https://github.com/maciej-kisiel\"\u003e\u003ccode\u003e@​maciej-kisiel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/pull/884\"\u003emodelcontextprotocol/go-sdk#884\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/f5f2015413f17f578fbacc839d2c05d0fdb3f1cc\"\u003e\u003ccode\u003ef5f2015\u003c/code\u003e\u003c/a\u003e MCPGODEBUG update for 1.6.0 (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/893\"\u003e#893\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/e01639a31808e27b9a77f02367340569f47e4b3d\"\u003e\u003ccode\u003ee01639a\u003c/code\u003e\u003c/a\u003e feat: HTTP Header Standardization for method and name (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/907\"\u003e#907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/93a41b2cfa81e6be813feadfd6dc1ed665c06da7\"\u003e\u003ccode\u003e93a41b2\u003c/code\u003e\u003c/a\u003e internal/jsonrpc2: remove unused code (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/910\"\u003e#910\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/446beae01800ca510b42345a7330f1b7b6bbbf89\"\u003e\u003ccode\u003e446beae\u003c/code\u003e\u003c/a\u003e mcp: Upgrade jsonschema-go (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/912\"\u003e#912\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/2e21834ad33e0b8105bf2e3b6733a27193f97caf\"\u003e\u003ccode\u003e2e21834\u003c/code\u003e\u003c/a\u003e extauth: add ClientCredentialsHandler for OAuth client credentials grant (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/895\"\u003e#895\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/2643b22a4ecc1197aedcd2d84d58e592bec04dfe\"\u003e\u003ccode\u003e2643b22\u003c/code\u003e\u003c/a\u003e feat: add automatic application_type inference (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/904\"\u003e#904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/db50910c70a71ac28abd761e0736799c048a8888\"\u003e\u003ccode\u003edb50910\u003c/code\u003e\u003c/a\u003e mcp: do not re-prompt OAuth after cancelled Authorize (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/885\"\u003e#885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/5f2cd8fd14bcd3b7f1e693dd741b5f1a3c338051\"\u003e\u003ccode\u003e5f2cd8f\u003c/code\u003e\u003c/a\u003e mcp: preserve transport errors in Write error chain (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/888\"\u003e#888\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/0edc5971cd5dbab661b4122cd754a5c94d899e6a\"\u003e\u003ccode\u003e0edc597\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/896\"\u003e#896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/commit/41e1f941bbaa1f9de78ac94f89af7b676a440dc8\"\u003e\u003ccode\u003e41e1f94\u003c/code\u003e\u003c/a\u003e mcp: remove default cross origin protection (\u003ca href=\"https://redirect.github.com/modelcontextprotocol/go-sdk/issues/906\"\u003e#906\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/modelcontextprotocol/go-sdk/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/shyshlakov/pci-dss-mcp/pull/30","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/shyshlakov%2Fpci-dss-mcp/issues/30","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/30/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-04-20T01:08:10.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"4292527234","node_id":"PR_kwDOF48Qv87TydsK","number":410,"state":"open","title":"chore(deps): bump the common group across 1 directory with 52 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T01:08:10.000Z","updated_at":"2026-04-20T01:12:38.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":52,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.37.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.3","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/fatih/color","old_version":"1.18.0","new_version":"1.19.0","repository_url":"https://github.com/fatih/color"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.18.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.5","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.6","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.15.0","new_version":"1.17.1","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/mattn/go-shellwords","old_version":"1.0.12","new_version":"1.0.13","repository_url":"https://github.com/mattn/go-shellwords"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.15.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.8","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.1","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"golang.org/x/vuln","old_version":"1.1.4","new_version":"1.2.0","repository_url":"https://github.com/golang/vuln"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.2","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.49.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 27 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.37.0` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.3` |\n| [github.com/fatih/color](https://github.com/fatih/color) | `1.18.0` | `1.19.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.18.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.5` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.6` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.15.0` | `1.17.1` |\n| [github.com/mattn/go-shellwords](https://github.com/mattn/go-shellwords) | `1.0.12` | `1.0.13` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.15.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.8` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.53.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.1` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [golang.org/x/vuln](https://github.com/golang/vuln) | `1.1.4` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.2` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.49.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.1\u003c/h2\u003e\n\u003ch2\u003e1.21.1 (2026-04-16)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed an issue in \u003ccode\u003eResponseError.Error()\u003c/code\u003e where the request URL path was being logged unescaped.\u003c/li\u003e\n\u003cli\u003eRedact query parameters when logging errors.\u003c/li\u003e\n\u003cli\u003eFor \u003ccode\u003eruntime.JoinPaths\u003c/code\u003e, don't add a slash between root and paths when \u003ccode\u003epaths\u003c/code\u003e starts with \u003ccode\u003e?\u003c/code\u003e (query string).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpgraded to Go 1.25.0.\u003c/li\u003e\n\u003cli\u003eUpgraded dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/63e4ba18204b0df554e330df8f85662e653e67ab\"\u003e\u003ccode\u003e63e4ba1\u003c/code\u003e\u003c/a\u003e Bump release date for azcore (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26613\"\u003e#26613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/fa0312174d17ff4cb7cb0118fa80de07409841c2\"\u003e\u003ccode\u003efa03121\u003c/code\u003e\u003c/a\u003e remove bypass local dns (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26609\"\u003e#26609\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c47f9a60dd1e9be6943ff0d6a5666a0ac09f6cfa\"\u003e\u003ccode\u003ec47f9a6\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 15153 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26607\"\u003e#26607\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/88b8b5b38ecebb929a2e302df054fed1d68618b8\"\u003e\u003ccode\u003e88b8b5b\u003c/code\u003e\u003c/a\u003e Changelog for v2.2.0 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26567\"\u003e#26567\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/72ca19ae2b8b4514c4f48a5ff33495b03c08afd0\"\u003e\u003ccode\u003e72ca19a\u003c/code\u003e\u003c/a\u003e Storage STG 101 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26568\"\u003e#26568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/b64baf56c6b168d258b2a0678290ac5f9ab97938\"\u003e\u003ccode\u003eb64baf5\u003c/code\u003e\u003c/a\u003e Sync .github directory with azure-sdk-tools repository (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26600\"\u003e#26600\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ecd64dd6500a04da22107925c3ba9fbe8e636f2c\"\u003e\u003ccode\u003eecd64dd\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.1 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26596\"\u003e#26596\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1d02f204d0146ffd7d13d5585bf3766e53c32cc5\"\u003e\u003ccode\u003e1d02f20\u003c/code\u003e\u003c/a\u003e Update copilot code review instructions and migration breaking change mitigat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6e9ce3212cc9d654d349778f19065eb5d849197\"\u003e\u003ccode\u003ef6e9ce3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 14973 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26531\"\u003e#26531\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d5a3baf11e0b743a4009efb8e84cbaee335fc0eb\"\u003e\u003ccode\u003ed5a3baf\u003c/code\u003e\u003c/a\u003e Update CODEOWNERS to remove one owner from Custom Providers (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/26588\"\u003e#26588\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/internal/v1.12.0\u003c/h2\u003e\n\u003ch2\u003e1.12.0 (2026-04-01)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eIgnoredQueryParameters\u003c/code\u003e field to \u003ccode\u003eSetDefaultMatcherOptions\u003c/code\u003e for specifying query parameters to ignore during playback matching\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.37.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHEXPIRE\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.37.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esuport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/c1b59bfe154a01657c4b79734237fe5eba81f11b\"\u003e\u003ccode\u003ec1b59bf\u003c/code\u003e\u003c/a\u003e feat: implement HEXPIRE command (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.3\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.3 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe third patch release for containerd 2.2 contains various fixes\nand updates including a security patch.\u003c/p\u003e\n\u003ch3\u003eSecurity Updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003espdystream\u003c/strong\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/spdystream/security/advisories/GHSA-pc3f-x583-g7j2\"\u003e\u003cstrong\u003eCVE-2026-35469\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003ePreserve cgroup mount options for privileged containers (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13120\"\u003e#13120\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEnsure UpdatePodSandbox returns Unimplemented instead of a generic error (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13023\"\u003e#13023\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eGo client\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eHandle absolute symlinks in rootfs user lookup to fix regressions when using Go 1.24 (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13015\"\u003e#13015\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eEnable mount manager in diff walking to fix layer extraction errors with some snapshotters (e.g., EROFS) (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13198\"\u003e#13198\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eApply hardening to prevent TOCTOU race during tar extraction (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12971\"\u003e#12971\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eRestore support for client-mounted roots in Windows containers using process isolation (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13195\"\u003e#13195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate runc to v1.3.5 (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13061\"\u003e#13061\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eApply absolute symlink resolution to /etc/group in OCI spec to fix lookups on NixOS-style systems (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13019\"\u003e#13019\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHandle absolute symlinks in rootfs user lookup to fix regressions when using Go 1.24 (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13015\"\u003e#13015\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eSnapshotters\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix bug that caused whiteouts to be ignored when parallel unpack was used (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/13125\"\u003e#13125\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eMaksym Pavlenko\u003c/li\u003e\n\u003cli\u003eChris Henzie\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003ePaulo Oliveira\u003c/li\u003e\n\u003cli\u003eHenry Wang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/77c84241c7cbdd9b4eca2591793e3d4f4317c590\"\u003e\u003ccode\u003e77c8424\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13224\"\u003e#13224\u003c/a\u003e from samuelkarp/prepare-release-2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/8a0f4ed5d360171d62ca625bc93f393a36241189\"\u003e\u003ccode\u003e8a0f4ed\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/13838281d5d289e45af809a6b7efc5f3b2f64222\"\u003e\u003ccode\u003e1383828\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13217\"\u003e#13217\u003c/a\u003e from samuelkarp/update-spdystream-2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/31bd34a064dc7136413efde09b99a2bdd14dabe9\"\u003e\u003ccode\u003e31bd34a\u003c/code\u003e\u003c/a\u003e update github.com/moby/spdystream v0.5.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d2c2fc32179c4898a0571c9d2063f31c9153ad5d\"\u003e\u003ccode\u003ed2c2fc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13197\"\u003e#13197\u003c/a\u003e from thaJeztah/2.2_bump_compress\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/6b3c2de6cfee512bfa11d45fc02f2353d5f20bf2\"\u003e\u003ccode\u003e6b3c2de\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13198\"\u003e#13198\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-13186-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/409f75be8791d53e2e4e96ab060d8db56fd46b1e\"\u003e\u003ccode\u003e409f75b\u003c/code\u003e\u003c/a\u003e diff/walking: enable mount manager\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/1336f6c45d25c674963e5cb86ee1ea522e6f513e\"\u003e\u003ccode\u003e1336f6c\u003c/code\u003e\u003c/a\u003e vendor: github.com/klauspost/compress v1.18.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/33e93348fa26b9a7bb733d1739eab0f802d1ac01\"\u003e\u003ccode\u003e33e9334\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13195\"\u003e#13195\u003c/a\u003e from thaJeztah/2.2_bump_runhcs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/0d85aef0cbce3b654f27b61c20146e2c38ad700c\"\u003e\u003ccode\u003e0d85aef\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/13196\"\u003e#13196\u003c/a\u003e from thaJeztah/2.2_bump_hcsshim\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fatih/color` from 1.18.0 to 1.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fatih/color/releases\"\u003egithub.com/fatih/color's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.25.0 to 0.28.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/246\"\u003efatih/color#246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix for issue \u003ca href=\"https://redirect.github.com/fatih/color/issues/230\"\u003e#230\u003c/a\u003e set/unsetwriter symmetric wrt color support detection by \u003ca href=\"https://github.com/ataypamart\"\u003e\u003ccode\u003e@​ataypamart\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/243\"\u003efatih/color#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: go mod cleanup by \u003ca href=\"https://github.com/sashamelentyev\"\u003e\u003ccode\u003e@​sashamelentyev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/244\"\u003efatih/color#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.28.0 to 0.30.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/249\"\u003efatih/color#249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github.com/mattn/go-colorable from 0.1.13 to 0.1.14 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/248\"\u003efatih/color#248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate CI and go deps by \u003ca href=\"https://github.com/fatih\"\u003e\u003ccode\u003e@​fatih\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/254\"\u003efatih/color#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.31.0 to 0.37.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/268\"\u003efatih/color#268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: include escape codes in byte counts from \u003ccode\u003eFprint\u003c/code\u003e, \u003ccode\u003eFprintf\u003c/code\u003e by \u003ca href=\"https://github.com/qualidafial\"\u003e\u003ccode\u003e@​qualidafial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/282\"\u003efatih/color#282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golang.org/x/sys from 0.37.0 to 0.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/277\"\u003efatih/color#277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add nil check for os.Stdout to prevent panic on Windows services by \u003ca href=\"https://github.com/majiayu000\"\u003e\u003ccode\u003e@​majiayu000\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/275\"\u003efatih/color#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dominikh/staticcheck-action from 1.3.1 to 1.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/259\"\u003efatih/color#259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/273\"\u003efatih/color#273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize Color.Equals performance (O(n²) → O(n)) by \u003ca href=\"https://github.com/UnSubble\"\u003e\u003ccode\u003e@​UnSubble\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fatih/color/pull/269\"\u003efatih/color#269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fatih/color/pull/266\"\u003efatih/color#266\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ataypamart\"\u003e\u003ccode\u003e@​ataypamart\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/243\"\u003efatih/color#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sashamelentyev\"\u003e\u003ccode\u003e@​sashamelentyev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/244\"\u003efatih/color#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/qualidafial\"\u003e\u003ccode\u003e@​qualidafial\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/282\"\u003efatih/color#282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/majiayu000\"\u003e\u003ccode\u003e@​majiayu000\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/275\"\u003efatih/color#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/UnSubble\"\u003e\u003ccode\u003e@​UnSubble\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/fatih/color/pull/269\"\u003efatih/color#269\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fatih/color/compare/v1.18.0...v1.19.0\"\u003ehttps://github.com/fatih/color/compare/v1.18.0...v1.19.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/ca25f6e17f118a5a259f3c2c0d395949d1103a5a\"\u003e\u003ccode\u003eca25f6e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/266\"\u003e#266\u003c/a\u003e from fatih/dependabot/github_actions/actions/setup-go-6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/120598440a16510564204450092d1e7925fad9ae\"\u003e\u003ccode\u003e1205984\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/5715c20323d8c79f60d4944831fcfa3b76cd5734\"\u003e\u003ccode\u003e5715c20\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/269\"\u003e#269\u003c/a\u003e from UnSubble/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/2f6e2003760028129f34c4ad5c3728b904811d3c\"\u003e\u003ccode\u003e2f6e200\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/f72ec947d0c34504dfd08b0db68d89f37503fc90\"\u003e\u003ccode\u003ef72ec94\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/273\"\u003e#273\u003c/a\u003e from fatih/dependabot/github_actions/actions/checkout-6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/848e6330af5690fa24bb038d5330839a33f1f0e5\"\u003e\u003ccode\u003e848e633\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/4c2cd3443934693bd8892fc0f7bb5bbec8e3788a\"\u003e\u003ccode\u003e4c2cd34\u003c/code\u003e\u003c/a\u003e Add tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/7f812f029c41eddd3ac7fbbdf6cc78e4b175944b\"\u003e\u003ccode\u003e7f812f0\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/b7fc9f9557629556aff702751b5268cefcbafa15\"\u003e\u003ccode\u003eb7fc9f9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fatih/color/issues/259\"\u003e#259\u003c/a\u003e from fatih/dependabot/github_actions/dominikh/staticc...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fatih/color/commit/239a88f715e8e35f40492da7a1e08f7173e78e05\"\u003e\u003ccode\u003e239a88f\u003c/code\u003e\u003c/a\u003e Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fatih/color/compare/v1.18.0...v1.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.18.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/ea3e7ec9dfc54f577a01afb4dd601c0284604264\"\u003e\u003ccode\u003eea3e7ec\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2004\"\u003e#2004\u003c/a\u003e from go-git/v5-http-hardening\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bcd20a9c525826081262a06a9ed9c3167abfcd53\"\u003e\u003ccode\u003ebcd20a9\u003c/code\u003e\u003c/a\u003e plumbing: transport/http, Add support for followRedirects policy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/45ae193b3a60aa8ec8a3e373f7265a7819473d5f\"\u003e\u003ccode\u003e45ae193\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1944\"\u003e#1944\u003c/a\u003e from go-git/fix-perms\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fda4f7464b597ff33d2dea1c026482a5e900037c\"\u003e\u003ccode\u003efda4f74\u003c/code\u003e\u003c/a\u003e storage: filesystem/dotgit, Skip writing pack files that already exist on disk\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/2212dc7caeb2a389fe2129923811ef63f75a557a\"\u003e\u003ccode\u003e2212dc7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1941\"\u003e#1941\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/ebb2d7da7f5d5aebeaa0b5e13276d72d602c1ae3\"\u003e\u003ccode\u003eebb2d7d\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump docker/cli v29.4.0, moby/api v1.54.1, moby/client v0.4.0 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2254\"\u003egoogle/go-containerregistry#2254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate to Go 1.26.2 by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2255\"\u003egoogle/go-containerregistry#2255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump aws-actions/configure-aws-credentials from 6.0.0 to 6.1.0 in the actions group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2257\"\u003egoogle/go-containerregistry#2257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/tools from 0.43.0 to 0.44.0 in the go-deps group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2260\"\u003egoogle/go-containerregistry#2260\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.4...v0.21.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ego.mod: do not make a viral minimum go version by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2237\"\u003egoogle/go-containerregistry#2237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid pruning absolute links from extracted and flattened images by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2241\"\u003egoogle/go-containerregistry#2241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 5 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2245\"\u003egoogle/go-containerregistry#2245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: update to go1.25.8, and use separate .go-version file by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2246\"\u003egoogle/go-containerregistry#2246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump CI go version to 1.26.1 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2242\"\u003egoogle/go-containerregistry#2242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump codecov/codecov-action from 5.5.2 to 5.5.3 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2240\"\u003egoogle/go-containerregistry#2240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efork distribution client v3 auth-challenge as an internal package (squashed) by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2248\"\u003egoogle/go-containerregistry#2248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: valida...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/410","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/410","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/410/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-03-16T01:08:03.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"4079669356","node_id":"PR_kwDOF48Qv87Kx9it","number":397,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 49 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-03-23T01:05:35.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-16T01:08:03.000Z","updated_at":"2026-03-23T01:05:37.000Z","time_to_close":604652,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":49,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.37.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.2","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.17.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.2","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.5","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.15.0","new_version":"1.16.1","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.14.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.5","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.1","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.1","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.37.0` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.2` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.17.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.2` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.5` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.15.0` | `1.16.1` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.14.1` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.5` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.53.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.1` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.1` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.37.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHEXPIRE\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.37.