{"id":7396,"name":"github.com/go-git/go-billy/v5","ecosystem":"go","repository_url":"https://github.com/go-git/go-billy","issues_count":120,"created_at":"2025-06-06T22:11:28.399Z","updated_at":"2025-06-06T22:11:28.399Z","purl":"pkg:golang/github.com/go-git/go-billy/v5","metadata":{"id":3635655,"name":"github.com/go-git/go-billy/v5","ecosystem":"go","description":"","homepage":"https://github.com/go-git/go-billy","licenses":"Apache-2.0","normalized_licenses":["Apache-2.0"],"repository_url":"https://github.com/go-git/go-billy","keywords_array":[],"namespace":"github.com/go-git/go-billy","versions_count":11,"first_release_published_at":"2020-03-09T20:00:45.000Z","latest_release_published_at":"2025-01-10T16:06:35.000Z","latest_release_number":"v5.6.2","last_synced_at":"2025-06-07T08:31:15.108Z","created_at":"2022-04-11T08:41:05.991Z","updated_at":"2025-06-07T08:31:15.108Z","registry_url":"https://pkg.go.dev/github.com/go-git/go-billy/v5","install_command":"go get github.com/go-git/go-billy/v5","documentation_url":"https://pkg.go.dev/github.com/go-git/go-billy/v5#section-documentation","metadata":{},"repo_metadata":{"uuid":"246113572","full_name":"go-git/go-billy","owner":"go-git","description":"The missing interface filesystem abstraction for Go","archived":false,"fork":false,"pushed_at":"2023-02-05T11:23:26.000Z","size":228,"stargazers_count":209,"open_issues_count":16,"forks_count":30,"subscribers_count":6,"default_branch":"master","last_synced_at":"2023-03-04T21:03:07.216Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://pkg.go.dev/github.com/go-git/go-billy/v5","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"logo_url":null,"metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2020-03-09T18:35:04.000Z","updated_at":"2023-03-02T20:01:41.000Z","dependencies_parsed_at":"2023-02-18T23:15:51.271Z","dependency_job_id":null,"html_url":"https://github.com/go-git/go-billy","commit_stats":null,"repository_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/go-git%2Fgo-billy","tags_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/go-git%2Fgo-billy/tags","manifests_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/go-git%2Fgo-billy/manifests","owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/go-git","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":108921946,"host_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names"}},"repo_metadata_updated_at":"2023-03-21T18:53:13.624Z","dependent_packages_count":7221,"downloads":null,"downloads_period":null,"dependent_repos_count":13460,"rankings":{"downloads":null,"dependent_repos_count":0.06543457475822391,"dependent_packages_count":0.04459091465298935,"stargazers_count":3.4891872216956576,"forks_count":4.176600212583931,"docker_downloads_count":0.030902540852536808,"average":1.5613430929086678},"purl":"pkg:golang/github.com/go-git/go-billy/v5","advisories":[],"docker_usage_url":"https://docker.ecosyste.ms/usage/go/github.com/go-git/go-billy/v5","docker_dependents_count":2482,"docker_downloads_count":13787218905,"usage_url":"https://repos.ecosyste.ms/usage/go/github.com/go-git/go-billy/v5","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/go/github.com/go-git/go-billy/v5/dependencies","status":null,"funding_links":[],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fgo-git%2Fgo-billy%2Fv5/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fgo-git%2Fgo-billy%2Fv5/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fgo-git%2Fgo-billy%2Fv5/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fgo-git%2Fgo-billy%2Fv5/related_packages","maintainers":[],"registry":{"name":"proxy.golang.org","url":"https://proxy.golang.org","ecosystem":"go","default":true,"packages_count":1886302,"maintainers_count":0,"namespaces_count":723964,"keywords_count":98339,"github":"golang","metadata":{"funded_packages_count":39348},"icon_url":"https://github.com/golang.png","created_at":"2022-04-04T15:19:22.939Z","updated_at":"2025-06-07T05:37:05.003Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/namespaces"}},"unique_repositories_count":88,"unique_repositories_count_past_30_days":6,"recent_issues":[{"uuid":"4554428567","node_id":"PR_kwDOOgZF2c7g8Zu_","number":28,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in the go_modules group across 1 directory","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T12:51:08.000Z","updated_at":"2026-05-30T12:51:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"the go_modules group across 1 directory","ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the / directory: [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy).\n\nUpdates `github.com/go-git/go-billy/v5` from 5.8.0 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/AKJUS/frizbee/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/AKJUS/frizbee/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AKJUS%2Ffrizbee/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"},{"uuid":"4554010034","node_id":"PR_kwDOQXHkUc7g7LQz","number":2,"state":"open","title":"build(deps): bump the go_modules group across 2 directories with 25 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T09:39:44.000Z","updated_at":"2026-05-30T09:41:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"go_modules","update_count":25,"packages":[{"name":"github.com/agentgateway/agentgateway","old_version":"0.10.6-0.20251108001651-54763bfe02e1","new_version":"0.12.0","repository_url":"https://github.com/agentgateway/agentgateway"},{"name":"google.golang.org/grpc","old_version":"1.76.0","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"helm.sh/helm/v3","old_version":"3.19.2","new_version":"3.20.2","repository_url":"https://github.com/helm/helm"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.11.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/theupdateframework/go-tuf/v2","old_version":"2.0.2","new_version":"2.4.1","repository_url":"https://github.com/theupdateframework/go-tuf"},{"name":"github.com/anchore/quill","old_version":"0.5.1","new_version":"0.7.1","repository_url":"https://github.com/anchore/quill"},{"name":"github.com/buger/jsonparser","old_version":"1.1.1","new_version":"1.1.2","repository_url":"https://github.com/buger/jsonparser"},{"name":"github.com/cloudflare/circl","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/go-git/go-git/v5","old_version":"5.14.0","new_version":"5.19.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/moby/spdystream","old_version":"0.5.0","new_version":"0.5.1","repository_url":"https://github.com/moby/spdystream"},{"name":"github.com/sigstore/cosign/v2","old_version":"2.5.0","new_version":"2.6.2","repository_url":"https://github.com/sigstore/cosign"},{"name":"github.com/slack-go/slack","old_version":"0.17.3","new_version":"0.23.1","repository_url":"https://github.com/slack-go/slack"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/agentgateway/agentgateway](https://github.com/agentgateway/agentgateway) | `0.10.6-0.20251108001651-54763bfe02e1` | `0.12.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.76.0` | `1.79.3` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.19.2` | `3.20.2` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.11.0` |\n| [github.com/theupdateframework/go-tuf/v2](https://github.com/theupdateframework/go-tuf) | `2.0.2` | `2.4.1` |\n| [github.com/anchore/quill](https://github.com/anchore/quill) | `0.5.1` | `0.7.1` |\n| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.1` | `1.1.2` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.6.1` | `1.6.3` |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.2` | `5.9.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.14.0` | `5.19.1` |\n| [github.com/moby/spdystream](https://github.com/moby/spdystream) | `0.5.0` | `0.5.1` |\n| [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) | `2.5.0` | `2.6.2` |\n| [github.com/slack-go/slack](https://github.com/slack-go/slack) | `0.17.3` | `0.23.1` |\n\nBumps the go_modules group with 3 updates in the /hack/utils/applier directory: [github.com/moby/spdystream](https://github.com/moby/spdystream), [golang.org/x/crypto](https://github.com/golang/crypto) and [golang.org/x/oauth2](https://github.com/golang/oauth2).\n\nUpdates `github.com/agentgateway/agentgateway` from 0.10.6-0.20251108001651-54763bfe02e1 to 0.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/agentgateway/agentgateway/releases\"\u003egithub.com/agentgateway/agentgateway's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.12.0\u003c/h2\u003e\n\u003cp\u003eAgentgateway is an open source project that is built on AI-native protocols to connect, secure, and observe agent-to-agent and agent-to-tool communication across any agent framework and environment.