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esuport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/c1b59bfe154a01657c4b79734237fe5eba81f11b\"\u003e\u003ccode\u003ec1b59bf\u003c/code\u003e\u003c/a\u003e feat: implement HEXPIRE command (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.2\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.2 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe second patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix migrated CRI image config when using legacy registry mirrors (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12987\"\u003e#12987\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUnpack images with per-layer labels for runtime-specific snapshotters (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12936\"\u003e#12936\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix CNI issue where DEL is never executed after a restart (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12926\"\u003e#12926\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eHarden error handling to strip potentially-sensitive registry parameters (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12804\"\u003e#12804\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix nil pointer dereference in container spec memory metrics when memory constraints are not fully configured (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12731\"\u003e#12731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUse the specified runtime handler when pulling images (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12721\"\u003e#12721\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReduce noisy CDI logs (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12717\"\u003e#12717\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix regression for pulling encrypted images (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12712\"\u003e#12712\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix unintended dropping of mount flags for read-only bind-mounts in user namespaces (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12944\"\u003e#12944\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix AppArmor bug disallowing unix domain sockets on newer kernels (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12897\"\u003e#12897\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003ectr development tool\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ectr image mount\u003c/code\u003e failing with \u0026quot;no such device\u0026quot; (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12831\"\u003e#12831\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMaksym Pavlenko\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003eMichael Zappa\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eFabiano Fidêncio\u003c/li\u003e\n\u003cli\u003eJérôme Poulin\u003c/li\u003e\n\u003cli\u003eLuke Hinds\u003c/li\u003e\n\u003cli\u003eAadhar Agarwal\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eAlex Chernyakhovsky\u003c/li\u003e\n\u003cli\u003eChris Adeniyi-Jones\u003c/li\u003e\n\u003cli\u003eKazuyoshi Kato\u003c/li\u003e\n\u003cli\u003eRodrigo Campos\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eYou Binhao\u003c/li\u003e\n\u003cli\u003eningmingxiao\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/301b2dac98f15c27117da5c8af12118a041a31d9\"\u003e\u003ccode\u003e301b2da\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12998\"\u003e#12998\u003c/a\u003e from samuelkarp/prepare-release-2.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/7e6ecf43421f9cfa64cd7043f86ae224dc7dc0a4\"\u003e\u003ccode\u003e7e6ecf4\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/5dc7bb27ef38fb97b7bafffb7ea3f0343d310cf8\"\u003e\u003ccode\u003e5dc7bb2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12987\"\u003e#12987\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12617-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/a20dead7cc644291433b2da4b1efa2f70c8a144f\"\u003e\u003ccode\u003ea20dead\u003c/code\u003e\u003c/a\u003e set default config_path in plugin init\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/8b085dd5db15c94e6415aa146878a16d73bc23b2\"\u003e\u003ccode\u003e8b085dd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12936\"\u003e#12936\u003c/a\u003e from fidencio/release-2.2/backport-12835\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/7022bea840ef1d62dc1ea25966c8fc968b5f922d\"\u003e\u003ccode\u003e7022bea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12957\"\u003e#12957\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12950-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/68855cb0be5d372fd53c450e91cc3224157abb4b\"\u003e\u003ccode\u003e68855cb\u003c/code\u003e\u003c/a\u003e ci: modprobe xt_comment on almalinux\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/46fabcc774d48da32436f545a814f9637d8a6879\"\u003e\u003ccode\u003e46fabcc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12944\"\u003e#12944\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12941-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef7a8beb375c8322b9a09666f50150717b9ae335\"\u003e\u003ccode\u003eef7a8be\u003c/code\u003e\u003c/a\u003e core/mount: add test for getUnprivilegedMountFlags\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/07b2cc07e4f3d553c5ca801c9f0800b55ba7eac2\"\u003e\u003ccode\u003e07b2cc0\u003c/code\u003e\u003c/a\u003e core/mount: fix getUnprivilegedMountFlags iterating over indices instead of v...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5d20a62c72b0bb179cfe35f6c9a9672b9df36f51\"\u003e\u003ccode\u003e5d20a62\u003c/code\u003e\u003c/a\u003e storage: filesystem, Fix permissions for loose and packed objs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8ed442c6f3d4a0a31094661d112df2f0adcbb8e7\"\u003e\u003ccode\u003e8ed442c\u003c/code\u003e\u003c/a\u003e backport, git: Improve Status() speed with new index.ModTime check (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1862\"\u003e#1862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/c7b5960533dc1072ce182cf60f71b75764770008\"\u003e\u003ccode\u003ec7b5960\u003c/code\u003e\u003c/a\u003e build: Align test workflow with main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8e71edfdc167ef23a9ca342edefee669204a2b7a\"\u003e\u003ccode\u003e8e71edf\u003c/code\u003e\u003c/a\u003e git: Add strict checks for supported extensions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/438a37f65bc6bcc48ebbc641b07d94baebd9eaf3\"\u003e\u003ccode\u003e438a37f\u003c/code\u003e\u003c/a\u003e git: worktree, optimize infiles function for very large repos (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/67c70069de887ba2aefa910255f5ce39d4f12be3\"\u003e\u003ccode\u003e67c7006\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1839\"\u003e#1839\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4ca3f026e3ef8dcfc4ceb390f46672f280028b52\"\u003e\u003ccode\u003e4ca3f02\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBetter handle redirects to https in ping by \u003ca href=\"https://github.com/jonjohnsonjr\"\u003e\u003ccode\u003e@​jonjohnsonjr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2225\"\u003egoogle/go-containerregistry#2225\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes a regression in \u003ccode\u003ecrane\u003c/code\u003e introduced in the previous release.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WithFileBufferedOpener for file-backed daemon image buffering by \u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: fix case in auth response json by \u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/9e0ccb0a7240fe7cc820f0fc78e2e2b1ef8b7e71\"\u003e\u003ccode\u003e9e0ccb0\u003c/code\u003e\u003c/a\u003e Better handle redirects to https in ping (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2225\"\u003e#2225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/85f2bf5f7303fc95161f334e4fc2e66c36e12b1e\"\u003e\u003ccode\u003e85f2bf5\u003c/code\u003e\u003c/a\u003e crane: fix case in auth response json (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2218\"\u003e#2218\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e971d630dc417fd583bbd65f45e73abb1393cadf\"\u003e\u003ccode\u003ee971d63\u003c/code\u003e\u003c/a\u003e Add WithFileBufferedOpener for file-backed daemon image buffering (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2214\"\u003e#2214\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump the go gr...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/397","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/397","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/397/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-03-09T01:07:51.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"4042742022","node_id":"PR_kwDOF48Qv87I7Xhj","number":396,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 48 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-03-16T01:05:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-09T01:07:51.000Z","updated_at":"2026-03-16T01:05:51.000Z","time_to_close":604678,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":48,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.37.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.17.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.2","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/magefile/mage","old_version":"1.15.0","new_version":"1.16.0","repository_url":"https://github.com/magefile/mage"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.14.0","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.5","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 26 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.37.0` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.17.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.2` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.4` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/magefile/mage](https://github.com/magefile/mage) | `1.15.0` | `1.16.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.14.0` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.5` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.53.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.37.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHEXPIRE\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.37.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esuport HEXPIRE (thanks \u003ca href=\"https://github.com/mojixcoder\"\u003e\u003ccode\u003e@​mojixcoder\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/c1b59bfe154a01657c4b79734237fe5eba81f11b\"\u003e\u003ccode\u003ec1b59bf\u003c/code\u003e\u003c/a\u003e feat: implement HEXPIRE command (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/424\"\u003e#424\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5d20a62c72b0bb179cfe35f6c9a9672b9df36f51\"\u003e\u003ccode\u003e5d20a62\u003c/code\u003e\u003c/a\u003e storage: filesystem, Fix permissions for loose and packed objs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8ed442c6f3d4a0a31094661d112df2f0adcbb8e7\"\u003e\u003ccode\u003e8ed442c\u003c/code\u003e\u003c/a\u003e backport, git: Improve Status() speed with new index.ModTime check (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1862\"\u003e#1862\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/c7b5960533dc1072ce182cf60f71b75764770008\"\u003e\u003ccode\u003ec7b5960\u003c/code\u003e\u003c/a\u003e build: Align test workflow with main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/8e71edfdc167ef23a9ca342edefee669204a2b7a\"\u003e\u003ccode\u003e8e71edf\u003c/code\u003e\u003c/a\u003e git: Add strict checks for supported extensions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/438a37f65bc6bcc48ebbc641b07d94baebd9eaf3\"\u003e\u003ccode\u003e438a37f\u003c/code\u003e\u003c/a\u003e git: worktree, optimize infiles function for very large repos (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1853\"\u003e#1853\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/67c70069de887ba2aefa910255f5ce39d4f12be3\"\u003e\u003ccode\u003e67c7006\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1839\"\u003e#1839\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4ca3f026e3ef8dcfc4ceb390f46672f280028b52\"\u003e\u003ccode\u003e4ca3f02\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBetter handle redirects to https in ping by \u003ca href=\"https://github.com/jonjohnsonjr\"\u003e\u003ccode\u003e@​jonjohnsonjr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2225\"\u003egoogle/go-containerregistry#2225\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.1...v0.21.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes a regression in \u003ccode\u003ecrane\u003c/code\u003e introduced in the previous release.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WithFileBufferedOpener for file-backed daemon image buffering by \u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: fix case in auth response json by \u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/twdamhore\"\u003e\u003ccode\u003e@​twdamhore\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2214\"\u003egoogle/go-containerregistry#2214\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aelindeman\"\u003e\u003ccode\u003e@​aelindeman\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2218\"\u003egoogle/go-containerregistry#2218\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.21.0...v0.21.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/9e0ccb0a7240fe7cc820f0fc78e2e2b1ef8b7e71\"\u003e\u003ccode\u003e9e0ccb0\u003c/code\u003e\u003c/a\u003e Better handle redirects to https in ping (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2225\"\u003e#2225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/85f2bf5f7303fc95161f334e4fc2e66c36e12b1e\"\u003e\u003ccode\u003e85f2bf5\u003c/code\u003e\u003c/a\u003e crane: fix case in auth response json (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2218\"\u003e#2218\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e971d630dc417fd583bbd65f45e73abb1393cadf\"\u003e\u003ccode\u003ee971d63\u003c/code\u003e\u003c/a\u003e Add WithFileBufferedOpener for file-backed daemon image buffering (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2214\"\u003e#2214\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://g...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/396","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/396","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/396/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-02-23T01:47:18.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"3975927028","node_id":"PR_kwDOHba8m87FiEga","number":107,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 47 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-09T01:45:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-23T01:47:18.000Z","updated_at":"2026-03-09T01:45:21.000Z","time_to_close":1209483,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":47,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.5","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.0","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.13.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.4","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 25 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.5` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.0` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.4` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.13.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.4` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/42bdf1f9044e2145acaed6ac4dbf1b8d257da5bd\"\u003e\u003ccode\u003e42bdf1f\u003c/code\u003e\u003c/a\u003e storage: filesystem, Verify idx matches pack file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4146a5653f186f90057afecb7e0addd9e623cf19\"\u003e\u003ccode\u003e4146a56\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Verify idxfile's checksum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/63d78ec080cb176f8cd7bf46ce14f4ba01c1d2e5\"\u003e\u003ccode\u003e63d78ec\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, Add new ErrMalformedPackFile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/25f1624754395a0c67839e71b34956c853f2eb3d\"\u003e\u003ccode\u003e25f1624\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1800\"\u003e#1800\u003c/a\u003e from Ch00k/no-delete-untracked-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/600fb139079e3c6886fcfeb20021c707e99e29b4\"\u003e\u003ccode\u003e600fb13\u003c/code\u003e\u003c/a\u003e git: worktree, Don't delete local untracked files when resetting worktree\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/390a56941510fdc19276aa298228d61889aad97a\"\u003e\u003ccode\u003e390a569\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1746\"\u003e#1746\u003c/a\u003e from pjbgf/bump-go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/61c8b859ce3366257354695e99d78fc3739b60fb\"\u003e\u003ccode\u003e61c8b85\u003c/code\u003e\u003c/a\u003e build: Bump Go test versions to 1.23-1.25 (v5)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e5a05ecd4fb91dc5323ec77667346ae94d84c043\"\u003e\u003ccode\u003ee5a05ec\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1744\"\u003e#1744\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-c...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1495930b098b5e72394ae8ccc2d9396b8aa7e013\"\u003e\u003ccode\u003e1495930\u003c/code\u003e\u003c/a\u003e plumbing: Remove use of non-constant format strings\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b6eadd8bb191e9564d5dadecc10291d35ac06932\"\u003e\u003ccode\u003eb6eadd8\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2207\"\u003e#2207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/93aa2732266afabbde66bd80d55563e339056432\"\u003e\u003ccode\u003e93aa273\u003c/code\u003e\u003c/a\u003e Improve performance of v1.NewHash (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2194\"\u003e#2194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/795787c558e1bee15319df39784c557c0d224681\"\u003e\u003ccode\u003e795787c\u003c/code\u003e\u003c/a\u003e mutate: don't skip dir replacements via whiteout in export (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2191\"\u003e#2191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow downloading S3 files from MinIO over http by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/570\"\u003ehashicorp/go-getter#570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/574\"\u003ehashicorp/go-getter#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group across 1 directory with 12 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/575\"\u003ehashicorp/go-getter#575\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4...\n\n_Description has been truncated_","html_url":"https://github.com/sn0rlaxlife/trivy/pull/107","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sn0rlaxlife%2Ftrivy/issues/107","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/107/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-02-23T01:07:47.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"3975854682","node_id":"PR_kwDOF48Qv87Fh144","number":391,"state":"open","title":"chore(deps): bump the common group across 1 directory with 47 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-23T01:07:47.000Z","updated_at":"2026-03-09T02:12:41.100Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":47,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.5","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.21.0","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/hc-install","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/hashicorp/hc-install"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.25.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.13.2","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/package-url/packageurl-go","old_version":"0.1.3","new_version":"0.1.4","repository_url":"https://github.com/package-url/packageurl-go"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.46.1"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 25 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.5` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.21.0` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.4` |\n| [github.com/hashicorp/hc-install](https://github.com/hashicorp/hc-install) | `0.9.2` | `0.9.3` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.25.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.13.2` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/package-url/packageurl-go](https://github.com/package-url/packageurl-go) | `0.1.3` | `0.1.4` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.46.1` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\r\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/48a1ae05eec4fff4dd0343744a00bf8d6a7a0b4b\"\u003e\u003ccode\u003e48a1ae0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1836\"\u003e#1836\u003c/a\u003e from go-git/check-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/42bdf1f9044e2145acaed6ac4dbf1b8d257da5bd\"\u003e\u003ccode\u003e42bdf1f\u003c/code\u003e\u003c/a\u003e storage: filesystem, Verify idx matches pack file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/4146a5653f186f90057afecb7e0addd9e623cf19\"\u003e\u003ccode\u003e4146a56\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Verify idxfile's checksum\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/63d78ec080cb176f8cd7bf46ce14f4ba01c1d2e5\"\u003e\u003ccode\u003e63d78ec\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, Add new ErrMalformedPackFile\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/25f1624754395a0c67839e71b34956c853f2eb3d\"\u003e\u003ccode\u003e25f1624\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1800\"\u003e#1800\u003c/a\u003e from Ch00k/no-delete-untracked-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/600fb139079e3c6886fcfeb20021c707e99e29b4\"\u003e\u003ccode\u003e600fb13\u003c/code\u003e\u003c/a\u003e git: worktree, Don't delete local untracked files when resetting worktree\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/390a56941510fdc19276aa298228d61889aad97a\"\u003e\u003ccode\u003e390a569\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1746\"\u003e#1746\u003c/a\u003e from pjbgf/bump-go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/61c8b859ce3366257354695e99d78fc3739b60fb\"\u003e\u003ccode\u003e61c8b85\u003c/code\u003e\u003c/a\u003e build: Bump Go test versions to 1.23-1.25 (v5)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e5a05ecd4fb91dc5323ec77667346ae94d84c043\"\u003e\u003ccode\u003ee5a05ec\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1744\"\u003e#1744\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-c...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1495930b098b5e72394ae8ccc2d9396b8aa7e013\"\u003e\u003ccode\u003e1495930\u003c/code\u003e\u003c/a\u003e plumbing: Remove use of non-constant format strings\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.21.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the minimum Go version to \u003ccode\u003e1.25.6\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(mutate): don't skip dir replacements via whiteout in export by \u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove performance of v1.NewHash by \u003ca href=\"https://github.com/bmoylan\"\u003e\u003ccode\u003e@​bmoylan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2194\"\u003egoogle/go-containerregistry#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the actions group across 1 directory with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2207\"\u003egoogle/go-containerregistry#2207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the root-deps group across 1 directory with 7 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2195\"\u003egoogle/go-containerregistry#2195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix error messages in crane_test.go by \u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump go version across packages to 1.25.6 by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2211\"\u003egoogle/go-containerregistry#2211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJoin go.mod dependency updates by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2212\"\u003egoogle/go-containerregistry#2212\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the go-deps group across 3 directories with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2213\"\u003egoogle/go-containerregistry#2213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDisable taint gosec lints by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2215\"\u003egoogle/go-containerregistry#2215\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate go version used in goreleaser by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2216\"\u003egoogle/go-containerregistry#2216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/r4f4\"\u003e\u003ccode\u003e@​r4f4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2191\"\u003egoogle/go-containerregistry#2191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jammie-jelly\"\u003e\u003ccode\u003e@​jammie-jelly\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2189\"\u003egoogle/go-containerregistry#2189\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.7...v0.21.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/8e2d6a68179f6f0feaf249b922bdc4d892ab273b\"\u003e\u003ccode\u003e8e2d6a6\u003c/code\u003e\u003c/a\u003e Update go version used in goreleaser (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b58334f7618a2cd1fbf7409c750aef475d20ad94\"\u003e\u003ccode\u003eb58334f\u003c/code\u003e\u003c/a\u003e Disable taint gosec lints (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/88b39ed90627ce7518c13c6b83c450e34da77b42\"\u003e\u003ccode\u003e88b39ed\u003c/code\u003e\u003c/a\u003e Bump the go-deps group across 3 directories with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2213\"\u003e#2213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/102ac75dde6d0ffb017d12f5347c5dbbf15de782\"\u003e\u003ccode\u003e102ac75\u003c/code\u003e\u003c/a\u003e join go.mod dependency updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2212\"\u003e#2212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d5817d559e57f5dcc3131ec9d7015b1f265a711c\"\u003e\u003ccode\u003ed5817d5\u003c/code\u003e\u003c/a\u003e Bump go version across packages to 1.25.6 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2211\"\u003e#2211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/23f0632fa33e14155daecee2c105953c68bb2166\"\u003e\u003ccode\u003e23f0632\u003c/code\u003e\u003c/a\u003e Fix error messages in crane_test.go (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2189\"\u003e#2189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/438abde5e7acdcc5ce768f2f2cd5c20f01163679\"\u003e\u003ccode\u003e438abde\u003c/code\u003e\u003c/a\u003e Bump the root-deps group across 1 directory with 7 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2195\"\u003e#2195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/b6eadd8bb191e9564d5dadecc10291d35ac06932\"\u003e\u003ccode\u003eb6eadd8\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2207\"\u003e#2207\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/93aa2732266afabbde66bd80d55563e339056432\"\u003e\u003ccode\u003e93aa273\u003c/code\u003e\u003c/a\u003e Improve performance of v1.NewHash (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2194\"\u003e#2194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/795787c558e1bee15319df39784c557c0d224681\"\u003e\u003ccode\u003e795787c\u003c/code\u003e\u003c/a\u003e mutate: don't skip dir replacements via whiteout in export (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2191\"\u003e#2191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow downloading S3 files from MinIO over http by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/570\"\u003ehashicorp/go-getter#570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/574\"\u003ehashicorp/go-getter#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group across 1 directory with 12 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/575\"\u003ehashicorp/go-getter#575\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/391","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/391","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/391/packages"}},{"old_version":"0.9.3","new_version":"0.10.0","update_type":"minor","path":"/webhook","pr_created_at":"2026-02-12T16:04:25.000Z","version_change":"0.9.3 → 0.10.0","issue":{"uuid":"3932642318","node_id":"PR_kwDOG3hzTs7DUgoZ","number":1080,"state":"open","title":"chore(deps): Bump github.com/CycloneDX/cyclonedx-go from 0.9.3 to 0.10.0 in /webhook","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-12T16:04:25.000Z","updated_at":"2026-02-24T16:13:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":"/webhook","ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.3 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.3\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/vmware-tanzu/cartographer-conventions/pull/1080","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/vmware-tanzu%2Fcartographer-conventions/issues/1080","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1080/packages"}},{"old_version":"0.9.3","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-02-09T11:59:57.000Z","version_change":"0.9.3 → 0.10.0","issue":{"uuid":"3916027333","node_id":"PR_kwDOKKY8LM7CdtPB","number":235,"state":"closed","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.3 to 0.10.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-02-10T14:23:31.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-09T11:59:57.000Z","updated_at":"2026-02-10T14:23:33.000Z","time_to_close":95014,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.3 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.3\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/codacy/codacy-trivy/pull/235","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/codacy%2Fcodacy-trivy/issues/235","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/235/packages"}},{"old_version":"0.9.3","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-02-05T10:48:47.000Z","version_change":"0.9.3 → 0.10.0","issue":{"uuid":"3900922554","node_id":"PR_kwDOGVphkM7BsX8r","number":545,"state":"open","title":"chore(deps): bump the common group across 1 directory with 28 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-05T10:48:47.000Z","updated_at":"2026-02-08T03:26:03.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":28,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.20.0","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/GoogleCloudPlatform/docker-credential-gcr/v2","old_version":"2.1.30","new_version":"2.1.31","repository_url":"https://github.com/GoogleCloudPlatform/docker-credential-gcr"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.1","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.2.0","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.4.0","new_version":"2.5.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.5.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.3.0","new_version":"5.3.1","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.8.3","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.11.0","new_version":"1.13.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/tetratelabs/wazero","old_version":"1.10.1","new_version":"1.11.0","repository_url":"https://github.com/tetratelabs/wazero"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"golang.org/x/mod","old_version":"0.31.0","new_version":"0.32.0","repository_url":"https://github.com/golang/mod"},{"name":"golang.org/x/tools","old_version":"0.40.0","new_version":"0.41.0","repository_url":"https://github.com/golang/tools"},{"name":"helm.sh/helm/v3","old_version":"3.19.2","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.40.1","new_version":"1.44.3"},{"name":"github.com/nikolalohinski/gonja/v2","old_version":"2.4.2","new_version":"2.5.2","repository_url":"https://github.com/nikolalohinski/gonja"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 21 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.20.0` | `1.21.0` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.3` | `0.10.0` |\n| [github.com/GoogleCloudPlatform/docker-credential-gcr/v2](https://github.com/GoogleCloudPlatform/docker-credential-gcr) | `2.1.30` | `2.1.31` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.1` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.2.0` | `2.2.1` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.4.0` | `2.5.0` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.5.0` | `3.5.1` |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.3.0` | `5.3.1` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.8.3` | `1.8.4` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.11.0` | `1.13.1` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/tetratelabs/wazero](https://github.com/tetratelabs/wazero) | `1.10.1` | `1.11.0` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [golang.org/x/mod](https://github.com/golang/mod) | `0.31.0` | `0.32.0` |\n| [golang.org/x/tools](https://github.com/golang/tools) | `0.40.0` | `0.41.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.19.2` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.40.1` | `1.44.3` |\n| [github.com/nikolalohinski/gonja/v2](https://github.com/nikolalohinski/gonja) | `2.4.2` | `2.5.2` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.20.0 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.20.0...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.3 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/GoogleCloudPlatform/docker-credential-gcr/v2` from 2.1.30 to 2.1.31\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/releases\"\u003egithub.com/GoogleCloudPlatform/docker-credential-gcr/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.1.31\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate version string tests to match version format by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/pull/185\"\u003eGoogleCloudPlatform/docker-credential-gcr#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github.com/sirupsen/logrus from 1.8.1 to 1.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/pull/184\"\u003eGoogleCloudPlatform/docker-credential-gcr#184\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/compare/v2.1.30...v2.1.31\"\u003ehttps://github.com/GoogleCloudPlatform/docker-credential-gcr/compare/v2.1.30...v2.1.31\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/commit/96df16c5a7c8545ae9df9c3d9554964dba7b3f8c\"\u003e\u003ccode\u003e96df16c\u003c/code\u003e\u003c/a\u003e Bump github.com/sirupsen/logrus from 1.8.1 to 1.8.3 (\u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/issues/184\"\u003e#184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/commit/e6984d08fcf06af852a75fe06b95cddb488d4417\"\u003e\u003ccode\u003ee6984d0\u003c/code\u003e\u003c/a\u003e Update version string tests to match version format (\u003ca href=\"https://redirect.github.com/GoogleCloudPlatform/docker-credential-gcr/issues/185\"\u003e#185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/GoogleCloudPlatform/docker-credential-gcr/compare/v2.1.30...v2.1.31\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.1 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.2.0 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.2.0...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.4.0 to 2.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrint qualified type name when ErrorUnused=true causes errors for unused keys in embedded fields by \u003ca href=\"https://github.com/jmacd\"\u003e\u003ccode\u003e@​jmacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/113\"\u003ego-viper/mapstructure#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/126\"\u003ego-viper/mapstructure#126\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.29.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/131\"\u003ego-viper/mapstructure#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/129\"\u003ego-viper/mapstructure#129\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: support for automatically initializing squashed pointer structs by \u003ca href=\"https://github.com/tuunit\"\u003e\u003ccode\u003e@​tuunit\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/71\"\u003ego-viper/mapstructure#71\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/134\"\u003ego-viper/mapstructure#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.2 to 2.4.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/142\"\u003ego-viper/mapstructure#142\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix slice deep map (owned) by \u003ca href=\"https://github.com/jphastings\"\u003e\u003ccode\u003e@​jphastings\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/144\"\u003ego-viper/mapstructure#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix lint violations by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/157\"\u003ego-viper/mapstructure#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: switch to devenv by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/158\"\u003ego-viper/mapstructure#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/151\"\u003ego-viper/mapstructure#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.10 to 4.31.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/153\"\u003ego-viper/mapstructure#153\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/154\"\u003ego-viper/mapstructure#154\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5.0.0 to 6.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/160\"\u003ego-viper/mapstructure#160\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 6.0.0 to 6.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/159\"\u003ego-viper/mapstructure#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.7 to 4.31.8 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/162\"\u003ego-viper/mapstructure#162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/161\"\u003ego-viper/mapstructure#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.8 to 4.31.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/163\"\u003ego-viper/mapstructure#163\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeature: Add map field name to convert structs dynamically instead of individually with a tag. by \u003ca href=\"https://github.com/thespags\"\u003e\u003ccode\u003e@​thespags\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/149\"\u003ego-viper/mapstructure#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(decoder): support multiple tag names in order by \u003ca href=\"https://github.com/DarkiT\"\u003e\u003ccode\u003e@​DarkiT\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/59\"\u003ego-viper/mapstructure#59\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: optional root object name by \u003ca href=\"https://github.com/andreev-fn\"\u003e\u003ccode\u003e@​andreev-fn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/137\"\u003ego-viper/mapstructure#137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unmarshaler interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/166\"\u003ego-viper/mapstructure#166\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jmacd\"\u003e\u003ccode\u003e@​jmacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/113\"\u003ego-viper/mapstructure#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tuunit\"\u003e\u003ccode\u003e@​tuunit\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/71\"\u003ego-viper/mapstructure#71\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jphastings\"\u003e\u003ccode\u003e@​jphastings\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/144\"\u003ego-viper/mapstructure#144\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thespags\"\u003e\u003ccode\u003e@​thespags\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/149\"\u003ego-viper/mapstructure#149\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DarkiT\"\u003e\u003ccode\u003e@​DarkiT\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/59\"\u003ego-viper/mapstructure#59\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andreev-fn\"\u003e\u003ccode\u003e@​andreev-fn\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/137\"\u003ego-viper/mapstructure#137\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.4.0...v2.5.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.4.0...v2.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9aa3f77c68e2a56222ea436c1bfa631f1b1072d5\"\u003e\u003ccode\u003e9aa3f77\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/166\"\u003e#166\u003c/a\u003e from go-viper/unmarshal2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ae32a619963bc512eedecf39d6114c53b6141305\"\u003e\u003ccode\u003eae32a61\u003c/code\u003e\u003c/a\u003e doc: add more documentation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/320c8c9462b5fce88e6a6b2ca84ac6572f89e985\"\u003e\u003ccode\u003e320c8c9\u003c/code\u003e\u003c/a\u003e test: cover unmarshaler to map\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/5b228297c7907a2ccf111ba13384ef4e46ee21b3\"\u003e\u003ccode\u003e5b22829\u003c/code\u003e\u003c/a\u003e feat: add unmarshaler interface\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/fd74c75bae0e10fe9e986fc2256a29b0ecef1b86\"\u003e\u003ccode\u003efd74c75\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/137\"\u003e#137\u003c/a\u003e from andreev-fn/opt-root-name\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/dee46614248bbb8265a24fa3975216e4387cac36\"\u003e\u003ccode\u003edee4661\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/59\"\u003e#59\u003c/a\u003e from DarkiT/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/5605df44c49e65ca3f1205d23b50933d3e60f156\"\u003e\u003ccode\u003e5605df4\u003c/code\u003e\u003c/a\u003e chore: cover more test cases, fix edge cases, add docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/6166631c5a2cf200bdefb2e05352481ec2f36a35\"\u003e\u003ccode\u003e6166631\u003c/code\u003e\u003c/a\u003e fix(mapstructure): add multi-tag support and regression tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/6471aa6cf510a0cb2110e3e89ea769b76eadaa08\"\u003e\u003ccode\u003e6471aa6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/149\"\u003e#149\u003c/a\u003e from thespags/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/dbffaaa4db23836718adca6f080a536490cfbeb6\"\u003e\u003ccode\u003edbffaaa\u003c/code\u003e\u003c/a\u003e chore: add more tests and clarification to the documentation\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.4.0...v2.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.5.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.3.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔐 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd spellcheck Github action to catch common spelling mistakes by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithNotBeforeRequired\u003c/code\u003e parser option and add test coverage by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/456\"\u003egolang-jwt/jwt#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate godoc example func to properly refer to \u003ccode\u003eNewWithClaims()\u003c/code\u003e by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/459\"\u003egolang-jwt/jwt#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate github workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/462\"\u003egolang-jwt/jwt#462\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional test for CustomClaims that validates unmarshalling behaviour by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/457\"\u003egolang-jwt/jwt#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix early file close in jwt cli by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/472\"\u003egolang-jwt/jwt#472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TPM signature reference by \u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove misleading ParserOptions documentation in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/484\"\u003egolang-jwt/jwt#484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSave signature to Token struct after successful signing by \u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e by \u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e👒 Dependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump crate-ci/typos from 1.34.0 to 1.35.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/461\"\u003egolang-jwt/jwt#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.35.4 to 1.36.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/470\"\u003egolang-jwt/jwt#470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/478\"\u003egolang-jwt/jwt#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.36.2 to 1.39.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/480\"\u003egolang-jwt/jwt#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/481\"\u003egolang-jwt/jwt#481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/469\"\u003egolang-jwt/jwt#469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/488\"\u003egolang-jwt/jwt#488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/487\"\u003egolang-jwt/jwt#487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.40.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/490\"\u003egolang-jwt/jwt#490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.41.0 to 1.42.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/492\"\u003egolang-jwt/jwt#492\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db\"\u003e\u003ccode\u003e7ceae61\u003c/code\u003e\u003c/a\u003e Add release.yml for changelog configuration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5\"\u003e\u003ccode\u003edce8e4d\u003c/code\u003e\u003c/a\u003e Set token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/414\"\u003e#414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e\"\u003e\u003ccode\u003e8889e20\u003c/code\u003e\u003c/a\u003e Save signature to Token struct after successful signing (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1\"\u003e\u003ccode\u003ed237f82\u003c/code\u003e\u003c/a\u003e ci: update github-actions schedule interval to monthly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116\"\u003e\u003ccode\u003ed8dce95\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.41.0 to 1.42.1 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290\"\u003e\u003ccode\u003ee931803\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.40.0 to 1.41.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/490\"\u003e#490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d\"\u003e\u003ccode\u003ee6a0afa\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/487\"\u003e#487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e\"\u003e\u003ccode\u003e9f85c9e\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.39.0 to 1.40.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/488\"\u003e#488\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd\"\u003e\u003ccode\u003e60a8669\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/469\"\u003e#469\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434\"\u003e\u003ccode\u003e76f5828\u003c/code\u003e\u003c/a\u003e Remove misleading ParserOptions documentation (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/484\"\u003e#484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.8.3 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: allow downloading S3 files from MinIO over http by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/570\"\u003ehashicorp/go-getter#570\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 6 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/574\"\u003ehashicorp/go-getter#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group across 1 directory with 12 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/575\"\u003ehashicorp/go-getter#575\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/576ab86838f39cc6ece14084683fc00119494028\"\u003e\u003ccode\u003e576ab86\u003c/code\u003e\u003c/a\u003e [chore] : Bump the go group across 1 directory with 12 updates (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/575\"\u003e#575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/efec2db5b357f8f723c580c0fa92354f0e0c25f7\"\u003e\u003ccode\u003eefec2db\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/574\"\u003e#574\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-36c6...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/7ccb947a22ae994092b8f3494763dbe21b08b634\"\u003e\u003ccode\u003e7ccb947\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group across 1 directory with 6 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/228ad65a8b515099a68e3f97fb287ec0e38d5650\"\u003e\u003ccode\u003e228ad65\u003c/code\u003e\u003c/a\u003e fix: allow downloading S3 files from MinIO over http (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/570\"\u003e#570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/5cb8b18db2d17fdc2bf0489d53da84462617942c\"\u003e\u003ccode\u003e5cb8b18\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/567\"\u003e#567\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-92ca...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/f358fa6b0466d166078e556d5156985bfe742df7\"\u003e\u003ccode\u003ef358fa6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/571\"\u003e#571\u003c/a\u003e from hashicorp/compliance/update-headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/376d40ccb4e5d70cff2c997761ab5da9dfe345b7\"\u003e\u003ccode\u003e376d40c\u003c/code\u003e\u003c/a\u003e [COMPLIANCE] Update Copyright and License Headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9d34fba942c3d0641162edaac1c98874e55ddadd\"\u003e\u003ccode\u003e9d34fba\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group across 1 directory with 3 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/fd63a333b7645fd37f9e4bfde195e209be4ba23e\"\u003e\u003ccode\u003efd63a33\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/566\"\u003e#566\u003c/a\u003e from hashicorp/compliance/update-headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/ac8218db7281acbd3c610e172e162a48bb39733d\"\u003e\u003ccode\u003eac8218d\u003c/code\u003e\u003c/a\u003e [COMPLIANCE] Update Copyright and License Headers\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.3...v1.8.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.9.0 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/232\"\u003ein-toto/in-toto-golang#232\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate maintainers and governance by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/233\"\u003ein-toto/in-toto-golang#233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/234\"\u003ein-toto/in-toto-golang#234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.3 to 2.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/235\"\u003ein-toto/in-toto-golang#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/236\"\u003ein-toto/in-toto-golang#236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix expired signature in test by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/241\"\u003ein-toto/in-toto-golang#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.8.0 to 0.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/240\"\u003ein-toto/in-toto-golang#240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.5 to 2.1.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/239\"\u003ein-toto/in-toto-golang#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/242\"\u003ein-toto/in-toto-golang#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/243\"\u003ein-toto/in-toto-golang#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions workflows by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/246\"\u003ein-toto/in-toto-golang#246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.9.0 to 0.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/245\"\u003ein-toto/in-toto-golang#245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove linters that are no longer supported and add to make file by \u003ca href=\"https://github.com/pxp928\"\u003e\u003ccode\u003e@​pxp928\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/249\"\u003ein-toto/in-toto-golang#249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd match products feature by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/237\"\u003ein-toto/in-toto-golang#237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unfinished link on record stop by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/248\"\u003ein-toto/in-toto-golang#248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/250\"\u003ein-toto/in-toto-golang#250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.6.0 to 0.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/251\"\u003ein-toto/in-toto-golang#251\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/255\"\u003ein-toto/in-toto-golang#255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd tests for coverage in envelope.go by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/256\"\u003ein-toto/in-toto-golang#256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/257\"\u003ein-toto/in-toto-golang#257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/258\"\u003ein-toto/in-toto-golang#258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/259\"\u003ein-toto/in-toto-golang#259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes filepath pattern matching in windows by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/254\"\u003ein-toto/in-toto-golang#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.5.3 to 3.