\u003c/p\u003e\n\u003cp\u003eThis release contains various bug fixes, and some major changes to the CEL expression language implementation.\u003c/p\u003e\n\u003ch2\u003eCEL\u003c/h2\u003e\n\u003cp\u003eThis release comes with a rewrite of the \u003ca href=\"https://agentgateway.dev/docs/local/latest/reference/cel/\"\u003eCEL implementation\u003c/a\u003e that powers policies such as authorization, rate limiting, access logging, etc. The new implementation is 5-500x faster depending on the expression; typical users can see up to a 50% increase in end-to-end throughput.\u003c/p\u003e\n\u003cp\u003eAdditionally, a new CEL playground is available in the UI to help troubleshoot and test CEL expressions.\u003c/p\u003e\n\u003cp\u003eWhile most of the changes are internal, a few minor behavioral changes are present\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix MCP attributes not being available during logging (only authz)\u003c/li\u003e\n\u003cli\u003eBefore, we snapshotted the request once at an arbitrary (and inconsistent, across requests) time. Now, each execution consistently gets the 'current' view of the request and response. For example, during logging, manipulations from policies would be observed.\u003c/li\u003e\n\u003cli\u003eNew function names: \u003ccode\u003ebase64Encode\u003c/code\u003e -\u0026gt; \u003ccode\u003ebase64.encode\u003c/code\u003e (this comes from a bump in the library before forking it). The old name is available for backwards compat.\u003c/li\u003e\n\u003cli\u003eBefore, the top level variables were always present but could be \u003ccode\u003enull\u003c/code\u003e. Now, if they are not available they will fail to lookup instead of return \u003ccode\u003enull\u003c/code\u003e. For example, before \u003ccode\u003ehas(jwt)\u003c/code\u003e would always return \u003ccode\u003etrue\u003c/code\u003e; now it will only return \u003ccode\u003etrue\u003c/code\u003e if there is a JWT.\u003c/li\u003e\n\u003cli\u003eIts faster!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSPIKE: Fork htpasswd-verify and upgrade deps by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/787\"\u003eagentgateway/agentgateway#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mcp/openapi): improve path, query and header handling by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/866\"\u003eagentgateway/agentgateway#866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDelete MCP-Authentication.md by \u003ca href=\"https://github.com/rinormaloku\"\u003e\u003ccode\u003e@​rinormaloku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/872\"\u003eagentgateway/agentgateway#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ellm: properly use user-defined buffer limit by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/881\"\u003eagentgateway/agentgateway#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCEL 2.0 by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/877\"\u003eagentgateway/agentgateway#877\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: update to rmcp 0.14.0 by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/885\"\u003eagentgateway/agentgateway#885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(aws-sse): migrate to official AWS EventStream crates by \u003ca href=\"https://github.com/apexlnc\"\u003e\u003ccode\u003e@​apexlnc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/879\"\u003eagentgateway/agentgateway#879\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(llm): Implements count_tokens for Anthropic/Vertex/Bedrock providers by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/883\"\u003eagentgateway/agentgateway#883\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Feat] MCP target policies by \u003ca href=\"https://github.com/Jack-Kilrain\"\u003e\u003ccode\u003e@​Jack-Kilrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/862\"\u003eagentgateway/agentgateway#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport hostname in incoming HBONE connect by \u003ca href=\"https://github.com/ymesika\"\u003e\u003ccode\u003e@​ymesika\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/859\"\u003eagentgateway/agentgateway#859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elocal: fix regression in mcp backends by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/888\"\u003eagentgateway/agentgateway#888\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(llm): bedrock token counting and get_messages conversions by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/884\"\u003eagentgateway/agentgateway#884\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: better propogate errors up by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/889\"\u003eagentgateway/agentgateway#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ellm e2e: add support for completions to anthropic via vertex by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/892\"\u003eagentgateway/agentgateway#892\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ui): upgrade npm packages by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/894\"\u003eagentgateway/agentgateway#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egha: cache only on main by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/893\"\u003eagentgateway/agentgateway#893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: bump rust by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/899\"\u003eagentgateway/agentgateway#899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExt Proc and Ext Authz: Treat Unset Header Append as Overwrite by \u003ca href=\"https://github.com/danehans\"\u003e\u003ccode\u003e@​danehans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/906\"\u003eagentgateway/agentgateway#906\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: enhance observability and route discovery plumbing by \u003ca href=\"https://github.com/apexlnc\"\u003e\u003ccode\u003e@​apexlnc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/901\"\u003eagentgateway/agentgateway#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd primitive TCP CEL logging support by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/916\"\u003eagentgateway/agentgateway#916\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: drop build from pull request by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/915\"\u003eagentgateway/agentgateway#915\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCEL playground by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/914\"\u003eagentgateway/agentgateway#914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/danehans\"\u003e\u003ccode\u003e@​danehans\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/906\"\u003eagentgateway/agentgateway#906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/agentgateway/agentgateway/compare/v0.11.3...v0.12.0\"\u003ehttps://github.com/agentgateway/agentgateway/compare/v0.11.3...v0.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.11.3\u003c/h2\u003e\n\u003cp\u003eAutomated release of v0.11.3.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/agentgateway/agentgateway/commits/v0.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.76.0 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.76.0...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `helm.sh/helm/v3` from 3.19.2 to 3.20.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/helm/helm/releases\"\u003ehelm.sh/helm/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHelm v3.20.2\u003c/h2\u003e\n\u003ch2\u003ev3.20.2\u003c/h2\u003e\n\u003cp\u003eHelm v3.20.2 is a security patch release. Users are encouraged to upgrade for the best experience.\u003c/p\u003e\n\u003cp\u003eThe community keeps growing, and we'd love to see you there!