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/261\"\u003ein-toto/in-toto-golang#261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.6.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/262\"\u003ein-toto/in-toto-golang#262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.11.0 to 0.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/263\"\u003ein-toto/in-toto-golang#263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/264\"\u003ein-toto/in-toto-golang#264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.0 to 1.58.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/266\"\u003ein-toto/in-toto-golang#266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate Provenance v1 struct in favor of /attestation protobufs by \u003ca href=\"https://github.com/marcelamelara\"\u003e\u003ccode\u003e@​marcelamelara\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/267\"\u003ein-toto/in-toto-golang#267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.1 to 1.58.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/269\"\u003ein-toto/in-toto-golang#269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/270\"\u003ein-toto/in-toto-golang#270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop use of \u003ccode\u003eany\u003c/code\u003e for hash objects by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/238\"\u003ein-toto/in-toto-golang#238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.12.0 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/271\"\u003ein-toto/in-toto-golang#271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/273\"\u003ein-toto/in-toto-golang#273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.2 to 1.58.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/272\"\u003ein-toto/in-toto-golang#272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/net from 0.12.0 to 0.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/274\"\u003ein-toto/in-toto-golang#274\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/275\"\u003ein-toto/in-toto-golang#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.1.0 to 4.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/276\"\u003ein-toto/in-toto-golang#276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTrigger workflow on pushes only to master branch by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/280\"\u003ein-toto/in-toto-golang#280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.13.0 to 0.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/278\"\u003ein-toto/in-toto-golang#278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spf13/cobra from 1.7.0 to 1.8.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/277\"\u003ein-toto/in-toto-golang#277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd openssf scorecard by \u003ca href=\"https://github.com/viveksahu26\"\u003e\u003ccode\u003e@​viveksahu26\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/281\"\u003ein-toto/in-toto-golang#281\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/282\"\u003ein-toto/in-toto-golang#282\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix coveralls, use action by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto...\n\n_Description has been truncated_","html_url":"https://github.com/aiflash/trivy/pull/545","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aiflash%2Ftrivy/issues/545","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/545/packages"}},{"old_version":"0.9.3","new_version":"0.10.0","update_type":"minor","path":"the others group across 1 directory","pr_created_at":"2026-02-04T00:56:25.000Z","version_change":"0.9.3 → 0.10.0","issue":{"uuid":"3893952765","node_id":"PR_kwDOF7tDWs7BVUPc","number":243,"state":"closed","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.3 to 0.10.0 in the others group across 1 directory","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-04T06:55:39.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-04T00:56:25.000Z","updated_at":"2026-02-04T06:55:41.000Z","time_to_close":21554,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.3","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":"the others group across 1 directory","ecosystem":"go"},"body":"Bumps the others group with 1 update in the / directory: [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go).\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.3 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.3...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.3\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/BA7JCM/vuls/pull/243","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BA7JCM%2Fvuls/issues/243","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/243/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-02-02T16:14:34.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"3886792844","node_id":"PR_kwDOFs4BQs7A9YbA","number":352,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 45 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-02-16T15:23:42.000Z","author_association":null,"state_reason":null,"created_at":"2026-02-02T16:14:34.000Z","updated_at":"2026-02-16T15:23:44.000Z","time_to_close":1206548,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":45,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.2","new_version":"1.21.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.11.0","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/alicebob/miniredis/v2","old_version":"2.35.0","new_version":"2.36.1","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.1","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.4","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.4","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.3.0","new_version":"5.3.1","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.20.7","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.9","new_version":"1.8.4","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.24.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.10.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/open-policy-agent/opa","old_version":"1.7.1","new_version":"1.13.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/sigstore/rekor","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.7","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.5","new_version":"3.20.0","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.2","new_version":"1.44.3"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 24 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.2` | `1.21.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.11.0` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.10.0` |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.35.0` | `2.36.1` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.1` | `4.10.0` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.4` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.4` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.3.0` | `5.3.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.20.7` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.9` | `1.8.4` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.24.0` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.10.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.7.1` | `1.13.1` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.4.0` | `1.5.0` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.7` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.5` | `3.20.0` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.2` | `1.44.3` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.2 to 1.21.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.21.0\u003c/h2\u003e\n\u003ch2\u003e1.21.0 (2026-01-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime/datetime\u003c/code\u003e package which provides specialized time type wrappers for serializing and deserializing\ntime values in various formats used by Azure services.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAligned \u003ccode\u003ecloud.AzureGovernment\u003c/code\u003e and \u003ccode\u003ecloud.AzureChina\u003c/code\u003e audience values with Azure CLI\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/f6309d465ff4978aeccd13278233add9b0c5348a\"\u003e\u003ccode\u003ef6309d4\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.21.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25864\"\u003e#25864\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/d0a981978520521ed6ae090667413eb4f39aba69\"\u003e\u003ccode\u003ed0a9819\u003c/code\u003e\u003c/a\u003e Update SDK generation as completed when SDK pull request is linked to release...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/aba8672618e84f1af6a6e1670020489f518200f2\"\u003e\u003ccode\u003eaba8672\u003c/code\u003e\u003c/a\u003e Configurations:  'specification/resourceconnector/resource-manager/Microsoft....\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/481e4ab591a3f301a08555915e0ec491e6c1169c\"\u003e\u003ccode\u003e481e4ab\u003c/code\u003e\u003c/a\u003e Add some missing methods to the types in datetime (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25826\"\u003e#25826\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/35d60710fea65dc95efbc39209289a55e9ed31a0\"\u003e\u003ccode\u003e35d6071\u003c/code\u003e\u003c/a\u003e Skip unsafeptr check for storage SDKs (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25856\"\u003e#25856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/5d68f6655627e7e7175dea1df27aa2598452528a\"\u003e\u003ccode\u003e5d68f66\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25837\"\u003e#25837\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/944cd8dfc2459a4aa368cedbfd2b1fb9a7cfc700\"\u003e\u003ccode\u003e944cd8d\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25836\"\u003e#25836\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/119182532bfd3b597a3051d4631c242f8a1504ab\"\u003e\u003ccode\u003e1191825\u003c/code\u003e\u003c/a\u003e [Regeneration]sdk/resourcemanager/quota/armquota (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25835\"\u003e#25835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e1a9bfde0709b11a50473b12ef03234006b355c3\"\u003e\u003ccode\u003ee1a9bfd\u003c/code\u003e\u003c/a\u003e add code (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25838\"\u003e#25838\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1de7ac75f848d7d9c848a9e8fb0104f56af25225\"\u003e\u003ccode\u003e1de7ac7\u003c/code\u003e\u003c/a\u003e [Automation] Regenerate SDK based on typespec-go branch main (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25729\"\u003e#25729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.2...sdk/azcore/v1.21.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.11.0 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.13.0\u003c/h2\u003e\n\u003ch2\u003e1.13.0 (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eAzurePowerShellCredential\u003c/code\u003e, which authenticates as the identity logged in to Azure PowerShell\n(thanks \u003ca href=\"https://github.com/ArmaanMcleod\"\u003eArmaanMcleod\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWhen \u003ccode\u003eAZURE_TOKEN_CREDENTIALS\u003c/code\u003e is set to \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e, \u003ccode\u003eDefaultAzureCredential\u003c/code\u003e behaves the same as\ndoes \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e when used directly. It doesn't apply special retry configuration or attempt to\ndetermine whether IMDS is available. (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25265\"\u003e#25265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved the \u003ccode\u003eWorkloadIdentityCredential\u003c/code\u003e support for identity binding mode added in v1.13.0-beta.1.\nIt will return in v1.14.0-beta.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.11.0...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.35.0 to 2.36.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esupport CLUSTER SHARDS\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eredis 8.4.0, DUMP/RESTORE, EVALRO, WAIT\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.36.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esupport CLUSTER SHARDS (thanks \u003ca href=\"https://github.com/dadrus\"\u003e\u003ccode\u003e@​dadrus\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.36.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereturn actual server address by CLUSTER NODES (thanks \u003ca href=\"https://github.com/nastik-kum\"\u003e\u003ccode\u003e@​nastik-kum\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport DUMP and RESTORE (thanks \u003ca href=\"https://github.com/alyssaruth\"\u003e\u003ccode\u003e@​alyssaruth\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport EVALRO (thanks \u003ca href=\"https://github.com/max-frank\"\u003e\u003ccode\u003e@​max-frank\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd WAIT command as no-op (thanks \u003ca href=\"https://github.com/aroullet\"\u003e\u003ccode\u003e@​aroullet\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003esupport info stats (thanks \u003ca href=\"https://github.com/destinyoooo\"\u003e\u003ccode\u003e@​destinyoooo\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd \u0026quot;\u003c!-- raw HTML omitted --\u003e-*\u0026quot; keys\u003c/li\u003e\n\u003cli\u003ecompare against Redis 8.4.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/64de52d3aba1916839792483892ab7adc6e08bcb\"\u003e\u003ccode\u003e64de52d\u003c/code\u003e\u003c/a\u003e changelog for v2.36.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/7ae63baa0e987ec36580e554c0dbf0c78e4334b3\"\u003e\u003ccode\u003e7ae63ba\u003c/code\u003e\u003c/a\u003e CLUSTER SHARDS (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/431\"\u003e#431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/99437e6dc2cac79887407891037f85b1851fbaf9\"\u003e\u003ccode\u003e99437e6\u003c/code\u003e\u003c/a\u003e v2.36.0 changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/e5c9a13b1e84217aa9f4ea9e3f2a7a360ae01ee7\"\u003e\u003ccode\u003ee5c9a13\u003c/code\u003e\u003c/a\u003e update redis to 8.4.0 (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/879c91ce9368d0057752736e837108c3e0aeba51\"\u003e\u003ccode\u003e879c91c\u003c/code\u003e\u003c/a\u003e use math/bits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/dfe3831be7b6369538737e8eed2eb82a1e338998\"\u003e\u003ccode\u003edfe3831\u003c/code\u003e\u003c/a\u003e support for \u0026quot;\u0026lt;timestamp\u0026gt;-*\u0026quot; (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/426\"\u003e#426\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/72a6b15498e38cfae28a110787370ad8592bb4e5\"\u003e\u003ccode\u003e72a6b15\u003c/code\u003e\u003c/a\u003e Add evalro support (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/3f960ee860b48d2e26fc58a61458c498d736a9c0\"\u003e\u003ccode\u003e3f960ee\u003c/code\u003e\u003c/a\u003e direct implementations for 2 commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/20a81e7e4d26152263b68bff9059c6d05d1414af\"\u003e\u003ccode\u003e20a81e7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/422\"\u003e#422\u003c/a\u003e from destinyoooo/client-stats\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b50ef1cd64eb04c5ab5c8ba5b261fb37c323960f\"\u003e\u003ccode\u003eb50ef1c\u003c/code\u003e\u003c/a\u003e feat: support info stats\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.35.0...v2.36.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.1 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.4 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.4...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/de8ecc3b52e6a37b24a5a8ca362b54cafed2bc0b\"\u003e\u003ccode\u003ede8ecc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1743\"\u003e#1743\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3e752f043d07fd7f34edb6818b187c0267a5c762\"\u003e\u003ccode\u003e3e752f0\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3a317549e0ca40927f062a3d53873ecc36a810c1\"\u003e\u003ccode\u003e3a31754\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1741\"\u003e#1741\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/acc28f117fb304f9197601cf0230ef8d263258a6\"\u003e\u003ccode\u003eacc28f1\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/95f388043ec1dd955327cec8b3b4b566a6e356ee\"\u003e\u003ccode\u003e95f3880\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1742\"\u003e#1742\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-n...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/329f9266ae5d8ca6cb58ce3206004165090bd3cc\"\u003e\u003ccode\u003e329f926\u003c/code\u003e\u003c/a\u003e build: Update module golang.org/x/net to v0.38.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/399e04beb0b3284c5cb0d2bf684bb430c6612146\"\u003e\u003ccode\u003e399e04b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1734\"\u003e#1734\u003c/a\u003e from pjbgf/fix-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/2025eae3aed7eeb0659893c069f918155c6b8b78\"\u003e\u003ccode\u003e2025eae\u003c/code\u003e\u003c/a\u003e build: test, Fix build on Windows.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fb6806f2711e17db162623faa01b1fb25c4dbfcc\"\u003e\u003ccode\u003efb6806f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1732\"\u003e#1732\u003c/a\u003e from swills/find-hash-panic-fix-backport\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/382530f513390f06a5271148b3e133eaa8ebf725\"\u003e\u003ccode\u003e382530f\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, prevent panic\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.3.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔐 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd spellcheck Github action to catch common spelling mistakes by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithNotBeforeRequired\u003c/code\u003e parser option and add test coverage by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/456\"\u003egolang-jwt/jwt#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate godoc example func to properly refer to \u003ccode\u003eNewWithClaims()\u003c/code\u003e by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/459\"\u003egolang-jwt/jwt#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate github workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/462\"\u003egolang-jwt/jwt#462\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional test for CustomClaims that validates unmarshalling behaviour by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/457\"\u003egolang-jwt/jwt#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix early file close in jwt cli by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/472\"\u003egolang-jwt/jwt#472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TPM signature reference by \u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove misleading ParserOptions documentation in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/484\"\u003egolang-jwt/jwt#484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSave signature to Token struct after successful signing by \u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e by \u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e👒 Dependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump crate-ci/typos from 1.34.0 to 1.35.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/461\"\u003egolang-jwt/jwt#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.35.4 to 1.36.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/470\"\u003egolang-jwt/jwt#470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/478\"\u003egolang-jwt/jwt#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.36.2 to 1.39.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/480\"\u003egolang-jwt/jwt#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/481\"\u003egolang-jwt/jwt#481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/469\"\u003egolang-jwt/jwt#469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/488\"\u003egolang-jwt/jwt#488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/487\"\u003egolang-jwt/jwt#487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.40.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/490\"\u003egolang-jwt/jwt#490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.41.0 to 1.42.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/492\"\u003egolang-jwt/jwt#492\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db\"\u003e\u003ccode\u003e7ceae61\u003c/code\u003e\u003c/a\u003e Add release.yml for changelog configuration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5\"\u003e\u003ccode\u003edce8e4d\u003c/code\u003e\u003c/a\u003e Set token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/414\"\u003e#414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e\"\u003e\u003ccode\u003e8889e20\u003c/code\u003e\u003c/a\u003e Save signature to Token struct after successful signing (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1\"\u003e\u003ccode\u003ed237f82\u003c/code\u003e\u003c/a\u003e ci: update github-actions schedule interval to monthly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116\"\u003e\u003ccode\u003ed8dce95\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.41.0 to 1.42.1 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290\"\u003e\u003ccode\u003ee931803\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.40.0 to 1.41.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/490\"\u003e#490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d\"\u003e\u003ccode\u003ee6a0afa\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/487\"\u003e#487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e\"\u003e\u003ccode\u003e9f85c9e\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.39.0 to 1.40.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/488\"\u003e#488\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd\"\u003e\u003ccode\u003e60a8669\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/469\"\u003e#469\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434\"\u003e\u003ccode\u003e76f5828\u003c/code\u003e\u003c/a\u003e Remove misleading ParserOptions documentation (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/484\"\u003e#484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.20.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e075f209120b2467fd1b7d24727f1890a0edb74a\"\u003e\u003ccode\u003ee075f20\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ego mod tidy\u003c/code\u003e on dependabot update (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2171\"\u003e#2171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/45aacf4b5f2c55bddec27ba3ee023e105c187187\"\u003e\u003ccode\u003e45aacf4\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2170\"\u003e#2170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/073b936909d86b06c25d6774243ae5979f85d6f1\"\u003e\u003ccode\u003e073b936\u003c/code\u003e\u003c/a\u003e Update dependencies and deprecate DockerVersion field (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2164\"\u003e#2164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/390dacd7ad170b73ff404a8cef0b58bbf5fb42d2\"\u003e\u003ccode\u003e390dacd\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2163\"\u003e#2163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/ca44d47f67072068ffbd4d2ead4851666c334a05\"\u003e\u003ccode\u003eca44d47\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2162\"\u003e#2162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/999cc1fbfb704fa24e4568a4f3cdb61752f08e83\"\u003e\u003ccode\u003e999cc1f\u003c/code\u003e\u003c/a\u003e Bump github.com/docker/docker (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2161\"\u003e#2161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d1809c862390e60825858e6cd5835f87a46d7e7c\"\u003e\u003ccode\u003ed1809c8\u003c/code\u003e\u003c/a\u003e Build artifacts for riscv64 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2159\"\u003e#2159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/7471efdf98711e7c834b884a5660143a8a91bced\"\u003e\u003ccode\u003e7471efd\u003c/code\u003e\u003c/a\u003e Bump the auxiliary-deps group across 3 directories with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2156\"\u003e#2156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/2bb5bb01b8d981642fc2c257afb8fb12731014b3\"\u003e\u003ccode\u003e2bb5bb0\u003c/code\u003e\u003c/a\u003e Bump the actions group with 5 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2155\"\u003e#2155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/16371c1fe7e601ac6a69d112ec1efd91cbad9049\"\u003e\u003ccode\u003e16371c1\u003c/code\u003e\u003c/a\u003e Remove manual vendor setting for dependabot (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2151\"\u003e#2151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.9 to 1.8.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"htt...\n\n_Description has been truncated_","html_url":"https://github.com/MaineK00n/trivy/pull/352","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/MaineK00n%2Ftrivy/issues/352","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/352/packages"}},{"old_version":"0.9.2","new_version":"0.10.0","update_type":"minor","path":"/src","pr_created_at":"2026-02-02T06:48:21.000Z","version_change":"0.9.2 → 0.10.0","issue":{"uuid":"3884281993","node_id":"PR_kwDOP6kBxs7A1Cjc","number":21,"state":"open","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.9.2 to 0.10.0 in /src","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-02T06:48:21.000Z","updated_at":"2026-02-02T06:48:21.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":"/src","ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.9.2 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.9.2\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/iron-kite/rudor/pull/21","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/iron-kite%2Frudor/issues/21","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/21/packages"}},{"old_version":"0.5.2","new_version":"0.10.0","update_type":"minor","path":null,"pr_created_at":"2026-02-01T17:14:05.000Z","version_change":"0.5.2 → 0.10.0","issue":{"uuid":"3882486820","node_id":"PR_kwDOHCizo87AvI0I","number":459,"state":"open","title":"chore(deps): bump github.com/CycloneDX/cyclonedx-go from 0.5.2 to 0.10.0","user":"dependabot[bot]","labels":["dependencies","go","lifecycle/stale"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-01T17:14:05.000Z","updated_at":"2026-04-03T00:10:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.5.2","new_version":"0.10.0","repository_url":"https://github.com/CycloneDX/cyclonedx-go"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) from 0.5.2 to 0.10.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ef724c55d9c13a6e79980cd4cc6a39f2696bc6c97: fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e48a212c7c5cd015cac8df92de3696e3d7e3531ef: fix: migrate golangci-lint config and address issues (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e75662981bebea02c122b44d31fa65f134d6abd28: fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e) (\u003ca href=\"https://github.com/alistair-mclean\"\u003e\u003ccode\u003e@​alistair-mclean\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eff55798700d8298a41813be8bf2dfbacd3179ea1: build(deps): bump actions/checkout from 4.2.2 to 5.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3781c74cf069aac093ca69feb0ede6b97eccc1ae: build(deps): bump actions/checkout from 5.0.0 to 6.0.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4a3ab35be2ded2e654818a3f9ea45a8cd19788e2: build(deps): bump actions/setup-go from 5.5.0 to 6.0.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e49ee4a34713d50c1ec26b08e515eeca4b6226bd2: build(deps): bump actions/setup-go from 6.0.0 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e521976f2f97e4690d75b0042374ed44dcf01e373: build(deps): bump apache/skywalking-eyes from 0.7.0 to 0.8.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e11497919754dd4238eb10f357ed68800c617a233: build(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e9fa7dc11aaf321c06eef3f86dc5ae2be694be33c: build(deps): bump gitpod/workspace-go from \u003ccode\u003e8985eb7\u003c/code\u003e to \u003ccode\u003e08a7c68\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eaf64af3762779ec64a6e77904524480ec4a60a44: build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e8c642b2c7902e6473e9994656cdf078e24bd75f5: build(deps): bump goreleaser/goreleaser-action from 6.3.0 to 6.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e082681c2438c89ed961c4ad0a89d80b798d8e7f2: chore: bump minimum go version to 1.23 (\u003ca href=\"https://github.com/nscuro\"\u003e\u003ccode\u003e@​nscuro\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.9.2\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39ede217f126cfbc80eabf880f6643be3d392a4f: feat: add MarshalXML and UnmarshalXML (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee9191ed11a269fcb6b3fb54e000ed6d81b5bf9db: feat: add UnmarshalJSON (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e80fede1f13a956d35eb14696cd2ca9d2d943f809: fix: add json tag for \u003ccode\u003eIdentity\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e24e9503293f0837e6e7ea3ff670ef958e6075b87: fix: tests (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed68a199bc1747e5d6a7d4196c2f270535bbf6e3e: fix: use \u003ccode\u003eidentity\u003c/code\u003e as array in \u003ccode\u003evalid-evidence.json\u003c/code\u003e (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eff9cc28f9c9554328bd6c1ad56098be5a692d5e9: fix: use componentEvidence array for Evidence.Identity field (\u003ca href=\"https://github.com/DmitriyLewen\"\u003e\u003ccode\u003e@​DmitriyLewen\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e016ee293d464d6383be3a714f7fb0debebef8ad5: build(deps): bump actions/checkout from 4.1.7 to 4.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e77153ab5fe005f6484ac1e1225e7152df00db3f1: build(deps): bump actions/checkout from 4.2.0 to 4.2.1 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4f50d02c1282ac1d0d7448502b231a0e84a1e529: build(deps): bump actions/checkout from 4.2.1 to 4.2.2 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eb84451219e77e0fbbe7d5ba054bcf25dbc7aaea4: build(deps): bump actions/setup-go from 5.0.2 to 5.1.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e238cbea3479fed9fdfcbfa5f1751828390a05211: build(deps): bump actions/setup-go from 5.1.0 to 5.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ebbe8f3c2c7c4567514ae966c69bf93fc1b3dba2a: build(deps): bump github.com/stretchr/testify from 1.9.0 to 1.10.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/2270566984df762ce6cec2d52b79002229464c2d\"\u003e\u003ccode\u003e2270566\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/254\"\u003e#254\u003c/a\u003e from CycloneDX/bump-go-versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/082681c2438c89ed961c4ad0a89d80b798d8e7f2\"\u003e\u003ccode\u003e082681c\u003c/code\u003e\u003c/a\u003e chore: bump minimum go version to 1.23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/291671e4e9d8eea5fbee46d3ab058d35818da022\"\u003e\u003ccode\u003e291671e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/252\"\u003e#252\u003c/a\u003e from CycloneDX/dependabot/github_actions/golangci/gol...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/48a212c7c5cd015cac8df92de3696e3d7e3531ef\"\u003e\u003ccode\u003e48a212c\u003c/code\u003e\u003c/a\u003e fix: migrate golangci-lint config and address issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f724c55d9c13a6e79980cd4cc6a39f2696bc6c97\"\u003e\u003ccode\u003ef724c55\u003c/code\u003e\u003c/a\u003e fix: add missing fields for v1.6 spec (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/249\"\u003e#249\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75662981bebea02c122b44d31fa65f134d6abd28\"\u003e\u003ccode\u003e7566298\u003c/code\u003e\u003c/a\u003e fix: unset component tags for spec version less than 1.6 (\u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/253\"\u003e#253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/bc030ba57dd4b7414a49b5a654fd6f41c92f558d\"\u003e\u003ccode\u003ebc030ba\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/235\"\u003e#235\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/b19822650b5dd63bf1b385f393e4777a408de6d7\"\u003e\u003ccode\u003eb198226\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/251\"\u003e#251\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/e11807d04b9ec9c2d2f859e168ebe0889b001634\"\u003e\u003ccode\u003ee11807d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/250\"\u003e#250\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/af64af3762779ec64a6e77904524480ec4a60a44\"\u003e\u003ccode\u003eaf64af3\u003c/code\u003e\u003c/a\u003e build(deps): bump golangci/golangci-lint-action from 6.2.0 to 9.2.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.5.2...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/CycloneDX/cyclonedx-go\u0026package-manager=go_modules\u0026previous-version=0.5.2\u0026new-version=0.10.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot merge` will merge this PR after your CI passes on it\n- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it\n- `@dependabot cancel merge` will cancel a previously requested merge and block automerging\n- `@dependabot reopen` will reopen this PR if it is closed\n- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/project-zot/trivy/pull/459","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/project-zot%2Ftrivy/issues/459","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/459/packages"}},{"old_version":"0.9.2","new_version":"0.9.3","update_type":"patch","path":null,"pr_created_at":"2026-01-12T00:24:27.000Z","version_change":"0.9.2 → 0.9.3","issue":{"uuid":"3802362842","node_id":"PR_kwDOP3jSus68mVBT","number":26,"state":"closed","title":"chore(deps): bump the others group across 1 directory with 18 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-01-16T00:12:13.000Z","author_association":null,"state_reason":null,"created_at":"2026-01-12T00:24:27.000Z","updated_at":"2026-01-16T00:12:14.000Z","time_to_close":344866,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"others","update_count":18,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/storage/azblob","old_version":"1.6.2","new_version":"1.6.3","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/aws/aws-sdk-go-v2","old_version":"1.38.3","new_version":"1.41.0","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/config","old_version":"1.31.6","new_version":"1.32.6","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/service/s3","old_version":"1.87.3","new_version":"1.95.0","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.20.7","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/gosnmp/gosnmp","old_version":"1.42.1","new_version":"1.43.1","repository_url":"https://github.com/gosnmp/gosnmp"},{"name":"github.com/hashicorp/go-version","old_version":"1.7.0","new_version":"1.8.0","repository_url":"https://github.com/hashicorp/go-version"},{"name":"github.com/olekukonko/tablewriter","old_version":"1.0.9","new_version":"1.1.2","repository_url":"https://github.com/olekukonko/tablewriter"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/spf13/cobra","old_version":"1.10.1","new_version":"1.10.2","repository_url":"https://github.com/spf13/cobra"}],"path":null,"ecosystem":"go"},"body":"Bumps the others group with 12 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/storage/azblob](https://github.com/Azure/azure-sdk-for-go) | `1.6.2` | `1.6.3` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.9.3` |\n| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.38.3` | `1.41.0` |\n| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.31.6` | `1.32.6` |\n| [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.87.3` | `1.95.0` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.20.7` |\n| [github.com/gosnmp/gosnmp](https://github.com/gosnmp/gosnmp) | `1.42.1` | `1.43.1` |\n| [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.8.0` |\n| [github.com/olekukonko/tablewriter](https://github.com/olekukonko/tablewriter) | `1.0.9` | `1.1.2` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.1` | `1.10.2` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/storage/azblob` from 1.6.2 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/storage/azblob's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/storage/azblob/v1.6.3\u003c/h2\u003e\n\u003ch2\u003e1.6.3 (2025-10-16)\u003c/h2\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated service version to \u003ccode\u003e2025-11-05\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated \u003ccode\u003eazidentity\u003c/code\u003e version to \u003ccode\u003e1.13.0\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eUpdated \u003ccode\u003eazcore\u003c/code\u003e version to \u003ccode\u003e1.19.1\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/fb793bc9abed763f0b4e0f45bebe9451897351f3\"\u003e\u003ccode\u003efb793bc\u003c/code\u003e\u003c/a\u003e [Storage] Prep for release - stg99 GA (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25442\"\u003e#25442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6d8a42734f87cd925e84d39cc942868315445037\"\u003e\u003ccode\u003e6d8a427\u003c/code\u003e\u003c/a\u003e cosmos: add some extra logging in the query engine path (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25444\"\u003e#25444\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/8ca57158d260613855520f07505d5e4195f4ff4f\"\u003e\u003ccode\u003e8ca5715\u003c/code\u003e\u003c/a\u003e [azappconfig] update README (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25427\"\u003e#25427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9ba44b8b5a5a4f5e4c8f99a8cf98d0b4f245f15e\"\u003e\u003ccode\u003e9ba44b8\u003c/code\u003e\u003c/a\u003e Changelog for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25428\"\u003e#25428\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c554d029c027090190a9761609a696c3bf0580fb\"\u003e\u003ccode\u003ec554d02\u003c/code\u003e\u003c/a\u003e Update Key Vault CODEOWNERS (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25437\"\u003e#25437\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/ad122df3a8ea66d7fba5789a9c0d64703dd4a55d\"\u003e\u003ccode\u003ead122df\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12501 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25435\"\u003e#25435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/29d03e50bf4671b41e38d2319db79169a5bac9ee\"\u003e\u003ccode\u003e29d03e5\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12483 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25423\"\u003e#25423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/61e4230a97bc81f4928f27a3e8e103c6d2d8f2b1\"\u003e\u003ccode\u003e61e4230\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/hdinsight/armhdinsight/1.3.0-beta.3 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25331\"\u003e#25331\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/be00bdd7a6f30dcfee5552e22a50397d646adbda\"\u003e\u003ccode\u003ebe00bdd\u003c/code\u003e\u003c/a\u003e update release date (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25410\"\u003e#25410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/284da628bef96ccbc3bbf358a793c63d196f8cea\"\u003e\u003ccode\u003e284da62\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12467 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25422\"\u003e#25422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/storage/azblob/v1.6.2...sdk/storage/azblob/v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.9.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/72e4629d580624c7d6bd815e2d209a0a62d08047\"\u003e\u003ccode\u003e72e4629\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/243\"\u003e#243\u003c/a\u003e from madpah/fix/component-data-schema\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6636ce32f8b15a5104fda6636937e91d62d647e7\"\u003e\u003ccode\u003e6636ce3\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a39bf6be93d4ecca076f4379031dc24cddac4937\"\u003e\u003ccode\u003ea39bf6b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/232\"\u003e#232\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/cff8cd548a906d6a5534b60056f2ab4b3e9c522b\"\u003e\u003ccode\u003ecff8cd5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/233\"\u003e#233\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6a93b76287597c06d2aa64e9281bb8e003bb8bbb\"\u003e\u003ccode\u003e6a93b76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/234\"\u003e#234\u003c/a\u003e from rdghe/fix/add-missing-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3e0f245f7b936eb38e16d0518a2a0020c0d69223\"\u003e\u003ccode\u003e3e0f245\u003c/code\u003e\u003c/a\u003e fix: add missing properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f32eebc413c71327df4fd6f264aa9f22e6e8cce1\"\u003e\u003ccode\u003ef32eebc\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/5fcf097fbdcedb6832989d0a74195f0698b48de8\"\u003e\u003ccode\u003e5fcf097\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5.4.0 to 5.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75427c8613483b8939c4c5916d55f00fc1f458ef\"\u003e\u003ccode\u003e75427c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/222\"\u003e#222\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/551624d8f7fd283bc4b8d25fde912659b3f9a18e\"\u003e\u003ccode\u003e551624d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/217\"\u003e#217\u003c/a\u003e from CycloneDX/dependabot/github_actions/apache/skywa...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.9.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2` from 1.38.3 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2c5c1de983d67074b607e5e410102ab2821a06e0\"\u003e\u003ccode\u003e2c5c1de\u003c/code\u003e\u003c/a\u003e Release 2025-12-08\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/a968e75f31355127d6d21b5c1eeeef56c7293528\"\u003e\u003ccode\u003ea968e75\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b110f673443a879368b09088ddb3a41b42289810\"\u003e\u003ccode\u003eb110f67\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/82760c3f13f663592956106b7fc61e4f1fc1ce31\"\u003e\u003ccode\u003e82760c3\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/9e038d3c6c3dff3ed4d7da6c9ca8781bce3f4f69\"\u003e\u003ccode\u003e9e038d3\u003c/code\u003e\u003c/a\u003e [merge 12/8/25] default MaxConnsPerHost to 2048 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3245\"\u003e#3245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/55b9a85b5962a5529d4383caabb7c7c8cf2e34df\"\u003e\u003ccode\u003e55b9a85\u003c/code\u003e\u003c/a\u003e Release 2025-12-05\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/cb36f84a8640782421ce92ac04946ee270cbae98\"\u003e\u003ccode\u003ecb36f84\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/081bac07f1af24e5f7cd1028d120ef41cd1c2e42\"\u003e\u003ccode\u003e081bac0\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/25f26c231f47889249f6bf9b6b11ed817097abdf\"\u003e\u003ccode\u003e25f26c2\u003c/code\u003e\u003c/a\u003e Release 2025-12-04\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aadf9d36831914dd70472d25ba23bf9160304d67\"\u003e\u003ccode\u003eaadf9d3\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.38.3...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/config` from 1.31.6 to 1.32.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/776903f3dd7208803912e19d3aa25006a7fbdeee\"\u003e\u003ccode\u003e776903f\u003c/code\u003e\u003c/a\u003e Release 2024-12-02\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/170b13cac4658e0909b13468d3959f94c358faf3\"\u003e\u003ccode\u003e170b13c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/c1a02e760211a1d0762f664973ea4d896376a621\"\u003e\u003ccode\u003ec1a02e7\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2835f7bb8d4925acb36a5ab7813cca6ac8977cb7\"\u003e\u003ccode\u003e2835f7b\u003c/code\u003e\u003c/a\u003e Fix user agent to add business metrics at the end instead of prepend them (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ba4965dd291e68f9345c5eae4dec8a0f63bda436\"\u003e\u003ccode\u003eba4965d\u003c/code\u003e\u003c/a\u003e Release 2024-11-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/55149b05036afa39e3b7c6dd945543faee4069e6\"\u003e\u003ccode\u003e55149b0\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/fd6bb8b363cce171fba74b72d2bb4142b9306b7c\"\u003e\u003ccode\u003efd6bb8b\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/65ab4f88b048175d8fc13fab6f72f31b739a2455\"\u003e\u003ccode\u003e65ab4f8\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8939ed049c8b3490f9a3dbd4e4d3d56cf22a27f2\"\u003e\u003ccode\u003e8939ed0\u003c/code\u003e\u003c/a\u003e Release 2024-11-26\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/23cf36b2492a3caf859a6235c6911f1c2fb715ca\"\u003e\u003ccode\u003e23cf36b\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.31.6...v1.32.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/credentials` from 1.18.10 to 1.19.6\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/c7c68659ce67e5b7e18f31bc66068cec9e3d790d\"\u003e\u003ccode\u003ec7c6865\u003c/code\u003e\u003c/a\u003e Release 2025-01-30\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/70f736c5dc0b8652c5fe5c387b2165c3b9beddb1\"\u003e\u003ccode\u003e70f736c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/28731c2bdef3c2555a95632396b6d4936e58099d\"\u003e\u003ccode\u003e28731c2\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/3505e4b255c327a1fa38f870612c327b93302dc0\"\u003e\u003ccode\u003e3505e4b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/0b4f6362bb9017615ed38124cdd20df7714bf98f\"\u003e\u003ccode\u003e0b4f636\u003c/code\u003e\u003c/a\u003e don't sign transfer-encoding header (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2991\"\u003e#2991\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b820c5731d3bff3ae303166ea4379c73fb18a8d4\"\u003e\u003ccode\u003eb820c57\u003c/code\u003e\u003c/a\u003e Release 2025-01-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/40ddb76e611944643404e79a6b92ac335f2921f2\"\u003e\u003ccode\u003e40ddb76\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2b4adae0bf0cb97fd910110c1f567d5bbc1f348b\"\u003e\u003ccode\u003e2b4adae\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/78c2be4ca0b69cddb5825b20309e35d4f54c6cf4\"\u003e\u003ccode\u003e78c2be4\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;beta: feature/s3/transfermanager (S3 transfer manager v2) (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2988\"\u003e#2988\u003c/a\u003e)\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5c9d67c15ecc49b769f7ddab05f840e723e146ac\"\u003e\u003ccode\u003e5c9d67c\u003c/code\u003e\u003c/a\u003e beta: feature/s3/transfermanager (S3 transfer manager v2) (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2988\"\u003e#2988\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.18.10...service/m2/v1.19.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.87.3 to 1.95.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/c6af97c5aac787ce84a5b3794be2c85e61faae56\"\u003e\u003ccode\u003ec6af97c\u003c/code\u003e\u003c/a\u003e Release 2025-12-23\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/44c79bcf5ea5c91aa2cfacf1266550b840cddf72\"\u003e\u003ccode\u003e44c79bc\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/cbd895944cc8a09617c1b9100720f582a3250f2d\"\u003e\u003ccode\u003ecbd8959\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8db5742cd5c378d0529a19c693c7cc16fc16f882\"\u003e\u003ccode\u003e8db5742\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/567ea661f59a4b913e2d18078a96e90e488562e9\"\u003e\u003ccode\u003e567ea66\u003c/code\u003e\u003c/a\u003e Release 2025-12-22\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6bedc004ae386aa60707c65519004b170b6193fa\"\u003e\u003ccode\u003e6bedc00\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/4b32467ac353bf36f904362c5e8be520c9150588\"\u003e\u003ccode\u003e4b32467\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/0183b9c8f1c84d6553146a29612356b754b9dab0\"\u003e\u003ccode\u003e0183b9c\u003c/code\u003e\u003c/a\u003e Release 2025-12-19\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e3fc0009489b9b9b6c48aecd3ae16f6c988618a4\"\u003e\u003ccode\u003ee3fc000\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/552358d4e6aad86db68adb7514859428829f0817\"\u003e\u003ccode\u003e552358d\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.87.3...service/s3/v1.95.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.38.2 to 1.41.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8878ab2c86f54b5b35ae7c6b41b47f7c2ab1a128\"\u003e\u003ccode\u003e8878ab2\u003c/code\u003e\u003c/a\u003e Release 2025-12-09\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/3bb7070f414a0d3b0bdf3203af5a88d8c62141cb\"\u003e\u003ccode\u003e3bb7070\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/67298ad1e66d5d6c9fc284a45b2add8f6a2a76f1\"\u003e\u003ccode\u003e67298ad\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b57f9c7a9e62e3aea3c32499eec7b6b64bcfd102\"\u003e\u003ccode\u003eb57f9c7\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/18eff735fe4bb2d88a431b2821d54ed83a6bbe63\"\u003e\u003ccode\u003e18eff73\u003c/code\u003e\u003c/a\u003e upgrade to smithy v1.64.0 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3246\"\u003e#3246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2c5c1de983d67074b607e5e410102ab2821a06e0\"\u003e\u003ccode\u003e2c5c1de\u003c/code\u003e\u003c/a\u003e Release 2025-12-08\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/a968e75f31355127d6d21b5c1eeeef56c7293528\"\u003e\u003ccode\u003ea968e75\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b110f673443a879368b09088ddb3a41b42289810\"\u003e\u003ccode\u003eb110f67\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/82760c3f13f663592956106b7fc61e4f1fc1ce31\"\u003e\u003ccode\u003e82760c3\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/9e038d3c6c3dff3ed4d7da6c9ca8781bce3f4f69\"\u003e\u003ccode\u003e9e038d3\u003c/code\u003e\u003c/a\u003e [merge 12/8/25] default MaxConnsPerHost to 2048 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3245\"\u003e#3245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.38.2...service/sts/v1.41.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.20.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e075f209120b2467fd1b7d24727f1890a0edb74a\"\u003e\u003ccode\u003ee075f20\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ego mod tidy\u003c/code\u003e on dependabot update (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2171\"\u003e#2171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/45aacf4b5f2c55bddec27ba3ee023e105c187187\"\u003e\u003ccode\u003e45aacf4\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2170\"\u003e#2170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/073b936909d86b06c25d6774243ae5979f85d6f1\"\u003e\u003ccode\u003e073b936\u003c/code\u003e\u003c/a\u003e Update dependencies and deprecate DockerVersion field (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2164\"\u003e#2164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/390dacd7ad170b73ff404a8cef0b58bbf5fb42d2\"\u003e\u003ccode\u003e390dacd\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2163\"\u003e#2163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/ca44d47f67072068ffbd4d2ead4851666c334a05\"\u003e\u003ccode\u003eca44d47\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2162\"\u003e#2162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/999cc1fbfb704fa24e4568a4f3cdb61752f08e83\"\u003e\u003ccode\u003e999cc1f\u003c/code\u003e\u003c/a\u003e Bump github.com/docker/docker (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2161\"\u003e#2161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d1809c862390e60825858e6cd5835f87a46d7e7c\"\u003e\u003ccode\u003ed1809c8\u003c/code\u003e\u003c/a\u003e Build artifacts for riscv64 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2159\"\u003e#2159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/7471efdf98711e7c834b884a5660143a8a91bced\"\u003e\u003ccode\u003e7471efd\u003c/code\u003e\u003c/a\u003e Bump the auxiliary-deps group across 3 directories with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2156\"\u003e#2156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/2bb5bb01b8d981642fc2c257afb8fb12731014b3\"\u003e\u003ccode\u003e2bb5bb0\u003c/code\u003e\u003c/a\u003e Bump the actions group with 5 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2155\"\u003e#2155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/16371c1fe7e601ac6a69d112ec1efd91cbad9049\"\u003e\u003ccode\u003e16371c1\u003c/code\u003e\u003c/a\u003e Remove manual vendor setting for dependabot (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2151\"\u003e#2151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gosnmp/gosnmp` from 1.42.1 to 1.43.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gosnmp/gosnmp/releases\"\u003egithub.com/gosnmp/gosnmp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.43.