\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eJoin the discussion in \u003ca href=\"https://kubernetes.slack.com\"\u003eKubernetes Slack\u003c/a\u003e:\n\u003cul\u003e\n\u003cli\u003efor questions and just to hang out\u003c/li\u003e\n\u003cli\u003efor discussing PRs, code, and bugs\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eHang out at the Public Developer Call: Thursday, 9:30 Pacific via \u003ca href=\"https://zoom.us/j/696660622\"\u003eZoom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest, debug, and contribute charts: \u003ca href=\"https://artifacthub.io/packages/search?kind=0\"\u003eArtifactHub/packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/security/advisories/GHSA-hr2v-4r36-88hr\"\u003eGHSA-hr2v-4r36-88hr\u003c/a\u003e Helm Chart extraction output directory collapse via \u003ccode\u003eChart.yaml\u003c/code\u003e name dot-segment\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eInstallation and Upgrading\u003c/h2\u003e\n\u003cp\u003eDownload Helm v3.20.2. The common platform binaries are here:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-amd64.tar.gz\"\u003eMacOS amd64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-amd64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 7de04301f28b902a74f6286ed941cadc86ee5e6a9086a18f2ccf1f548e99d618)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-arm64.tar.gz\"\u003eMacOS arm64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-arm64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 139c794c22f16b579d08ddd3008c8038b9bb2814f35b5bcca91f50a1f458978d)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-amd64.tar.gz\"\u003eLinux amd64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-amd64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 258e830a9e613c8a7a302d6059b4bb3b9758f2f3e1bb8ea0d707ce10a9a72fea)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm.tar.gz\"\u003eLinux arm\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / a8a614c740399ff1ef32bcea6be6e4523f17e3376f9cf55c192cc48c8f2d1f19)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm64.tar.gz\"\u003eLinux arm64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 5ea2d6bc2cda3f8edf985e028809f5a9278f404fb8ab24044de9b7cb9b79a691)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-386.tar.gz\"\u003eLinux i386\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-386.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 88e4c1834307cdbc9f3b80920e1a383e4ba50bb488fb0be1b1fbd4918bb6ae73)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-ppc64le.tar.gz\"\u003eLinux ppc64le\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-ppc64le.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 98bb26a2f3c0b0c1a50db3181dff192554e0c204a07427d98d6b01e259f23cbe)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-s390x.tar.gz\"\u003eLinux s390x\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-s390x.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 584dd77ef8096d6ef939a1822f72840e749fc8311b2b13ae94df5f786862a56b)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-riscv64.tar.gz\"\u003eLinux riscv64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-riscv64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 957391d0710d72678acd09959b5dc77888cd007a78a4b99944d3b2fc7e1895ca)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-amd64.zip\"\u003eWindows amd64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-amd64.zip.sha256sum\"\u003echecksum\u003c/a\u003e / 24e8e5b71bab4ee17e6f989931ecf4fb144f9916cbe9990c0b6b2ec7b925c454)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-arm64.zip\"\u003eWindows arm64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-arm64.zip.sha256sum\"\u003echecksum\u003c/a\u003e / 7c940a73a6882f50b69aec3282549da4a49917669db18fc503db930fb74b9789)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe \u003ca href=\"https://helm.sh/docs/intro/quickstart/\"\u003eQuickstart Guide\u003c/a\u003e will get you going from there. For \u003cstrong\u003eupgrade instructions\u003c/strong\u003e or detailed installation notes, check the \u003ca href=\"https://helm.sh/docs/intro/install/\"\u003einstall guide\u003c/a\u003e. You can also use a \u003ca href=\"https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3\"\u003escript to install\u003c/a\u003e on any system with \u003ccode\u003ebash\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Next\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e4.1.5 and 3.20.3 are the next patch (bug fix) releases and will be on April 8, 2026\u003c/li\u003e\n\u003cli\u003e4.2.0 and 3.21.0 are the next minor (feature) releases and will be on May 13, 2026\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Chart dot-name path bug 8fb76d6ab555577e98e23b7500009537a471feee (George Jenkins)\u003c/li\u003e\n\u003cli\u003efix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow 3a8927e275c50cecde273872dad2a5576bd46375 (Terry Howe)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eHelm v3.20.1 is a patch release. Users are encouraged to upgrade for the best experience.\u003c/p\u003e\n\u003cp\u003eThe community keeps growing, and we'd love to see you there!\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eJoin the discussion in \u003ca href=\"https://kubernetes.slack.com\"\u003eKubernetes Slack\u003c/a\u003e:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/8fb76d6ab555577e98e23b7500009537a471feee\"\u003e\u003ccode\u003e8fb76d6\u003c/code\u003e\u003c/a\u003e fix: Chart dot-name path bug\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/3a8927e275c50cecde273872dad2a5576bd46375\"\u003e\u003ccode\u003e3a8927e\u003c/code\u003e\u003c/a\u003e fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/a2369ca71c0ef633bf6e4fccd66d634eb379b371\"\u003e\u003ccode\u003ea2369ca\u003c/code\u003e\u003c/a\u003e chore(deps): bump the k8s-io group with 7 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/90e10564f7ae746a153f3a03006e7061a54ad490\"\u003e\u003ccode\u003e90e1056\u003c/code\u003e\u003c/a\u003e add image index test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/911f2e908ae40b01ca95b857e94b8894043f64fd\"\u003e\u003ccode\u003e911f2e9\u003c/code\u003e\u003c/a\u003e fix pulling charts from OCI indices\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/76dad33fb1a2b6451920429b4f5f2dd575ea71bb\"\u003e\u003ccode\u003e76dad33\u003c/code\u003e\u003c/a\u003e Remove refactorring changes from coalesce_test.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/45c12f71407b6054a37d3e425d5293ee79a1ab37\"\u003e\u003ccode\u003e45c12f7\u003c/code\u003e\u003c/a\u003e Fix import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/26c6f19f967941dbe53bfb5e52d419b3b3e46075\"\u003e\u003ccode\u003e26c6f19\u003c/code\u003e\u003c/a\u003e Update pkg/chart/common/util/coalesce_test.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/09f5129d49a14c9336cea6f33adf5f52889915ef\"\u003e\u003ccode\u003e09f5129\u003c/code\u003e\u003c/a\u003e Fix lint warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/417deb2b6b7504357b0f580b76f5eed1bb8a5270\"\u003e\u003ccode\u003e417deb2\u003c/code\u003e\u003c/a\u003e Preserve nil values in chart already\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/helm/helm/compare/v3.19.2...v3.20.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.9.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump the all group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/453\"\u003ein-toto/in-toto-golang#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump the all group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/452\"\u003ein-toto/in-toto-golang#452\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/457\"\u003ein-toto/in-toto-golang#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/459\"\u003ein-toto/in-toto-golang#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ematch: Replace ^ with ! for negation in character classes by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/462\"\u003ein-toto/in-toto-golang#462\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/232\"\u003ein-toto/in-toto-golang#232\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate maintainers and governance by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/233\"\u003ein-toto/in-toto-golang#233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/234\"\u003ein-toto/in-toto-golang#234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.3 to 2.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/235\"\u003ein-toto/in-toto-golang#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/236\"\u003ein-toto/in-toto-golang#236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix expired signature in test by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/241\"\u003ein-toto/in-toto-golang#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.8.0 to 0.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/240\"\u003ein-toto/in-toto-golang#240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.5 to 2.1.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/239\"\u003ein-toto/in-toto-golang#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/242\"\u003ein-toto/in-toto-golang#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/243\"\u003ein-toto/in-toto-golang#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions workflows by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/246\"\u003ein-toto/in-toto-golang#246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.9.0 to 0.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/245\"\u003ein-toto/in-toto-golang#245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove linters that are no longer supported and add to make file by \u003ca href=\"https://github.com/pxp928\"\u003e\u003ccode\u003e@​pxp928\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/249\"\u003ein-toto/in-toto-golang#249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd match products feature by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/237\"\u003ein-toto/in-toto-golang#237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unfinished link on record stop by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/248\"\u003ein-toto/in-toto-golang#248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/250\"\u003ein-toto/in-toto-golang#250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.6.0 to 0.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/251\"\u003ein-toto/in-toto-golang#251\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/255\"\u003ein-toto/in-toto-golang#255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd tests for coverage in envelope.go by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/256\"\u003ein-toto/in-toto-golang#256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/257\"\u003ein-toto/in-toto-golang#257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/258\"\u003ein-toto/in-toto-golang#258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/259\"\u003ein-toto/in-toto-golang#259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes filepath pattern matching in windows by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/254\"\u003ein-toto/in-toto-golang#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.5.3 to 3.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/261\"\u003ein-toto/in-toto-golang#261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.6.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/262\"\u003ein-toto/in-toto-golang#262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.11.0 to 0.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/263\"\u003ein-toto/in-toto-golang#263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/264\"\u003ein-toto/in-toto-golang#264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.0 to 1.58.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/266\"\u003ein-toto/in-toto-golang#266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate Provenance v1 struct in favor of /attestation protobufs by \u003ca href=\"https://github.com/marcelamelara\"\u003e\u003ccode\u003e@​marcelamelara\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/267\"\u003ein-toto/in-toto-golang#267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.1 to 1.58.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/269\"\u003ein-toto/in-toto-golang#269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/270\"\u003ein-toto/in-toto-golang#270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop use of \u003ccode\u003eany\u003c/code\u003e for hash objects by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/238\"\u003ein-toto/in-toto-golang#238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.12.0 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/271\"\u003ein-toto/in-toto-golang#271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/273\"\u003ein-toto/in-toto-golang#273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.2 to 1.58.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/272\"\u003ein-toto/in-toto-golang#272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/net from 0.12.0 to 0.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/274\"\u003ein-toto/in-toto-golang#274\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/275\"\u003ein-toto/in-toto-golang#275\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/36d782ffb2ca3adbffcdce1fd971c23319dd4469\"\u003e\u003ccode\u003e36d782f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/462\"\u003e#462\u003c/a\u003e from in-toto/fix-negation-character\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/4a09e3bbc44bc687577b6532e57e8a4abfa5ddf4\"\u003e\u003ccode\u003e4a09e3b\u003c/code\u003e\u003c/a\u003e match: Replace ^ with ! for negation in character classes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c3302e8bc36e46119f7ae17c07eb879ff3507caa\"\u003e\u003ccode\u003ec3302e8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/459\"\u003e#459\u003c/a\u003e from in-toto/dependabot/go_modules/github.com/go-jose...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/016e87efbb55c6dd8772ce227002eeb1b6e3f593\"\u003e\u003ccode\u003e016e87e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/5b9df76e685eaa0a950ea9ba3f4a5561e87e13ad\"\u003e\u003ccode\u003e5b9df76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/457\"\u003e#457\u003c/a\u003e from in-toto/dependabot/go_modules/google.golang.org/...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/595b3fe0a13f481eb0ef898ccaff5e345e492a2f\"\u003e\u003ccode\u003e595b3fe\u003c/code\u003e\u003c/a\u003e chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/e396d248c9cf19f9e144f4e90c476af88742bf35\"\u003e\u003ccode\u003ee396d24\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/452\"\u003e#452\u003c/a\u003e from in-toto/dependabot/github_actions/all-502588e1ca\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/142b779059713332fe5c7856e98f1c564c6d6a09\"\u003e\u003ccode\u003e142b779\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/453\"\u003e#453\u003c/a\u003e from in-toto/dependabot/go_modules/all-d8ef5820aa\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/f741bcc43330554606b813fa0f8fe0c284fcdaea\"\u003e\u003ccode\u003ef741bcc\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c374dc9808137651fe8754eed363ec816cd59d2a\"\u003e\u003ccode\u003ec374dc9\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group across 1 directory with 2 updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.9.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/theupdateframework/go-tuf/v2` from 2.0.2 to 2.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/theupdateframework/go-tuf/releases\"\u003egithub.com/theupdateframework/go-tuf/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump github.com/sigstore/sigstore from 1.10.3 to 1.10.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/718\"\u003etheupdateframework/go-tuf#718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnforce a stricter validation on the repo name for TAP 4 by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/720\"\u003etheupdateframework/go-tuf#720\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.4.0...v2.4.1\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.4.0...v2.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd BitLength validation for SuccinctRoles by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/716\"\u003etheupdateframework/go-tuf#716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd thread safety documentation for key types by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/715\"\u003etheupdateframework/go-tuf#715\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse restrictive permissions (0700) for cache directories by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/714\"\u003etheupdateframework/go-tuf#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBreaking change: Replace panic with error return in Key.ID() by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/713\"\u003etheupdateframework/go-tuf#713\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.3.1...v2.4.0\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.3.1...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump golang.org/x/crypto from 0.40.0 to 0.45.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/702\"\u003etheupdateframework/go-tuf#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve govulncheck errors by bumping go to 1.24.11 by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/707\"\u003etheupdateframework/go-tuf#707\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/704\"\u003etheupdateframework/go-tuf#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emodern go (1.20+) improvements by \u003ca href=\"https://github.com/udf2457\"\u003e\u003ccode\u003e@​udf2457\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/705\"\u003etheupdateframework/go-tuf#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/sigstore/sigstore from 1.9.5 to 1.10.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/706\"\u003etheupdateframework/go-tuf#706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.9.1 to 0.