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove spurious mock file by \u003ca href=\"https://github.com/SuperQ\"\u003e\u003ccode\u003e@​SuperQ\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/555\"\u003egosnmp/gosnmp#555\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gosnmp/gosnmp/compare/v1.43.0...v1.43.1\"\u003ehttps://github.com/gosnmp/gosnmp/compare/v1.43.0...v1.43.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.43.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.2 to 4.31.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/535\"\u003egosnmp/gosnmp#535\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/533\"\u003egosnmp/gosnmp#533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/530\"\u003egosnmp/gosnmp#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/529\"\u003egosnmp/gosnmp#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Go by \u003ca href=\"https://github.com/SuperQ\"\u003e\u003ccode\u003e@​SuperQ\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/536\"\u003egosnmp/gosnmp#536\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 6.0.0 to 6.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/541\"\u003egosnmp/gosnmp#541\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 8.0.0 to 9.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/538\"\u003egosnmp/gosnmp#538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 5.0.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/540\"\u003egosnmp/gosnmp#540\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.2 to 4.31.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/539\"\u003egosnmp/gosnmp#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBER Length Parsing Fixes by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/546\"\u003egosnmp/gosnmp#546\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate golangci-lint. by \u003ca href=\"https://github.com/SuperQ\"\u003e\u003ccode\u003e@​SuperQ\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/549\"\u003egosnmp/gosnmp#549\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOID parsing: enforce RFC 2578 sub-identifier limit, optimize string b… by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/547\"\u003egosnmp/gosnmp#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor marshal functions with marshalTLV helper by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/548\"\u003egosnmp/gosnmp#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMarshal helpers - optimization: reduce allocations in OID, float, and length encoding  by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/550\"\u003egosnmp/gosnmp#550\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.31.7 to 4.31.9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/553\"\u003egosnmp/gosnmp#553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix walk loop detection to catch decreasing OIDs by \u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/551\"\u003egosnmp/gosnmp#551\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukeod\"\u003e\u003ccode\u003e@​lukeod\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/pull/546\"\u003egosnmp/gosnmp#546\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gosnmp/gosnmp/compare/v1.42.1...v1.43.0\"\u003ehttps://github.com/gosnmp/gosnmp/compare/v1.42.1...v1.43.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/c79820a2fd21783e463a89c99a54a8f9e7fa6b26\"\u003e\u003ccode\u003ec79820a\u003c/code\u003e\u003c/a\u003e Remove spurious mock file (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/555\"\u003e#555\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/82c44b00f72aeb7881e93ccc9a435ff1bf9a0194\"\u003e\u003ccode\u003e82c44b0\u003c/code\u003e\u003c/a\u003e Fix walk loop detection to catch decreasing OIDs (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/551\"\u003e#551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/3311c01c4ab22674c411060c27476c11ac3b1d25\"\u003e\u003ccode\u003e3311c01\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.31.7 to 4.31.9 (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/553\"\u003e#553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/b1c2733eb6c2aa89145db0a0d0f6da26b53c8913\"\u003e\u003ccode\u003eb1c2733\u003c/code\u003e\u003c/a\u003e Optimize marshal functions: reduce allocations in OID, float, and length enco...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/635f9ead665b1793577a3cd4ea6b8a98d0885ad4\"\u003e\u003ccode\u003e635f9ea\u003c/code\u003e\u003c/a\u003e Add marshalTLV helper, fix BER length encoding boundary (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/548\"\u003e#548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/8c20421e00bb5f2846368d2846ad745db170e303\"\u003e\u003ccode\u003e8c20421\u003c/code\u003e\u003c/a\u003e OID parsing: enforce RFC 2578 sub-identifier limit, optimize string building ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/d753443c6e912f86f502e3e4233660abf972b6aa\"\u003e\u003ccode\u003ed753443\u003c/code\u003e\u003c/a\u003e Update golangci-lint. (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/549\"\u003e#549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/1f4eae928414027f57f680859ea00511091cec8a\"\u003e\u003ccode\u003e1f4eae9\u003c/code\u003e\u003c/a\u003e BER Length Parsing Fixes (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/546\"\u003e#546\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/c7427906c931aeb39dc38bbe275d57574602ebd2\"\u003e\u003ccode\u003ec742790\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.31.2 to 4.31.6 (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/539\"\u003e#539\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gosnmp/gosnmp/commit/a447907f24bc8d45ceae5078922c92ccb7a1cd8f\"\u003e\u003ccode\u003ea447907\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/gosnmp/gosnmp/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gosnmp/gosnmp/compare/v1.42.1...v1.43.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-version` from 1.7.0 to 1.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/releases\"\u003egithub.com/hashicorp/go-version's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot by \u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required by \u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd benchmark test for version.String() by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() by \u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/go-version's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.8.0 (Nov 28, 2025)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd benchmark test for version.String() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/505335eb9df1a0063c4f4edadabbd4ba68a6039c\"\u003e\u003ccode\u003e505335e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/175\"\u003e#175\u003c/a\u003e from florianl/drop-init\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/6dd734b3cefc90f66227c6fd5128379c58d6618e\"\u003e\u003ccode\u003e6dd734b\u003c/code\u003e\u003c/a\u003e drop init()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0824a8987d8bc2b76c928ccea7d8a4a4f0b6c9e0\"\u003e\u003ccode\u003e0824a89\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/172\"\u003e#172\u003c/a\u003e from hashicorp/compliance/update-headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/9325934670def5fb8afc1eb866fbbeba243f02ce\"\u003e\u003ccode\u003e9325934\u003c/code\u003e\u003c/a\u003e [COMPLIANCE] Update Copyright and License Headers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/5b82b98895bba8b7269ab1602cf076c1e6478083\"\u003e\u003ccode\u003e5b82b98\u003c/code\u003e\u003c/a\u003e Bump the github-actions-breaking group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/171\"\u003e#171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/6c6cd77a9f1ca9f2f2d863e01f6bab0d80b87cc6\"\u003e\u003ccode\u003e6c6cd77\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking grou...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0e50733d9b842663695165c14d72dac8a3950aae\"\u003e\u003ccode\u003e0e50733\u003c/code\u003e\u003c/a\u003e Bump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compati...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/4e24ef111919ceedd2f5908daac338ce5f1cb080\"\u003e\u003ccode\u003e4e24ef1\u003c/code\u003e\u003c/a\u003e Bytes implementation (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/161\"\u003e#161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/437649ae7dd2561bfb77ae0735f821ece7feb969\"\u003e\u003ccode\u003e437649a\u003c/code\u003e\u003c/a\u003e Add benchmark test for version.String() (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/159\"\u003e#159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b6c4db5a031c3799bba8a7632eb91db17519fbfc\"\u003e\u003ccode\u003eb6c4db5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/158\"\u003e#158\u003c/a\u003e from hashicorp/compliance-template\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/olekukonko/tablewriter` from 1.0.9 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/c64d84b3ecc64a18cfc8ba10cdd8c52cc13a7d23\"\u003e\u003ccode\u003ec64d84b\u003c/code\u003e\u003c/a\u003e change version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/7eeef404cceb9c74428fb602156fe14f7442271e\"\u003e\u003ccode\u003e7eeef40\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/olekukonko/tablewriter/issues/306\"\u003e#306\u003c/a\u003e from olekukonko/malawi\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/b0b5ed2f35d01376c422193a3288d7613859a60b\"\u003e\u003ccode\u003eb0b5ed2\u003c/code\u003e\u003c/a\u003e use state rather than \u003ccode\u003etrue\u003c/code\u003e \u0026amp; \u003ccode\u003efalse\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/b9d4454e7dd8d334a06692e944a81613d7773d50\"\u003e\u003ccode\u003eb9d4454\u003c/code\u003e\u003c/a\u003e update ll\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/a181ed90820987a905dbb143e2198c2a7e62b349\"\u003e\u003ccode\u003ea181ed9\u003c/code\u003e\u003c/a\u003e move the cache interface to a single place\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/e4c235d81b3364219d6aea243ef1e80d71ba364c\"\u003e\u003ccode\u003ee4c235d\u003c/code\u003e\u003c/a\u003e use twcache in tablewriter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/a732dbbc103a36a722067e39725adb0113ceea67\"\u003e\u003ccode\u003ea732dbb\u003c/code\u003e\u003c/a\u003e introduce tw.Cache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/0681ddb36780c54dd789437e47252ff72fe726e1\"\u003e\u003ccode\u003e0681ddb\u003c/code\u003e\u003c/a\u003e use twcache in twwidth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/26504f0c9c5c143f5bb08a564e922d910804a199\"\u003e\u003ccode\u003e26504f0\u003c/code\u003e\u003c/a\u003e introduce twcache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/olekukonko/tablewriter/commit/8b8a91ad406731865fadbe1ed8d639cfe566a62d\"\u003e\u003ccode\u003e8b8a91a\u003c/code\u003e\u003c/a\u003e minor cleanup\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/olekukonko/tablewriter/compare/v1.0.9...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/samber/lo` from 1.51.0 to 1.52.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/samber/lo/releases\"\u003egithub.com/samber/lo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.52.0\u003c/h2\u003e\n\u003cp\u003eThrilled to announce the latest release of \u003ccode\u003esamber/lo\u003c/code\u003e!\u003c/p\u003e\n\u003cp\u003eThis version brings major improvements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eA new \u003ccode\u003eit/\u003c/code\u003e sub-package for everything related to the \u003ccode\u003eiter\u003c/code\u003e package added in Go 1.23. Big up to \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e for its help on this\u003c/li\u003e\n\u003cli\u003eA new documentation -\u0026gt; \u003ca href=\"https://lo.samber.dev\"\u003elo.samber.dev\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLots of micro fixes and performance improvements\u003c/li\u003e\n\u003cli\u003eBetter code quality with many more linters\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e✨ A good introduction to streams in Go !\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(chunk): Copy chunk in a new slice by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/648\"\u003esamber/lo#648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(zipx): fix the max length calculation by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/649\"\u003esamber/lo#649\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(retry): fix potential race condition in debounce callback by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/650\"\u003esamber/lo#650\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeature: add Mode function with tests and documentation by \u003ca href=\"https://github.com/ghosx\"\u003e\u003ccode\u003e@​ghosx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/644\"\u003esamber/lo#644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd FilterKeys for map by \u003ca href=\"https://github.com/rasha108bik\"\u003e\u003ccode\u003e@​rasha108bik\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/631\"\u003esamber/lo#631\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding FilterValues and fix FilterKeys signature by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/661\"\u003esamber/lo#661\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/samber/lo/pull/662\"\u003esamber/lo#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: more consistent panic strings by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/678\"\u003esamber/lo#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: minor example issues by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/676\"\u003esamber/lo#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: preserve type alias in DropByIndex and WithoutBy by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/675\"\u003esamber/lo#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding hassuffix + hasprefix by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/680\"\u003esamber/lo#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded Cut, CutPrefix, CutSuffix by \u003ca href=\"https://github.com/xelavopelk\"\u003e\u003ccode\u003e@​xelavopelk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/666\"\u003esamber/lo#666\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TrimXXX helpers by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/683\"\u003esamber/lo#683\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(string): fix division by zero by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/684\"\u003esamber/lo#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: avoid recover() if possible by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/685\"\u003esamber/lo#685\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: panic when passing -1 to Drop by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/688\"\u003esamber/lo#688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: avoid Keyify twice in Trim by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/689\"\u003esamber/lo#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: new iter package by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/672\"\u003esamber/lo#672\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: from slice to map with index passed by \u003ca href=\"https://github.com/mabrarov\"\u003e\u003ccode\u003e@​mabrarov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/697\"\u003esamber/lo#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: from slice/iterator to map with index passed by \u003ca href=\"https://github.com/mabrarov\"\u003e\u003ccode\u003e@​mabrarov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/698\"\u003esamber/lo#698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(generator): deprecate lo.Generator in favor of go \u0026quot;iter\u0026quot; package by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/700\"\u003esamber/lo#700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimization of map access by \u003ca href=\"https://github.com/mabrarov\"\u003e\u003ccode\u003e@​mabrarov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/692\"\u003esamber/lo#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimize map access everywhere by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/693\"\u003esamber/lo#693\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eTests\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(tests): fix flaky time-based tests by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/699\"\u003esamber/lo#699\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eStyle\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003elint: unit test improvements by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/674\"\u003esamber/lo#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: fix CI warnings and avoid named return parameters by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/682\"\u003esamber/lo#682\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: enable 7 more linters by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/686\"\u003esamber/lo#686\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: enable gofumpt extra rules by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/690\"\u003esamber/lo#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStyle/rename internal rand by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/701\"\u003esamber/lo#701\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elint: Apply testifylint linter recommendations by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/669\"\u003esamber/lo#669\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStyle add golangci config by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/670\"\u003esamber/lo#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: minor whitespace fixes by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/677\"\u003esamber/lo#677\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/a25c42dbd5103a67ed497b49bfefeaf6bb1df2ee\"\u003e\u003ccode\u003ea25c42d\u003c/code\u003e\u003c/a\u003e bump v1.52.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/15ac6249133fb9ecc366d63fa4f73b4512de180c\"\u003e\u003ccode\u003e15ac624\u003c/code\u003e\u003c/a\u003e docs: adding go playground examples to it/ package (\u003ca href=\"https://redirect.github.com/samber/lo/issues/708\"\u003e#708\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/c7e9459a8ba8a164c3ed413fb87f8e88ea40b115\"\u003e\u003ccode\u003ec7e9459\u003c/code\u003e\u003c/a\u003e docs: lots of various doc improvements (\u003ca href=\"https://redirect.github.com/samber/lo/issues/706\"\u003e#706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/fa2d72448a4343cd220574589849fbc1a44fff62\"\u003e\u003ccode\u003efa2d724\u003c/code\u003e\u003c/a\u003e doc: add it/mutable/parallel sub-package to llms.txt (\u003ca href=\"https://redirect.github.com/samber/lo/issues/707\"\u003e#707\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/aa3a48daa9ff35e99309ba8ca0f4278b82efc79e\"\u003e\u003ccode\u003eaa3a48d\u003c/code\u003e\u003c/a\u003e fix(doc): add missing \u0026quot;contributing\u0026quot; entry in the menu\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/5def06dac581094370022d0a55993693dff42f64\"\u003e\u003ccode\u003e5def06d\u003c/code\u003e\u003c/a\u003e fix(doc): various hot fixes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/f9a57ef01de1a8a861e66bf6e3e4a3cd19ae85b7\"\u003e\u003ccode\u003ef9a57ef\u003c/code\u003e\u003c/a\u003e chore(deps-dev): bump typescript from 5.6.3 to 5.9.3 in /docs (\u003ca href=\"https://redirect.github.com/samber/lo/issues/704\"\u003e#704\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/8b8aa284f3650810efd5fed3ad5cedabb932a78a\"\u003e\u003ccode\u003e8b8aa28\u003c/code\u003e\u003c/a\u003e fix(doc): make \u0026quot;iter\u0026quot; package visible in doc sidebar\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/39e418f10e6574f6b78e8c29e74eaba410c28576\"\u003e\u003ccode\u003e39e418f\u003c/code\u003e\u003c/a\u003e doc: adding a \u0026quot;contributing\u0026quot; page\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/1b3cb42cd1357dcc3d77f3e22dacd53767f9acc6\"\u003e\u003ccode\u003e1b3cb42\u003c/code\u003e\u003c/a\u003e fix(doc): improve algolia search\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/samber/lo/compare/v1.51.0...v1.52.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cobra` from 1.10.1 to 1.10.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cobra/releases\"\u003egithub.com/spf13/cobra's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003e🔧 Dependencies\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Migrate from \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e to \u003ccode\u003ego.yaml.in/yaml/v3\u003c/code\u003e by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e - the \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of \u003ccode\u003espf13/cobra\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📈 CI/CD\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix linter and allow CI to pass by \u003ca href=\"https://github.com/marckhouzam\"\u003e\u003ccode\u003e@​marckhouzam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2327\"\u003espf13/cobra#2327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: actions/setup-go v6 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2337\"\u003espf13/cobra#2337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔥✍🏼 Docs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd documentation for repeated flags functionality by \u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🍂 Refactors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace several vars with consts by \u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change minUsagePadding from var to const by \u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🤗 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThank you to our amazing contributors!!!!! 🐍 🚀\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/88b30ab89da2d0d0abb153818746c5a2d30eccec\"\u003e\u003ccode\u003e88b30ab\u003c/code\u003e\u003c/a\u003e chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2336\"\u003e#2336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/346d408fe7d4be00ff9481ea4d43c4abb5e5f77d\"\u003e\u003ccode\u003e346d408\u003c/code\u003e\u003c/a\u003e fix: actions/setup-go v6 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2337\"\u003e#2337\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/fc81d2003469e2a5c440306d04a6d82a54065979\"\u003e\u003ccode\u003efc81d20\u003c/code\u003e\u003c/a\u003e refactor: change minUsagePadding from var to const (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2325\"\u003e#2325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/117698a604b65e80a1ad5b76df67b604bcd992e0\"\u003e\u003ccode\u003e117698a\u003c/code\u003e\u003c/a\u003e refactor: replace several vars with consts (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/e2dd29ddc39acacf3af13013b06e1fe58b5c3599\"\u003e\u003ccode\u003ee2dd29d\u003c/code\u003e\u003c/a\u003e Add documentation for repeated flags functionality (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2316\"\u003e#2316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/062989255670f5e100abf70fa5e291a394915f89\"\u003e\u003ccode\u003e0629892\u003c/code\u003e\u003c/a\u003e Fix linter (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.31.0 to 0.33.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/f28b0b5467dda26d56f1240381158f7c334654d1\"\u003e\u003ccode\u003ef28b0b5\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/fd15e0fe894866ebff17ca3503d3706a967b061a\"\u003e\u003ccode\u003efd15e0f\u003c/code\u003e\u003c/a\u003e x/oauth2: populate RetrieveError from DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/792c8776358f0c8689d84eef0d0c966937d560fb\"\u003e\u003ccode\u003e792c877\u003c/code\u003e\u003c/a\u003e oauth2: use strings.Builder instead of bytes.Buffer\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.31.0...v0.33.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/sync` from 0.17.0 to 0.18.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sync/commit/1966f539bbd7664efd5bb7462ae94d9db67f4502\"\u003e\u003ccode\u003e1966f53\u003c/code\u003e\u003c/a\u003e errgroup: fix some typos in comment\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/sync/compare/v0.17.0...v0.18.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/term` from 0.34.0 to 0.37.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/1231d5465be98a7c5f01140358c142d365d4fbb6\"\u003e\u003ccode\u003e1231d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/3475bc8ef1a53c8b2f1fa69d5f804135ca97f035\"\u003e\u003ccode\u003e3475bc8\u003c/code\u003e\u003c/a\u003e term: fix some comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/3a0828a6667fd19fb680702513ff01f7afe76772\"\u003e\u003ccode\u003e3a0828a\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/1a11b45a6fdc76d25c81fa21867a34052ba8fbd1\"\u003e\u003ccode\u003e1a11b45\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/term/commit/d862cd548e11aa25b32848fd8a08ab1a178f30fa\"\u003e\u003ccode\u003ed862cd5\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.24.0 [generated]\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/term/compare/v0.34.0...v0.37.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/text` from 0.28.0 to 0.31.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/text/commit/e7ff6b3572e1a83c072ef150c9...