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/708\"\u003etheupdateframework/go-tuf#708\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerform type assertion by \u003ca href=\"https://github.com/kommendorkapten\"\u003e\u003ccode\u003e@​kommendorkapten\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/710\"\u003etheupdateframework/go-tuf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd tests for failing type assertions by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/711\"\u003etheupdateframework/go-tuf#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVerify threshold is valid by \u003ca href=\"https://github.com/kommendorkapten\"\u003e\u003ccode\u003e@​kommendorkapten\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/712\"\u003etheupdateframework/go-tuf#712\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.3.0...v2.3.1\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.3.0...v2.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate the config for govulncheck by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/697\"\u003etheupdateframework/go-tuf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go to 1.24.9 by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/698\"\u003etheupdateframework/go-tuf#698\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.2.0...v2.3.0\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.2.0...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: treat http 403 as an updater error by \u003ca href=\"https://github.com/MDr164\"\u003e\u003ccode\u003e@​MDr164\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/687\"\u003etheupdateframework/go-tuf#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/sigstore/sigstore from 1.8.4 to 1.8.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/646\"\u003etheupdateframework/go-tuf#646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/cenkalti/backoff/v5 from 5.0.2 to 5.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/690\"\u003etheupdateframework/go-tuf#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.9.0 to 0.9.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/691\"\u003etheupdateframework/go-tuf#691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/692\"\u003etheupdateframework/go-tuf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/693\"\u003etheupdateframework/go-tuf#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/694\"\u003etheupdateframework/go-tuf#694\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/d361e2ea24e427581343dee5c7a32b485d79fcc0\"\u003e\u003ccode\u003ed361e2e\u003c/code\u003e\u003c/a\u003e Enforce a stricter validation on the repo name for TAP 4 (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/720\"\u003e#720\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/29aae36c83127913c24e881bc1f95dbb0f0961e6\"\u003e\u003ccode\u003e29aae36\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/sigstore/sigstore from 1.10.3 to 1.10.4 (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/718\"\u003e#718\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/bde5f18dc95dfac365fc452ee4e278e5fd66d4b4\"\u003e\u003ccode\u003ebde5f18\u003c/code\u003e\u003c/a\u003e Replace panic with error return in Key.ID() (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/713\"\u003e#713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/f400bf4c20476804475d34239f01212e1041ec38\"\u003e\u003ccode\u003ef400bf4\u003c/code\u003e\u003c/a\u003e Use restrictive permissions (0700) for cache directories (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/714\"\u003e#714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/d2dbc180e74f4fe371392bb0b02d5a8659bc2fa4\"\u003e\u003ccode\u003ed2dbc18\u003c/code\u003e\u003c/a\u003e Add thread safety documentation for key types (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/715\"\u003e#715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/846cd4eccd92b1a333c89cb45cf4f179de74018f\"\u003e\u003ccode\u003e846cd4e\u003c/code\u003e\u003c/a\u003e Add BitLength validation for SuccinctRoles (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/716\"\u003e#716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/b38d91fdbc69dfe31fe9230d97dafe527ea854a0\"\u003e\u003ccode\u003eb38d91f\u003c/code\u003e\u003c/a\u003e Verify threshold is valid (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/712\"\u003e#712\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/876cf2a82b320be6deb43f4ad629057b209a584e\"\u003e\u003ccode\u003e876cf2a\u003c/code\u003e\u003c/a\u003e Add tests for failing type assertions (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/73345ab6b0eb7e59d525dac17a428f043074cef6\"\u003e\u003ccode\u003e73345ab\u003c/code\u003e\u003c/a\u003e Perform type assertion (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/d3cdc4b2796d8c452ce17766f0cade2e80a3597d\"\u003e\u003ccode\u003ed3cdc4b\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.9....\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.0.2...v2.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/anchore/quill` from 0.5.1 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anchore/quill/releases\"\u003egithub.com/anchore/quill's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.7.1\u003c/h1\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow for unbounded reads for user controlled input [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/681\"\u003e#681\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAccount for excessive read limits in macho parsing [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/682\"\u003e#682\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eValidate developer log URL requests [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/680\"\u003e#680\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.7.0...v0.7.1\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch1\u003ev0.7.0\u003c/h1\u003e\n\u003ch3\u003eAdded Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edry run signing and notarization process before running in production [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/617\"\u003e#617\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/618\"\u003e#618\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTeamID is not set during signing [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/147\"\u003e#147\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/669\"\u003e#669\u003c/a\u003e \u003ca href=\"https://github.com/jflowers\"\u003e\u003ccode\u003e@​jflowers\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditional Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypo in install.sh help text [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/546\"\u003e#546\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/549\"\u003e#549\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003emigrate to latest tool ci patterns [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/670\"\u003e#670\u003c/a\u003e \u003ca href=\"https://github.com/spiffcs\"\u003e\u003ccode\u003e@​spiffcs\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate golang to v1.26 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/668\"\u003e#668\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003edoc: Add llms.txt for the 🤖 🕷️ [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/592\"\u003e#592\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eUpdate dependencies [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/627\"\u003e#627\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAdd periodic workflow to update certs [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/608\"\u003e#608\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003elint gh actions with zizmor [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/581\"\u003e#581\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate to go 1.24.x [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/543\"\u003e#543\u003c/a\u003e \u003ca href=\"https://github.com/westonsteimel\"\u003e\u003ccode\u003e@​westonsteimel\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate runners to ubuntu-24.04 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/541\"\u003e#541\u003c/a\u003e \u003ca href=\"https://github.com/kzantow\"\u003e\u003ccode\u003e@​kzantow\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.0\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/9cdb0823ea1d2c45dcc11557f8c5cd7291c75d29\"\u003e\u003ccode\u003e9cdb082\u003c/code\u003e\u003c/a\u003e do not allow for unbounded reads for user controlled input (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/681\"\u003e#681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/80cf3fe082678af0ec4f9f8dd93f39189d2dc1fe\"\u003e\u003ccode\u003e80cf3fe\u003c/code\u003e\u003c/a\u003e account for excessive read limits in macho parsing code (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/682\"\u003e#682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/e41d66a517c2dc20ad8e9fbccffbdc6ba5ef0020\"\u003e\u003ccode\u003ee41d66a\u003c/code\u003e\u003c/a\u003e validate developer log URL requests (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/899202c7eace3de7b3f4f7461bdfd1c4c38701db\"\u003e\u003ccode\u003e899202c\u003c/code\u003e\u003c/a\u003e update cred var values for p12 in release (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/679\"\u003e#679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/c73a37bd3b655633c1bd5466c2b2f65b2ae4032c\"\u003e\u003ccode\u003ec73a37b\u003c/code\u003e\u003c/a\u003e remove goreleaser config for release step + update tool refs (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/95e119c6cb513a69f6b45d3e86a9fbcb2c77b669\"\u003e\u003ccode\u003e95e119c\u003c/code\u003e\u003c/a\u003e persist credentials for git (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/02e765ab563811d7a3f0ede8df36977da92e8779\"\u003e\u003ccode\u003e02e765a\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/663\"\u003e#663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/530bb7f3ddf667d262891b79fb15c0147d81cf11\"\u003e\u003ccode\u003e530bb7f\u003c/code\u003e\u003c/a\u003e add test notarize command (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/3e8269c31055b1878a34c1954347254a42b37452\"\u003e\u003ccode\u003e3e8269c\u003c/code\u003e\u003c/a\u003e Set team ID during signing (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/12b3e8eb4c06d7582da9725fad3bc7c268872752\"\u003e\u003ccode\u003e12b3e8e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/blacktop/go-macho from 1.1.259 to 1.1.263 (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream` from 1.7.0 to 1.7.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/4599f78694cabb6853addabc6f92cb197fdb5647\"\u003e\u003ccode\u003e4599f78\u003c/code\u003e\u003c/a\u003e Release 2023-08-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2a439ce0fdda24816a5ea71c083765af67e93599\"\u003e\u003ccode\u003e2a439ce\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/46f31d76b34aefbc66bbfb08d2ef7e22267d4b66\"\u003e\u003ccode\u003e46f31d7\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/525486a4cfa9b8364ea5346a526dd1f92d3edc76\"\u003e\u003ccode\u003e525486a\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b4e3176642b69937575f61f752f7d094fb6f4084\"\u003e\u003ccode\u003eb4e3176\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2189\"\u003e#2189\u003c/a\u003e from aws/feat-presign-polly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/30fe9b8de4c8538156248ae21b577a3e49170750\"\u003e\u003ccode\u003e30fe9b8\u003c/code\u003e\u003c/a\u003e Modify and Merge polly mod import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f6c1d4839450e7f99850868570ff0c47850b72ca\"\u003e\u003ccode\u003ef6c1d48\u003c/code\u003e\u003c/a\u003e sync polly presigner from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/396f97a998c5fab5bc7ee7bd4297c6d0f42b661e\"\u003e\u003ccode\u003e396f97a\u003c/code\u003e\u003c/a\u003e Release 2023-08-18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/08ab45438df135fc66f2eaf80032694ff2486db3\"\u003e\u003ccode\u003e08ab454\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b50999bacbf780bf55d5c2b051c96e5c4467a5f6\"\u003e\u003ccode\u003eb50999b\u003c/code\u003e\u003c/a\u003e Update SDK's smithy-go dependency to v1.14.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.7.0...service/m2/v1.7.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/buger/jsonparser` from 1.1.1 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/buger/jsonparser/releases\"\u003egithub.com/buger/jsonparser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated travis to build for 1.13 to 1.15 by \u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003eeliminate 2 allocations in EachKey() by \u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003efix issue \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/150\"\u003e#150\u003c/a\u003e (in deleting case) by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efixing the oss-fuzz issue by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/227\"\u003ebuger/jsonparser#227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix parseInt overflow check false negative by \u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded bespoke error for null cases by \u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFuzzing: Add CIFuzz by \u003ca href=\"https://github.com/AdamKorcz\"\u003e\u003ccode\u003e@​AdamKorcz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/239\"\u003ebuger/jsonparser#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded latest versions of go to tests by \u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix EachKey pIdxFlags allocation by \u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on negative slice index in Delete with malformed JSON (GO-2026-4514) by \u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a69e7e01cd4ad67bdfd3ac2c080b9212af16f4b0\"\u003e\u003ccode\u003ea69e7e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/276\"\u003e#276\u003c/a\u003e from dbarrosop/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/d3eacc0bab779d6cf98221f5268828fff287876e\"\u003e\u003ccode\u003ed3eacc0\u003c/code\u003e\u003c/a\u003e fix: prevent panic on negative slice index in Delete with malformed JSON (GO-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/61b32cfdfa0f5d368ef7c7daef28ce12d538740f\"\u003e\u003ccode\u003e61b32cf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/241\"\u003e#241\u003c/a\u003e from unxcepted/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2181e8398f18397c9cacbaea9889314bb585e868\"\u003e\u003ccode\u003e2181e83\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/244\"\u003e#244\u003c/a\u003e from ScaleChamp/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/1510b5194182fc2fb898f28cdbceb42fd7258bfa\"\u003e\u003ccode\u003e1510b51\u003c/code\u003e\u003c/a\u003e Added latest versions of go to tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/6fc2e488ed3cc4f1f1debec3b0c70715bd7be6fd\"\u003e\u003ccode\u003e6fc2e48\u003c/code\u003e\u003c/a\u003e fix: eachkey allocation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a6f867eb7787e4ec54536b77b5d628ddf5c4f73d\"\u003e\u003ccode\u003ea6f867e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/239\"\u003e#239\u003c/a\u003e from AdamKorcz/cifuzz1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/cbc01fdbbe131706e89eeaaf0cd917760d8d3949\"\u003e\u003ccode\u003ecbc01fd\u003c/code\u003e\u003c/a\u003e Fuzzing: Add CIFuzz\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/dc92d6932a1272b4d8f485f798a88c3a75106256\"\u003e\u003ccode\u003edc92d69\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/228\"\u003e#228\u003c/a\u003e from jonomacd/null-handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2d9d6343e8621ddc18c70749663f74bc584c0de4\"\u003e\u003ccode\u003e2d9d634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/231\"\u003e#231\u003c/a\u003e from carsonip/fix-parseint-overflow-check\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. b...\n\n_Description has been truncated_\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpdate Go dependencies across the repo to pick up security fixes and performance improvements. Notable changes include gRPC and Helm security patches and a major `github.com/agentgateway/agentgateway` upgrade with faster CEL evaluation.\n\n- **Dependencies**\n  - `google.golang.org/grpc` → 1.79.3: fixes an auth bypass by rejecting malformed :path headers.\n  - `helm.sh/helm/v3` → 3.20.2: security patch for chart extraction path handling.\n  - `github.com/agentgateway/agentgateway` → 0.12.0: CEL rewrite with large perf gains and minor behavior tweaks.\n  - `github.com/buger/jsonparser` → 1.1.2: fixes panic on malformed JSON.\n  - `github.com/cloudflare/circl` → 1.6.3: bug fix in P-384 scalar multiplication.\n  - `github.com/sigstore/cosign/v2` → 2.6.2 and related `sigstore/*` bumps: supply chain signing updates.\n  - `github.com/moby/spdystream` → 0.5.1: patch applied in root and `hack/utils/applier`.\n  - Tooling/libs: Go 1.25.5, k8s libs v0.35.1, OpenTelemetry 1.39.0, `helm.sh/helm/v3` 3.20.2.