\n\n_Description has been truncated_","html_url":"https://github.com/blitzy-showcase/vuls/pull/26","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/blitzy-showcase%2Fvuls/issues/26","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/26/packages"}},{"old_version":"0.9.2","new_version":"0.9.3","update_type":"patch","path":null,"pr_created_at":"2025-12-29T01:05:43.000Z","version_change":"0.9.2 → 0.9.3","issue":{"uuid":"3766182538","node_id":"PR_kwDOF48Qv866w1b6","number":384,"state":"open","title":"chore(deps): bump the common group across 1 directory with 43 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2025-12-29T01:05:43.000Z","updated_at":"2026-01-26T02:15:15.602Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":43,"packages":[{"name":"github.com/Azure/azure-sdk-for-go/sdk/azcore","old_version":"1.18.1","new_version":"1.20.0","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/Azure/azure-sdk-for-go/sdk/azidentity","old_version":"1.10.1","new_version":"1.13.1","repository_url":"https://github.com/Azure/azure-sdk-for-go"},{"name":"github.com/BurntSushi/toml","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/BurntSushi/toml"},{"name":"github.com/CycloneDX/cyclonedx-go","old_version":"0.9.2","new_version":"0.9.3","repository_url":"https://github.com/CycloneDX/cyclonedx-go"},{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.0","new_version":"4.9.1","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/containerd/containerd/v2","old_version":"2.1.3","new_version":"2.2.1","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.16.4","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gocsaf/csaf/v3","old_version":"3.3.0","new_version":"3.5.1","repository_url":"https://github.com/gocsaf/csaf"},{"name":"github.com/google/go-containerregistry","old_version":"0.20.6","new_version":"0.20.7","repository_url":"https://github.com/google/go-containerregistry"},{"name":"github.com/google/wire","old_version":"0.6.0","new_version":"0.7.0","repository_url":"https://github.com/google/wire"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.8.3","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/hashicorp/go-version","old_version":"1.7.0","new_version":"1.8.0","repository_url":"https://github.com/hashicorp/go-version"},{"name":"github.com/hashicorp/terraform-exec","old_version":"0.23.0","new_version":"0.24.0","repository_url":"https://github.com/hashicorp/terraform-exec"},{"name":"github.com/open-policy-agent/opa","old_version":"1.6.0","new_version":"1.12.1","repository_url":"https://github.com/open-policy-agent/opa"},{"name":"github.com/openvex/go-vex","old_version":"0.2.5","new_version":"0.2.7","repository_url":"https://github.com/openvex/go-vex"},{"name":"github.com/quasilyte/go-ruleguard/dsl","old_version":"0.3.22","new_version":"0.3.23","repository_url":"https://github.com/quasilyte/go-ruleguard"},{"name":"github.com/samber/lo","old_version":"1.51.0","new_version":"1.52.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/secure-systems-lab/go-securesystemslib","old_version":"0.9.0","new_version":"0.9.1","repository_url":"https://github.com/secure-systems-lab/go-securesystemslib"},{"name":"github.com/sigstore/rekor","old_version":"1.3.10","new_version":"1.4.3","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/spdx/tools-golang","old_version":"0.5.5","new_version":"0.5.6","repository_url":"https://github.com/spdx/tools-golang"},{"name":"github.com/zclconf/go-cty-yaml","old_version":"1.1.0","new_version":"1.2.0","repository_url":"https://github.com/zclconf/go-cty-yaml"},{"name":"helm.sh/helm/v3","old_version":"3.18.4","new_version":"3.19.4","repository_url":"https://github.com/helm/helm"},{"name":"modernc.org/sqlite","old_version":"1.38.0","new_version":"1.42.2"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 23 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/Azure/azure-sdk-for-go/sdk/azcore](https://github.com/Azure/azure-sdk-for-go) | `1.18.1` | `1.20.0` |\n| [github.com/Azure/azure-sdk-for-go/sdk/azidentity](https://github.com/Azure/azure-sdk-for-go) | `1.10.1` | `1.13.1` |\n| [github.com/BurntSushi/toml](https://github.com/BurntSushi/toml) | `1.5.0` | `1.6.0` |\n| [github.com/CycloneDX/cyclonedx-go](https://github.com/CycloneDX/cyclonedx-go) | `0.9.2` | `0.9.3` |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.0` | `4.9.1` |\n| [github.com/containerd/containerd/v2](https://github.com/containerd/containerd) | `2.1.3` | `2.2.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.2` | `5.16.4` |\n| [github.com/gocsaf/csaf/v3](https://github.com/gocsaf/csaf) | `3.3.0` | `3.5.1` |\n| [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) | `0.20.6` | `0.20.7` |\n| [github.com/google/wire](https://github.com/google/wire) | `0.6.0` | `0.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.8.3` |\n| [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.8.0` |\n| [github.com/hashicorp/terraform-exec](https://github.com/hashicorp/terraform-exec) | `0.23.0` | `0.24.0` |\n| [github.com/open-policy-agent/opa](https://github.com/open-policy-agent/opa) | `1.6.0` | `1.12.1` |\n| [github.com/openvex/go-vex](https://github.com/openvex/go-vex) | `0.2.5` | `0.2.7` |\n| [github.com/quasilyte/go-ruleguard/dsl](https://github.com/quasilyte/go-ruleguard) | `0.3.22` | `0.3.23` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` |\n| [github.com/secure-systems-lab/go-securesystemslib](https://github.com/secure-systems-lab/go-securesystemslib) | `0.9.0` | `0.9.1` |\n| [github.com/sigstore/rekor](https://github.com/sigstore/rekor) | `1.3.10` | `1.4.3` |\n| [github.com/spdx/tools-golang](https://github.com/spdx/tools-golang) | `0.5.5` | `0.5.6` |\n| [github.com/zclconf/go-cty-yaml](https://github.com/zclconf/go-cty-yaml) | `1.1.0` | `1.2.0` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.18.4` | `3.19.4` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.38.0` | `1.42.2` |\n\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azcore` from 1.18.1 to 1.20.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azcore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azcore/v1.20.0\u003c/h2\u003e\n\u003ch2\u003e1.20.0 (2025-11-06)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eruntime.FetcherForNextLinkOptions.HTTPVerb\u003c/code\u003e to specify the HTTP verb when fetching the next page via next link. Defaults to \u003ccode\u003ehttp.MethodGet\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed potential panic when decoding base64 strings.\u003c/li\u003e\n\u003cli\u003eFixed an issue in resource identifier parsing which prevented it from returning an error for malformed resource IDs.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azcore/v1.19.1\u003c/h2\u003e\n\u003ch2\u003e1.19.1 (2025-09-11)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed resource identifier parsing for provider-specific resource hierarchies containing \u0026quot;resourceGroups\u0026quot; segments.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImproved error fall-back for improperly authored long-running operations.\u003c/li\u003e\n\u003cli\u003eUpgraded dependencies.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/466795e90c61fba2bef23d311a61d4085b873718\"\u003e\u003ccode\u003e466795e\u003c/code\u003e\u003c/a\u003e Prep azcore@v1.20.0 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25563\"\u003e#25563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6fce23847166ed80b4cf520f668cbe696dc13eea\"\u003e\u003ccode\u003e6fce238\u003c/code\u003e\u003c/a\u003e [azsystemevents] Remove gopls (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25555\"\u003e#25555\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c0ac8eac0bcf293604a62be6c222981953f01c49\"\u003e\u003ccode\u003ec0ac8ea\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12476 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25549\"\u003e#25549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/047fb66f149d197b250b287b0e2463fcd0fe5d52\"\u003e\u003ccode\u003e047fb66\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/containerregistry/armcontainerregistry/2.0.0 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/908cfea8611fcd1925ebb6fcadc7e6967a8ec4f0\"\u003e\u003ccode\u003e908cfea\u003c/code\u003e\u003c/a\u003e [azsystemevents] Fixing build.go to work properly with tsp-client as the orch...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c30fd4cce97631fddfcd7220a248f118d58f7bdb\"\u003e\u003ccode\u003ec30fd4c\u003c/code\u003e\u003c/a\u003e cosmos: Allow the Query Pipeline to return an alternative query to execute in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1b445641d79282db0d522c12aef63269ad7648d0\"\u003e\u003ccode\u003e1b44564\u003c/code\u003e\u003c/a\u003e fixed resource type validation in ParseResourceType and correlated tests (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25\"\u003e#25\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e566eecdeb64e820ae1a53b3823fa68c0f3ae44b\"\u003e\u003ccode\u003ee566eec\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 12531 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25545\"\u003e#25545\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/053de1a0b1667030bca9bb7918c31ebb9397e3b7\"\u003e\u003ccode\u003e053de1a\u003c/code\u003e\u003c/a\u003e Increment package version after release of data/azcosmos (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25544\"\u003e#25544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/8e673bb221981d1737e8754c58fe24fcad140dc9\"\u003e\u003ccode\u003e8e673bb\u003c/code\u003e\u003c/a\u003e release pr (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25543\"\u003e#25543\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azcore/v1.18.1...sdk/azcore/v1.20.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/Azure/azure-sdk-for-go/sdk/azidentity` from 1.10.1 to 1.13.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/releases\"\u003egithub.com/Azure/azure-sdk-for-go/sdk/azidentity's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003esdk/azidentity/v1.13.1\u003c/h2\u003e\n\u003ch2\u003e1.13.1 (2025-11-10)\u003c/h2\u003e\n\u003ch3\u003eBugs Fixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureCLICredential\u003c/code\u003e quoted arguments incorrectly on Windows\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.13.0\u003c/h2\u003e\n\u003ch2\u003e1.13.0 (2025-10-07)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eAzurePowerShellCredential\u003c/code\u003e, which authenticates as the identity logged in to Azure PowerShell\n(thanks \u003ca href=\"https://github.com/ArmaanMcleod\"\u003eArmaanMcleod\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eWhen \u003ccode\u003eAZURE_TOKEN_CREDENTIALS\u003c/code\u003e is set to \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e, \u003ccode\u003eDefaultAzureCredential\u003c/code\u003e behaves the same as\ndoes \u003ccode\u003eManagedIdentityCredential\u003c/code\u003e when used directly. It doesn't apply special retry configuration or attempt to\ndetermine whether IMDS is available. (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25265\"\u003e#25265\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBreaking Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemoved the \u003ccode\u003eWorkloadIdentityCredential\u003c/code\u003e support for identity binding mode added in v1.13.0-beta.1.\nIt will return in v1.14.0-beta.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.13.0-beta.1\u003c/h2\u003e\n\u003ch2\u003e1.13.0-beta.1 (2025-09-17)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eAzurePowerShellCredential\u003c/code\u003e, which authenticates as the identity logged in to Azure PowerShell\n(thanks \u003ca href=\"https://github.com/ArmaanMcleod\"\u003eArmaanMcleod\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWorkloadIdentityCredential\u003c/code\u003e supports identity binding mode (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25056\"\u003e#25056\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003esdk/azidentity/v1.12.0\u003c/h2\u003e\n\u003ch2\u003e1.12.0 (2025-09-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures Added\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eDefaultAzureCredentialOptions.RequireAzureTokenCredentials\u003c/code\u003e. \u003ccode\u003eNewDefaultAzureCredential\u003c/code\u003e returns an\nerror when this option is true and the environment variable \u003ccode\u003eAZURE_TOKEN_CREDENTIALS\u003c/code\u003e has no value.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eAzureDeveloperCLICredential\u003c/code\u003e no longer hangs when AZD_DEBUG is set\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eGetToken\u003c/code\u003e methods of \u003ccode\u003eAzureCLICredential\u003c/code\u003e and \u003ccode\u003eAzureDeveloperCLICredential\u003c/code\u003e return an error when\n\u003ccode\u003eTokenRequestOptions.Claims\u003c/code\u003e has a value because these credentials can't acquire a token in that\ncase. The error messages describe the action required to get a token.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/6bb9b03b237d03bcfd0b32f0ca5e1b989d74e5e8\"\u003e\u003ccode\u003e6bb9b03\u003c/code\u003e\u003c/a\u003e azidentity v1.13.1 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25574\"\u003e#25574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/e18dbd7e4df3e80c9035f80b0681697f5de58411\"\u003e\u003ccode\u003ee18dbd7\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25367\"\u003e#25367\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/4f0facc097e3bb67576889e2a1b77a8698fb8086\"\u003e\u003ccode\u003e4f0facc\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.13.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25352\"\u003e#25352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/2d8c98bd54d913125f81db9904570b0b2d082109\"\u003e\u003ccode\u003e2d8c98b\u003c/code\u003e\u003c/a\u003e Selecting ManagedIdentityCredential disables DefaultAzureCredential's IMDS pr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/67dd4fcabdd32363441ac82c7cdc0126b1d30dcd\"\u003e\u003ccode\u003e67dd4fc\u003c/code\u003e\u003c/a\u003e Increment package version after release of azidentity (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25263\"\u003e#25263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/1a74bc8ed7a5c5313a1fefb8bc8e89ef4a7eb48c\"\u003e\u003ccode\u003e1a74bc8\u003c/code\u003e\u003c/a\u003e Prepare azidentity v1.12.0 for release (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25231\"\u003e#25231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/839a355f6e33311fca47dbbfde3efafd3e64f945\"\u003e\u003ccode\u003e839a355\u003c/code\u003e\u003c/a\u003e Test IMDS managed identity with a remote VM (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25237\"\u003e#25237\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c352be349a289395cd1f07f433074deb2373cd52\"\u003e\u003ccode\u003ec352be3\u003c/code\u003e\u003c/a\u003e Sync eng/common directory with azure-sdk-tools for PR 11931 (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25243\"\u003e#25243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/c994eca550d5f637ad16a2310ec91aff2ee63c6e\"\u003e\u003ccode\u003ec994eca\u003c/code\u003e\u003c/a\u003e gofmt (\u003ca href=\"https://redirect.github.com/Azure/azure-sdk-for-go/issues/25234\"\u003e#25234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Azure/azure-sdk-for-go/commit/9c95d95a667248c7af278401a95084f020bb7860\"\u003e\u003ccode\u003e9c95d95\u003c/code\u003e\u003c/a\u003e [Release] sdk/resourcemanager/computefleet/armcomputefleet/2.0.0-beta.1 gener...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/Azure/azure-sdk-for-go/compare/sdk/azidentity/v1.10.1...sdk/azidentity/v1.13.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/BurntSushi/toml` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/BurntSushi/toml/releases\"\u003egithub.com/BurntSushi/toml's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003cp\u003eTOML 1.1 is now enabled by default. The TOML changelog has an overview of changes: \u003ca href=\"https://github.com/toml-lang/toml/blob/main/CHANGELOG.md\"\u003ehttps://github.com/toml-lang/toml/blob/main/CHANGELOG.md\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eAlso two small fixes:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eEncode large floats as exponent syntax so that round-tripping things like \u003ccode\u003e5e+22\u003c/code\u003e is correct.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUsing duplicate array keys would not give an error:\u003c/p\u003e\n\u003cpre\u003e\u003ccode\u003earr = [1]\narr = [2]\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis will now correctly give a \u0026quot;Key 'arr' has already been defined\u0026quot; error.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/52534926c55b4cd85b05aee90569dd0668b8cf30\"\u003e\u003ccode\u003e5253492\u003c/code\u003e\u003c/a\u003e Enable TOML 1.1 by default (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/457\"\u003e#457\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/e954445330492727c18483838a15f88a4fc2d03a\"\u003e\u003ccode\u003ee954445\u003c/code\u003e\u003c/a\u003e Reject duplicate arrays (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/455\"\u003e#455\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6b16cbdb0f5a152aad1a6b89798a89655b84150d\"\u003e\u003ccode\u003e6b16cbd\u003c/code\u003e\u003c/a\u003e Update toml-test test cases from upstream (\u003ca href=\"https://redirect.github.com/BurntSushi/toml/issues/456\"\u003e#456\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/011fa2bc64cec3bb4ec450d11984f5e87b8e158c\"\u003e\u003ccode\u003e011fa2b\u003c/code\u003e\u003c/a\u003e Ensure constant format strings in wf calls\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/4b439bf5c6ef125a94df7a136733df5ba37d4c16\"\u003e\u003ccode\u003e4b439bf\u003c/code\u003e\u003c/a\u003e Remove itemNil\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/a473c125bce7078efea98a29698b7c1eb453ff0b\"\u003e\u003ccode\u003ea473c12\u003c/code\u003e\u003c/a\u003e Add test for out of range float64\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/b535ff89e48996de98ace1301decf94a3a480aa8\"\u003e\u003ccode\u003eb535ff8\u003c/code\u003e\u003c/a\u003e Add some boring tests for lex.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/6011ef0c32b214ac134b8228af2a667e171dad6e\"\u003e\u003ccode\u003e6011ef0\u003c/code\u003e\u003c/a\u003e Remove unreachable condition in lexTableNameStart\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/c8ca9e6c2d5987a6c23f89d13987ac335aad90c3\"\u003e\u003ccode\u003ec8ca9e6\u003c/code\u003e\u003c/a\u003e Remove unreachable condition\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/BurntSushi/toml/commit/1121f81c60f5947e13057fa5efecbf21369c651e\"\u003e\u003ccode\u003e1121f81\u003c/code\u003e\u003c/a\u003e Make tomlv read from stdin\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/BurntSushi/toml/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/CycloneDX/cyclonedx-go` from 0.9.2 to 0.9.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/releases\"\u003egithub.com/CycloneDX/cyclonedx-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.9.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6636ce32f8b15a5104fda6636937e91d62d647e7: fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e (\u003ca href=\"https://github.com/madpah\"\u003e\u003ccode\u003e@​madpah\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3e0f245f7b936eb38e16d0518a2a0020c0d69223: fix: add missing properties (\u003ca href=\"https://github.com/rdghe\"\u003e\u003ccode\u003e@​rdghe\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuilding and Packaging\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e24c8c33dd36390754b63f9ab056b2bf62b1eb70f: build(deps): bump actions/setup-go from 5.2.0 to 5.4.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e5fcf097fbdcedb6832989d0a74195f0698b48de8: build(deps): bump actions/setup-go from 5.4.0 to 5.5.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003eedea8aedbc8467a478ac4b11d587c9bdff68f0dd: build(deps): bump apache/skywalking-eyes from 0.6.0 to 0.7.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef32eebc413c71327df4fd6f264aa9f22e6e8cce1: build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7fdaa7fc2b0fe25ff5eb17d57bede84131415674: build(deps): bump gitpod/workspace-go from \u003ccode\u003e6932342\u003c/code\u003e to \u003ccode\u003e4702df2\u003c/code\u003e (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed62ea3cd450cbd3aebcbf9a50c8d12b2e4187b13: build(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.2.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4709461dea7961fbd824e433b3c68217ff856122: build(deps): bump goreleaser/goreleaser-action from 6.1.0 to 6.3.0 (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/72e4629d580624c7d6bd815e2d209a0a62d08047\"\u003e\u003ccode\u003e72e4629\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/243\"\u003e#243\u003c/a\u003e from madpah/fix/component-data-schema\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6636ce32f8b15a5104fda6636937e91d62d647e7\"\u003e\u003ccode\u003e6636ce3\u003c/code\u003e\u003c/a\u003e fix: \u003ccode\u003e.component.data\u003c/code\u003e was not a slice as per CycloneDX schema \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/242\"\u003e#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/a39bf6be93d4ecca076f4379031dc24cddac4937\"\u003e\u003ccode\u003ea39bf6b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/232\"\u003e#232\u003c/a\u003e from CycloneDX/dependabot/github_actions/actions/setu...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/cff8cd548a906d6a5534b60056f2ab4b3e9c522b\"\u003e\u003ccode\u003ecff8cd5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/233\"\u003e#233\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/6a93b76287597c06d2aa64e9281bb8e003bb8bbb\"\u003e\u003ccode\u003e6a93b76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/234\"\u003e#234\u003c/a\u003e from rdghe/fix/add-missing-properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/3e0f245f7b936eb38e16d0518a2a0020c0d69223\"\u003e\u003ccode\u003e3e0f245\u003c/code\u003e\u003c/a\u003e fix: add missing properties\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/f32eebc413c71327df4fd6f264aa9f22e6e8cce1\"\u003e\u003ccode\u003ef32eebc\u003c/code\u003e\u003c/a\u003e build(deps): bump gitpod/workspace-go from \u003ccode\u003e4702df2\u003c/code\u003e to \u003ccode\u003e8985eb7\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/5fcf097fbdcedb6832989d0a74195f0698b48de8\"\u003e\u003ccode\u003e5fcf097\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5.4.0 to 5.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/75427c8613483b8939c4c5916d55f00fc1f458ef\"\u003e\u003ccode\u003e75427c8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/222\"\u003e#222\u003c/a\u003e from CycloneDX/dependabot/docker/gitpod/workspace-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/commit/551624d8f7fd283bc4b8d25fde912659b3f9a18e\"\u003e\u003ccode\u003e551624d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CycloneDX/cyclonedx-go/issues/217\"\u003e#217\u003c/a\u003e from CycloneDX/dependabot/github_actions/apache/skywa...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CycloneDX/cyclonedx-go/compare/v0.9.2...v0.9.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.0 to 4.9.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eSmall Performance Change\u003c/h2\u003e\n\u003cp\u003eThis release contains a small change that gives a slight performance increase. Thanks to \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e for the PR!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: reduce string construction in isZeroLengthPattern by \u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jbedard\"\u003e\u003ccode\u003e@​jbedard\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/107\"\u003ebmatcuk/doublestar#107\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/8b690afa33319b0a1869367f594e53977e38bc99\"\u003e\u003ccode\u003e8b690af\u003c/code\u003e\u003c/a\u003e note about optimization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/792c3c946327797e17e733d738a09bae0c86ee75\"\u003e\u003ccode\u003e792c3c9\u003c/code\u003e\u003c/a\u003e perf: reduce string construction in isZeroLengthPattern\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.0...v4.9.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd/v2` from 2.1.3 to 2.2.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 2.2.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v2.2.1 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe first patch release for containerd 2.2 contains various fixes and improvements.\u003c/p\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eContainer Runtime Interface (CRI)\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eRedact all query parameters in CRI error logs\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12546\"\u003e#12546\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFix image defaults on Darwin to usable configuration\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12544\"\u003e#12544\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix possible panic from WithMediaTypeKeyPrefix\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12516\"\u003e#12516\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.4\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12593\"\u003e#12593\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix parsing of hugetlb.\u003c!-- raw HTML omitted --\u003e.events files\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/cgroups/pull/379\"\u003econtainerd/cgroups#379\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eKrisztian Litkey\u003c/li\u003e\n\u003cli\u003eMarkus Lehtonen\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eMike Brown\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eHeran Yang\u003c/li\u003e\n\u003cli\u003eWei Fu\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eSamuel Karp\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSascha Grunert\u003c/li\u003e\n\u003cli\u003eAkhil Mohan\u003c/li\u003e\n\u003cli\u003eAndrey Noskov\u003c/li\u003e\n\u003cli\u003eBrian Goff\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eDavanum Srinivas\u003c/li\u003e\n\u003cli\u003eGaurav Ghildiyal\u003c/li\u003e\n\u003cli\u003eNeeraj Krishna Gopalakrishna\u003c/li\u003e\n\u003cli\u003ePaweł Gronowski\u003c/li\u003e\n\u003cli\u003eTariq Ibrahim\u003c/li\u003e\n\u003cli\u003eTomerLev\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003ebo.jiang\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/dea7da592f5d1d2b7755e3a161be07f43fad8f75\"\u003e\u003ccode\u003edea7da5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12677\"\u003e#12677\u003c/a\u003e from dmcgowan/prepare-2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/f6bae1f8807a099a0b101e584f1f8aabddab91a6\"\u003e\u003ccode\u003ef6bae1f\u003c/code\u003e\u003c/a\u003e Prepare release notes for v2.2.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/b77253fbc2cf01be361f63a03d929ec53642fd59\"\u003e\u003ccode\u003eb77253f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12701\"\u003e#12701\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12699-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/c22cf5d49819a2996f184db954c53c2060916314\"\u003e\u003ccode\u003ec22cf5d\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux security profile to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d7532de751f81eee4f03001bb46e49d76a1607fb\"\u003e\u003ccode\u003ed7532de\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux RDT constraints to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/ef36e6181456ebb9919d2a51d786f416f85f780b\"\u003e\u003ccode\u003eef36e61\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux net devices to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/d56faf4261b5f946caa92c4869963f89f63a9b22\"\u003e\u003ccode\u003ed56faf4\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux scheduler attributes to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e1824d2613d32793cf1fd7282f0b9f5f6f622613\"\u003e\u003ccode\u003ee1824d2\u003c/code\u003e\u003c/a\u003e cri,nri: pass any linux I/O priority to plugins.