\n\n- **Migration**\n  - Review CEL policies with `agentgateway` v0.12.0 (e.g., `base64.encode` naming and stricter variable lookups).\n  - Run an end-to-end smoke test to confirm routes with path-based auth still pass with gRPC’s stricter path validation.\n\n\u003csup\u003eWritten for commit f2d9194e186a8d9e9e41df92f41d5245e7adaa82. Summary will update on new commits.\u003c/sup\u003e\n\n\u003ca href=\"https://cubic.dev/pr/EmilynnJ/kgateway/pull/2?utm_source=github\" target=\"_blank\" rel=\"noopener noreferrer\" data-no-image-dialog=\"true\"\u003e\u003cpicture\u003e\u003csource media=\"(prefers-color-scheme: dark)\" srcset=\"https://cubic.dev/buttons/review-in-cubic-dark.svg\"\u003e\u003csource media=\"(prefers-color-scheme: light)\" srcset=\"https://cubic.dev/buttons/review-in-cubic-light.svg\"\u003e\u003cimg alt=\"Review in cubic\" src=\"https://cubic.dev/buttons/review-in-cubic-dark.svg\"\u003e\u003c/picture\u003e\u003c/a\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n\n\n\u003c!-- Macroscope's pull request summary starts here --\u003e\n\u003c!-- Macroscope will only edit the content between these invisible markers, and the markers themselves will not be visible in the GitHub rendered markdown. --\u003e\n\u003c!-- If you delete either of the start / end markers from your PR's description, Macroscope will append its summary at the bottom of the description. --\u003e\n\u003e [!NOTE]\n\u003e ### Bump Go dependencies across root and applier modules with 25 updates\n\u003e Updates [go.mod](https://github.com/EmilynnJ/kgateway/pull/2/files#diff-33ef32bf6c23acb95f5902d7097b7a1d5128ca061167ec0716715b0b9eeaa5f6) and [hack/utils/applier/go.mod](https://github.com/EmilynnJ/kgateway/pull/2/files#diff-7d16860419c22926d06b08ae9b67f33b83236c49e7008e3b4c652e3c87df9748) to their latest versions. Key upgrades include Kubernetes libraries to v0.35.1, Helm v3 to v3.20.2, agentgateway to v0.12.0, gRPC/protobuf, and extensive AWS SDK v1/v2 updates. Several indirect dependencies are removed (e.g. `go-chi/chi`, `mitchellh/mapstructure`, `sourcegraph/conc`) and new ones added (e.g. `moby/moby`, `coreos/go-oidc/v3`). Risk: transitive dependency additions and removals may surface unexpected build or runtime behavior in modules that relied on removed packages.\n\u003e\n\u003e \u003c!-- Macroscope's review summary starts here --\u003e\n\u003e\n\u003e \u003csup\u003e\u003ca href=\"https://app.macroscope.com\"\u003eMacroscope\u003c/a\u003e summarized f2d9194.\u003c/sup\u003e\n\u003e \u003c!-- Macroscope's review summary ends here --\u003e\n\u003e\n\u003c!-- macroscope-ui-refresh --\u003e\n\u003c!-- Macroscope's pull request summary ends here --\u003e","html_url":"https://github.com/EmilynnJ/kgateway/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/EmilynnJ%2Fkgateway/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4524763568","node_id":"PR_kwDOIF5UGs7fb8gu","number":2055,"state":"closed","title":"chore(deps): bump the gomod-minor-and-patch group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-27T01:37:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-26T14:04:44.000Z","updated_at":"2026-05-27T01:37:58.000Z","time_to_close":41592,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"gomod-minor-and-patch","update_count":17,"packages":[{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.1","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/charmbracelet/bubbletea","old_version":"1.3.5","new_version":"1.3.10","repository_url":"https://github.com/charmbracelet/bubbletea"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.4","new_version":"5.19.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gofrs/flock","old_version":"0.12.1","new_version":"0.13.0","repository_url":"https://github.com/gofrs/flock"},{"name":"github.com/hashicorp/go-version","old_version":"1.7.0","new_version":"1.9.0","repository_url":"https://github.com/hashicorp/go-version"},{"name":"github.com/samber/lo","old_version":"1.52.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/speakeasy-api/openapi","old_version":"1.20.0","new_version":"1.23.0","repository_url":"https://github.com/speakeasy-api/openapi"},{"name":"github.com/speakeasy-api/versioning-reports","old_version":"0.6.1","new_version":"0.7.0","repository_url":"https://github.com/speakeasy-api/versioning-reports"},{"name":"github.com/spf13/cobra","old_version":"1.10.1","new_version":"1.10.2","repository_url":"https://github.com/spf13/cobra"},{"name":"github.com/spf13/pflag","old_version":"1.0.9","new_version":"1.0.10","repository_url":"https://github.com/spf13/pflag"},{"name":"github.com/spf13/viper","old_version":"1.19.0","new_version":"1.21.0","repository_url":"https://github.com/spf13/viper"},{"name":"go.uber.org/zap","old_version":"1.27.1","new_version":"1.28.0","repository_url":"https://github.com/uber-go/zap"},{"name":"golang.org/x/oauth2","old_version":"0.33.0","new_version":"0.36.0","repository_url":"https://github.com/golang/oauth2"},{"name":"oras.land/oras-go/v2","old_version":"2.5.0","new_version":"2.6.0","repository_url":"https://github.com/oras-project/oras-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the gomod-minor-and-patch group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.1` | `4.10.0` |\n| [github.com/charmbracelet/bubbletea](https://github.com/charmbracelet/bubbletea) | `1.3.5` | `1.3.10` |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.2` | `5.9.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.4` | `5.19.1` |\n| [github.com/gofrs/flock](https://github.com/gofrs/flock) | `0.12.1` | `0.13.0` |\n| [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.9.0` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.52.0` | `1.53.0` |\n| [github.com/speakeasy-api/openapi](https://github.com/speakeasy-api/openapi) | `1.20.0` | `1.23.0` |\n| [github.com/speakeasy-api/versioning-reports](https://github.com/speakeasy-api/versioning-reports) | `0.6.1` | `0.7.0` |\n| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.1` | `1.10.2` |\n| [github.com/spf13/pflag](https://github.com/spf13/pflag) | `1.0.9` | `1.0.10` |\n| [github.com/spf13/viper](https://github.com/spf13/viper) | `1.19.0` | `1.21.0` |\n| [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.1` | `1.28.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.33.0` | `0.36.0` |\n| [oras.land/oras-go/v2](https://github.com/oras-project/oras-go) | `2.5.0` | `2.6.0` |\n\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.1 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/charmbracelet/bubbletea` from 1.3.5 to 1.3.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/charmbracelet/bubbletea/releases\"\u003egithub.com/charmbracelet/bubbletea's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.10\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e9edf69c677c7353eca5fae6d3ea3986af39717b7: fix: handle setWindowTitleMsg and windowSizeMsg in eventLoop (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eThoughts? Questions? We love hearing from you. Feel free to reach out on \u003ca href=\"https://x.com/charmcli\"\u003eX\u003c/a\u003e, \u003ca href=\"https://charm.land/discord\"\u003eDiscord\u003c/a\u003e, \u003ca href=\"https://charm.land/slack\"\u003eSlack\u003c/a\u003e, \u003ca href=\"https://mastodon.social/@charmcli\"\u003eThe Fediverse\u003c/a\u003e, \u003ca href=\"https://bsky.app/profile/charm.land\"\u003eBluesky\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.3.9\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e314b50c7b452fd737d28582ae9d27c04ea725001: feat: properly call nested sequenceMsg and batchMsg (\u003ca href=\"https://github.com/wolfmagnate\"\u003e\u003ccode\u003e@​wolfmagnate\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e9e0e8f0df1c55044ed04bd17f4b460e01e94dc9c: fix: recover from nested panics in Sequence and Batch commands (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6e1282a76358cb680de9d4de7520f9f99c9e2903: add example for the nested Sequence and Batch (\u003ca href=\"https://github.com/wolfmagnate\"\u003e\u003ccode\u003e@​wolfmagnate\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0290af4a499ee6a3e22822cebe1e74fdeac313be: simplify case for BatchMsg (\u003ca href=\"https://github.com/wolfmagnate\"\u003e\u003ccode\u003e@​wolfmagnate\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eThoughts? Questions? We love hearing from you. Feel free to reach out on \u003ca href=\"https://twitter.com/charmcli\"\u003eTwitter\u003c/a\u003e, \u003ca href=\"https://charm.land/discord\"\u003eDiscord\u003c/a\u003e, \u003ca href=\"https://charm.land/slack\"\u003eSlack\u003c/a\u003e, \u003ca href=\"https://mastodon.technology/@charm\"\u003eThe