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/01d5490ae26a05b1a73ca9e253761005c7286754\"\u003e\u003ccode\u003e01d5490\u003c/code\u003e\u003c/a\u003e go.{mod,sum}: bump NRI deps to v0.11.0, re-vendor.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/815932a70c2fe5b659bb33b3048dd82c44e5d4b1\"\u003e\u003ccode\u003e815932a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12697\"\u003e#12697\u003c/a\u003e from thaJeztah/release_2.2_backport_bump_semconv\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v2.1.3...v2.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/platforms` from 1.0.0-rc.1 to 1.0.0-rc.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/platforms/releases\"\u003egithub.com/containerd/platforms's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.0-rc.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd WS2025 to Windows matcher and code optimizations by \u003ca href=\"https://github.com/kiashok\"\u003e\u003ccode\u003e@​kiashok\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/24\"\u003econtainerd/platforms#24\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse windowsMatchComparer for OSVersion match order by \u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mweibel\"\u003e\u003ccode\u003e@​mweibel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/containerd/platforms/pull/25\"\u003econtainerd/platforms#25\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ehttps://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2e51fd9435bd985e1753954b24f4b0453f4e4767\"\u003e\u003ccode\u003e2e51fd9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/25\"\u003e#25\u003c/a\u003e from helio/windows-os-version-sort\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8c0d9f9835bbe848b9c6f6f4a3a23f7dc97de927\"\u003e\u003ccode\u003e8c0d9f9\u003c/code\u003e\u003c/a\u003e use windowsMatchComparer for OSVersion match order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/2fec6c4aae8eedf1296a439247126dea2cb1c5b1\"\u003e\u003ccode\u003e2fec6c4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/platforms/issues/24\"\u003e#24\u003c/a\u003e from kiashok/add-ws2025\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/8447b0ad126eb97a40c5bde800d38370a39ba52f\"\u003e\u003ccode\u003e8447b0a\u003c/code\u003e\u003c/a\u003e Update ci.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/platforms/commit/4549974181760492ffc528fae4d7f29620a2c67c\"\u003e\u003ccode\u003e4549974\u003c/code\u003e\u003c/a\u003e Add WS2025 to Windows matcher and code optimizations\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/containerd/platforms/compare/v1.0.0-rc.1...v1.0.0-rc.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.16.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/de8ecc3b52e6a37b24a5a8ca362b54cafed2bc0b\"\u003e\u003ccode\u003ede8ecc3\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1743\"\u003e#1743\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-go-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3e752f043d07fd7f34edb6818b187c0267a5c762\"\u003e\u003ccode\u003e3e752f0\u003c/code\u003e\u003c/a\u003e build: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3a317549e0ca40927f062a3d53873ecc36a810c1\"\u003e\u003ccode\u003e3a31754\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1741\"\u003e#1741\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/acc28f117fb304f9197601cf0230ef8d263258a6\"\u003e\u003ccode\u003eacc28f1\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/95f388043ec1dd955327cec8b3b4b566a6e356ee\"\u003e\u003ccode\u003e95f3880\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1742\"\u003e#1742\u003c/a\u003e from go-git/renovate/releases/v5.x-go-golang.org-x-n...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/329f9266ae5d8ca6cb58ce3206004165090bd3cc\"\u003e\u003ccode\u003e329f926\u003c/code\u003e\u003c/a\u003e build: Update module golang.org/x/net to v0.38.0 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/399e04beb0b3284c5cb0d2bf684bb430c6612146\"\u003e\u003ccode\u003e399e04b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1734\"\u003e#1734\u003c/a\u003e from pjbgf/fix-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/2025eae3aed7eeb0659893c069f918155c6b8b78\"\u003e\u003ccode\u003e2025eae\u003c/code\u003e\u003c/a\u003e build: test, Fix build on Windows.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fb6806f2711e17db162623faa01b1fb25c4dbfcc\"\u003e\u003ccode\u003efb6806f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1732\"\u003e#1732\u003c/a\u003e from swills/find-hash-panic-fix-backport\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/382530f513390f06a5271148b3e133eaa8ebf725\"\u003e\u003ccode\u003e382530f\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, prevent panic\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gocsaf/csaf/v3` from 3.3.0 to 3.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gocsaf/csaf/releases\"\u003egithub.com/gocsaf/csaf/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.5.1\u003c/h2\u003e\n\u003cp\u003eThis is minor fix correcting a wrong validation test around the name and version of the engine.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: engine is invalid when name is missing by \u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate 3rd party libraries in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/711\"\u003egocsaf/csaf#711\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/benja-M-1\"\u003e\u003ccode\u003e@​benja-M-1\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/710\"\u003egocsaf/csaf#710\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.5.0...v3.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.5.0\u003c/h2\u003e\n\u003cp\u003eROLIE feed entries are extended to map all defined optional properties. This enables to parse the category properties of ROLIE entries again, which was broken since v3.4.0 by stricter checks. (The BSI feed is a prominent example of using the these properties.)\u003c/p\u003e\n\u003cp\u003eCommit history: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.4.0...v3.5.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v3.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eprovider-setup.md: Fix create URL in curl command by \u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/669\"\u003e#669\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/671\"\u003egocsaf/csaf#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix csaf checker listed check \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/674\"\u003egocsaf/csaf#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix minor docs typo in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/667\"\u003egocsaf/csaf#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDoc: Highlight the reason for the rate options existence in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/662\"\u003egocsaf/csaf#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs/csaf_downloader.md (minor) time_range in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/675\"\u003egocsaf/csaf#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd arm64 builds for windows and linux in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/663\"\u003egocsaf/csaf#663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove calculated version numbers in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/651\"\u003egocsaf/csaf#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimprove docs (minor) for csaf_provider in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/668\"\u003egocsaf/csaf#668\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unnecessary URL joins in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/676\"\u003egocsaf/csaf#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix doc comment: remove untrue claim of disallowing unknown fields by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/677\"\u003egocsaf/csaf#677\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix incorrect usage of formatted string by \u003ca href=\"https://github.com/mgoetzegb\"\u003e\u003ccode\u003e@​mgoetzegb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/678\"\u003egocsaf/csaf#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRename workflow go_legacy to \u0026quot;Go Test (oldstable)\u0026quot; in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/680\"\u003egocsaf/csaf#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRe-add unknown fields check by in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/681\"\u003egocsaf/csaf#681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove LoadCertificate unit test in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/692\"\u003egocsaf/csaf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupgrade dependencies, including go in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/695\"\u003egocsaf/csaf#695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Documentation about supported options in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/697\"\u003egocsaf/csaf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esilence revive linter warnings in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/696\"\u003egocsaf/csaf#696\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wagner-intevation\"\u003e\u003ccode\u003e@​wagner-intevation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/gocsaf/csaf/pull/670\"\u003egocsaf/csaf#670\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\"\u003ehttps://github.com/gocsaf/csaf/compare/v3.3.0...v3.4.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/586524a97e42c3fa5b97fbcb4e1169ad1df064da\"\u003e\u003ccode\u003e586524a\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries. (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/52ce6bcde6f4a2c22eefc021b27f99866bff9d58\"\u003e\u003ccode\u003e52ce6bc\u003c/code\u003e\u003c/a\u003e fix: engine is invalid when name is missing (\u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/93932716992154d1944df7b710d08aa23dce8da0\"\u003e\u003ccode\u003e9393271\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/703\"\u003e#703\u003c/a\u003e from gocsaf/add_rolie_category\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/0630a9a64a5cc0b4a95159cf4827c8a006a5e8f3\"\u003e\u003ccode\u003e0630a9a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/706\"\u003e#706\u003c/a\u003e from gocsaf/3rdparty_updates_2025_11_28\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/502376ce3a4104d62b7614557f53a1c38ad62f3c\"\u003e\u003ccode\u003e502376c\u003c/code\u003e\u003c/a\u003e fix typo: contibutor -\u0026gt; contributor\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/c678a97d4307b8b1defb78f79b6115c119545cf5\"\u003e\u003ccode\u003ec678a97\u003c/code\u003e\u003c/a\u003e Update 3rd party libraries\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/9a37a8ecfa695dbd973cb9e3dacc2049f14c109a\"\u003e\u003ccode\u003e9a37a8e\u003c/code\u003e\u003c/a\u003e Add more fields to rolie entry.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/d6bac95e454665b8d5c040b92f72cbb0f1656a74\"\u003e\u003ccode\u003ed6bac95\u003c/code\u003e\u003c/a\u003e Removed debugging code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/5a1c2a08735444720d999dbdcde5a9f529c6c3d9\"\u003e\u003ccode\u003e5a1c2a0\u003c/code\u003e\u003c/a\u003e Add category field to ROLIE feed model.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gocsaf/csaf/commit/8dd4cb4fa84d6e5b070be81d2c1a93ccb75ffe66\"\u003e\u003ccode\u003e8dd4cb4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/gocsaf/csaf/issues/696\"\u003e#696\u003c/a\u003e from gocsaf/slient-revive\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gocsaf/csaf/compare/v3.3.0...v3.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.3 to 5.3.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e9547a11aa603c52a31e315cdcaa71d0f25b921a\"\u003e\u003ccode\u003ee9547a1\u003c/code\u003e\u003c/a\u003e Bump Go version to indicate correct minimum requirement (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/452\"\u003e#452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/3839817bf313f2cfe58853dcbe542ffd06300831\"\u003e\u003ccode\u003e3839817\u003c/code\u003e\u003c/a\u003e Create CODEOWNERS (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/449\"\u003e#449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/go-containerregistry` from 0.20.6 to 0.20.7\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/go-containerregistry/releases\"\u003egithub.com/google/go-containerregistry's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.20.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix ArgsEscaped lint directive by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2137\"\u003egoogle/go-containerregistry#2137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etransport: Fix broken links to distribution docs by \u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(remote): using customized retry predicate func if provided by \u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdding docker file by \u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ecrane: Add timestamp to flatten layer by \u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(remote): pass retryBackoff option to transport by \u003ca href=\"https://github.com/aslafy-z\"\u003e\u003ccode\u003e@​aslafy-z\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/1628\"\u003egoogle/go-containerregistry#1628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpose clobber refusal error by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBuild artifacts for riscv64 by \u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies and deprecate DockerVersion field by \u003ca href=\"https://github.com/Subserial\"\u003e\u003ccode\u003e@​Subserial\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2164\"\u003egoogle/go-containerregistry#2164\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/guzalv\"\u003e\u003ccode\u003e@​guzalv\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2136\"\u003egoogle/go-containerregistry#2136\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/derekhjray\"\u003e\u003ccode\u003e@​derekhjray\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2135\"\u003egoogle/go-containerregistry#2135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/HassanJasim\"\u003e\u003ccode\u003e@​HassanJasim\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2138\"\u003egoogle/go-containerregistry#2138\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Stephanie0829\"\u003e\u003ccode\u003e@​Stephanie0829\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2117\"\u003egoogle/go-containerregistry#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2146\"\u003egoogle/go-containerregistry#2146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ffgan\"\u003e\u003ccode\u003e@​ffgan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/go-containerregistry/pull/2159\"\u003egoogle/go-containerregistry#2159\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ehttps://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/e075f209120b2467fd1b7d24727f1890a0edb74a\"\u003e\u003ccode\u003ee075f20\u003c/code\u003e\u003c/a\u003e \u003ccode\u003ego mod tidy\u003c/code\u003e on dependabot update (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2171\"\u003e#2171\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/45aacf4b5f2c55bddec27ba3ee023e105c187187\"\u003e\u003ccode\u003e45aacf4\u003c/code\u003e\u003c/a\u003e Bump the actions group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2170\"\u003e#2170\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/073b936909d86b06c25d6774243ae5979f85d6f1\"\u003e\u003ccode\u003e073b936\u003c/code\u003e\u003c/a\u003e Update dependencies and deprecate DockerVersion field (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2164\"\u003e#2164\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/390dacd7ad170b73ff404a8cef0b58bbf5fb42d2\"\u003e\u003ccode\u003e390dacd\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /cmd/krane (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2163\"\u003e#2163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/ca44d47f67072068ffbd4d2ead4851666c334a05\"\u003e\u003ccode\u003eca44d47\u003c/code\u003e\u003c/a\u003e Bump golang.org/x/crypto from 0.38.0 to 0.45.0 in /pkg/authn/k8schain (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2162\"\u003e#2162\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/999cc1fbfb704fa24e4568a4f3cdb61752f08e83\"\u003e\u003ccode\u003e999cc1f\u003c/code\u003e\u003c/a\u003e Bump github.com/docker/docker (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2161\"\u003e#2161\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/d1809c862390e60825858e6cd5835f87a46d7e7c\"\u003e\u003ccode\u003ed1809c8\u003c/code\u003e\u003c/a\u003e Build artifacts for riscv64 (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2159\"\u003e#2159\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/7471efdf98711e7c834b884a5660143a8a91bced\"\u003e\u003ccode\u003e7471efd\u003c/code\u003e\u003c/a\u003e Bump the auxiliary-deps group across 3 directories with 4 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2156\"\u003e#2156\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/2bb5bb01b8d981642fc2c257afb8fb12731014b3\"\u003e\u003ccode\u003e2bb5bb0\u003c/code\u003e\u003c/a\u003e Bump the actions group with 5 updates (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2155\"\u003e#2155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/go-containerregistry/commit/16371c1fe7e601ac6a69d112ec1efd91cbad9049\"\u003e\u003ccode\u003e16371c1\u003c/code\u003e\u003c/a\u003e Remove manual vendor setting for dependabot (\u003ca href=\"https://redirect.github.com/google/go-containerregistry/issues/2151\"\u003e#2151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/go-containerregistry/compare/v0.20.6...v0.20.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/wire` from 0.6.0 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/wire/releases\"\u003egithub.com/google/wire's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.7.0\u003c/h2\u003e\n\u003cp\u003eThis release updates the golang.org/x/tools dependency to fix a build breakage.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/9c25c9016f6825302537c4efdd5e897976f9c826\"\u003e\u003ccode\u003e9c25c90\u003c/code\u003e\u003c/a\u003e README: add a note that wire is no longer maintained (\u003ca href=\"https://redirect.github.com/google/wire/issues/434\"\u003e#434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/wire/commit/5c5c92a1c5f83d61a55f3f88213a6f701e1001f7\"\u003e\u003ccode\u003e5c5c92a\u003c/code\u003e\u003c/a\u003e all: update the x/tools dependency to fix the build with Go 1.25 (\u003ca href=\"https://redirect.github.com/google/wire/issues/432\"\u003e#432\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/wire/compare/v0.6.0...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.8.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump actions/cache from 4.2.4 to 4.3.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/562\"\u003ehashicorp/go-getter#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump aws-actions/configure-aws-credentials from 5.0.0 to 5.1.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/563\"\u003ehashicorp/go-getter#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove failed decompressed files by \u003ca href=\"https://github.com/allisonlarson\"\u003e\u003ccode\u003e@​allisonlarson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/564\"\u003ehashicorp/go-getter#564\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/allisonlarson\"\u003e\u003ccode\u003e@​allisonlarson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/564\"\u003ehashicorp/go-getter#564\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.2...v1.8.3\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.2...v1.8.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnsure temporary directory symlinks do not cause errors by \u003ca href=\"https://github.com/cam-stitt\"\u003e\u003ccode\u003e@​cam-stitt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/560\"\u003ehashicorp/go-getter#560\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cam-stitt\"\u003e\u003ccode\u003e@​cam-stitt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/560\"\u003ehashicorp/go-getter#560\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.1...v1.8.2\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.1...v1.8.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump ulikunitz/xz to v0.5.15 by \u003ca href=\"https://github.com/thevilledev\"\u003e\u003ccode\u003e@​thevilledev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/550\"\u003ehashicorp/go-getter#550\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove CI/CD, fix tests by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/554\"\u003ehashicorp/go-getter#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[fix] Windows junction handling by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/557\"\u003ehashicorp/go-getter#557\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thevilledev\"\u003e\u003ccode\u003e@​thevilledev\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/550\"\u003ehashicorp/go-getter#550\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.0...v1.8.1\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.0...v1.8.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump the actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/543\"\u003ehashicorp/go-getter#543\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump google-github-actions/auth from 2.1.12 to 3.0.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/546\"\u003ehashicorp/go-getter#546\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego: bump ulikunitz/xz to v.0.5.14 to resolve GHSA-jc7w-c686-c4v9 by \u003ca href=\"https://github.com/ryancragun\"\u003e\u003ccode\u003e@​ryancragun\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/547\"\u003ehashicorp/go-getter#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to aws-sdk-go-v2, v1 is unsupported by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/548\"\u003ehashicorp/go-getter#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eModernize codebase: Fix linting issues, update CI/CD workflow, and improve test categorization by \u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/549\"\u003ehashicorp/go-getter#549\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ryancragun\"\u003e\u003ccode\u003e@​ryancragun\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/547\"\u003ehashicorp/go-getter#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/YakDriver\"\u003e\u003ccode\u003e@​YakDriver\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/548\"\u003ehashicorp/go-getter#548\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.9...v1.8.0\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.9...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/13f1bb2b1a00fca5829b8d38d52101dca1b50368\"\u003e\u003ccode\u003e13f1bb2\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/564\"\u003e#564\u003c/a\u003e from allisonlarson/b-chmod-failed-tar\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c0ef527809f03855ca2da3b7599ce9edff81ade0\"\u003e\u003ccode\u003ec0ef527\u003c/code\u003e\u003c/a\u003e close file before removing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d1113d84d328a6f19a011cb60abab2e3261d1608\"\u003e\u003ccode\u003ed1113d8\u003c/code\u003e\u003c/a\u003e Handle failed decompressed files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/cfc3a4f04b43804b040abc07b844946526918d64\"\u003e\u003ccode\u003ecfc3a4f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/563\"\u003e#563\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-e02f...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/0c1f6684debbb053ca216d5cf1236532a99fb023\"\u003e\u003ccode\u003e0c1f668\u003c/code\u003e\u003c/a\u003e [chore] : Bump aws-actions/configure-aws-credentials\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/5e2f62af483e4558205b0cecfed21ac3e4c21512\"\u003e\u003ccode\u003e5e2f62a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/562\"\u003e#562\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-f175...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/5b4c45ff7f9f13f7d882b08a2cf4bd15373cca45\"\u003e\u003ccode\u003e5b4c45f\u003c/code\u003e\u003c/a\u003e [chore] : Bump actions/cache from 4.2.4 to 4.3.0 in the actions group\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/60a3d53b2d0930891aa02051873f45971f580b25\"\u003e\u003ccode\u003e60a3d53\u003c/code\u003e\u003c/a\u003e Ensure temporary directory symlinks do not cause errors (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/560\"\u003e#560\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d2e581e463eadea306c25431b008227381d56f78\"\u003e\u003ccode\u003ed2e581e\u003c/code\u003e\u003c/a\u003e [fix] Windows junction handling (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/557\"\u003e#557\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/928ae39251607aeb4103fe04f48d026f4ada82b7\"\u003e\u003ccode\u003e928ae39\u003c/code\u003e\u003c/a\u003e [chore] : Bump actions/setup-go from 5.5.0 to 6.0.0 in the actions group (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/558\"\u003e#558\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.8.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-version` from 1.7.0 to 1.8.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/releases\"\u003egithub.com/hashicorp/go-version's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot by \u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required by \u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd benchmark test for version.String() by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() by \u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/go-version's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.8.0 (Nov 28, 2025)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd benchmark test for version.String() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/g...\n\n_Description has been truncated_","html_url":"https://github.com/xycloops123/trivy/pull/384","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/xycloops123%2Ftrivy/issues/384","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/384/packages"}}]}