Fediverse\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.3.8\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e21eecd586367fd0cd78da6842c48f9c4b1185b6f: fix: send batch commands to cmds channel instead of executing them in event loop (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1473\"\u003e#1473\u003c/a\u003e) (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eThoughts? Questions? We love hearing from you. Feel free to reach out on \u003ca href=\"https://twitter.com/charmcli\"\u003eTwitter\u003c/a\u003e, \u003ca href=\"https://charm.land/discord\"\u003eDiscord\u003c/a\u003e, \u003ca href=\"https://charm.land/slack\"\u003eSlack\u003c/a\u003e, \u003ca href=\"https://mastodon.technology/@charm\"\u003eThe Fediverse\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.3.7\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e28ab4f41b29fef14d900c46a4873a45891a9ee9b: fix(renderer): properly reset cursor position to start of line (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1472\"\u003e#1472\u003c/a\u003e) (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec76509a9d4974207cd66255707d14f4f938f7f52: fix: compact sequences like batches (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/958\"\u003e#958\u003c/a\u003e) (\u003ca href=\"https://github.com/jdhenke\"\u003e\u003ccode\u003e@​jdhenke\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef5da8d068af74764b271a197de54e2bc2bfedb38: fix: handle nested SequenceMsg in event loop and use sync.WaitGroup f… (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1463\"\u003e#1463\u003c/a\u003e) (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e80ea844a7650c84e13958de14cdd4f63ac1775aa: fix: lint issues in key_windows.go and tty_windows.go (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ec3136ed49037a096fe05c6cb16f0a14a38e20c58: docs(license): update copyright date range (\u003ca href=\"https://github.com/meowgorithm\"\u003e\u003ccode\u003e@​meowgorithm\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e919805f8f0d134af7e3569b0054c13b561976dfa: docs(readme): update footer art (\u003ca href=\"https://github.com/meowgorithm\"\u003e\u003ccode\u003e@​meowgorithm\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef01583bb899e125c7a26d3b870eff585ec0f4816: docs: show the correct branch in the build badge (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/9edf69c677c7353eca5fae6d3ea3986af39717b7\"\u003e\u003ccode\u003e9edf69c\u003c/code\u003e\u003c/a\u003e fix: handle setWindowTitleMsg and windowSizeMsg in eventLoop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/31c0299982a8237acc35979ce07f25f441c62cd6\"\u003e\u003ccode\u003e31c0299\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/lucasb-eyer/go-colorful (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1496\"\u003e#1496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/ffa05021909e14c478cbe138ca78effbea04e4e0\"\u003e\u003ccode\u003effa0502\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/848\"\u003e#848\u003c/a\u003e from wolfmagnate/fix-nested-cmd-order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/9e0e8f0df1c55044ed04bd17f4b460e01e94dc9c\"\u003e\u003ccode\u003e9e0e8f0\u003c/code\u003e\u003c/a\u003e fix: recover from nested panics in Sequence and Batch commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/0966c3a140902959f86223eb4092bb52a74e8c96\"\u003e\u003ccode\u003e0966c3a\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into fix-nested-cmd-order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/21eecd586367fd0cd78da6842c48f9c4b1185b6f\"\u003e\u003ccode\u003e21eecd5\u003c/code\u003e\u003c/a\u003e fix: send batch commands to cmds channel instead of executing them in event l...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/9aae1f0a1bce0226c058b969f8f13f40bf012a69\"\u003e\u003ccode\u003e9aae1f0\u003c/code\u003e\u003c/a\u003e chore(examples): go mod tidy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/41f39959f2617a5cba6530608690e98c682c4439\"\u003e\u003ccode\u003e41f3995\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys in the all group (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1492\"\u003e#1492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/3da2d282196bb732a8b80a373318d73f29b6bb55\"\u003e\u003ccode\u003e3da2d28\u003c/code\u003e\u003c/a\u003e chore(deps): bump actions/setup-go from 5 to 6 in the all group (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1491\"\u003e#1491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/28ab4f41b29fef14d900c46a4873a45891a9ee9b\"\u003e\u003ccode\u003e28ab4f4\u003c/code\u003e\u003c/a\u003e fix(renderer): properly reset cursor position to start of line (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1472\"\u003e#1472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/charmbracelet/bubbletea/compare/v1.3.5...v1.3.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-billy/v5` from 5.6.2 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.4 to 5.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ev5: plumbing: transport/ssh, Shell-quote path by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2068\"\u003ego-git/go-git#2068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, Fix relative URL resolution by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2070\"\u003ego-git/go-git#2070\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, canonical remote for relative URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2074\"\u003ego-git/go-git#2074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, error on remote without URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2078\"\u003ego-git/go-git#2078\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/idxfile, Validate offset64 indices by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2084\"\u003ego-git/go-git#2084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: *: Reject malformed variable-length integers by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2092\"\u003ego-git/go-git#2092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/packfile, Tighten delta validation by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2091\"\u003ego-git/go-git#2091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Add \u003ccode\u003eworktreeFilesystem\u003c/code\u003e wrapper for worktree and hardening by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2100\"\u003ego-git/go-git#2100\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: config: validate submodule names by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2082\"\u003ego-git/go-git#2082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.19.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2111\"\u003ego-git/go-git#2111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Allow MkdirAll on worktree-root paths by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2117\"\u003ego-git/go-git#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Stop validating symlink target paths by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2116\"\u003ego-git/go-git#2116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format decoder input bounds and contracts by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2125\"\u003ego-git/go-git#2125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: format/packfile, cap delta chain depth in parser by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2137\"\u003ego-git/go-git#2137\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3c3be601aa6c0fd0d536c0d1e4f898b4c60e65fe\"\u003e\u003ccode\u003e3c3be60\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2137\"\u003e#2137\u003c/a\u003e from go-git/validate-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3fba897bd9e84b1aec170fa708b80e297b7d6cf6\"\u003e\u003ccode\u003e3fba897\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, cap delta chain depth in parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a97d6601c85e017bb64c2b0f2e3169f6ef6a6709\"\u003e\u003ccode\u003ea97d660\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2125\"\u003e#2125\u003c/a\u003e from hiddeco/v5/format-input-bounds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/aeaa125c8af8e4c4c95b574c22c5633e97fc436e\"\u003e\u003ccode\u003eaeaa125\u003c/code\u003e\u003c/a\u003e plumbing: format/objfile, require Header before Read\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1f38e171218526ea254a73187a52f0648253c1b8\"\u003e\u003ccode\u003e1f38e17\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, bound inflate size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f7545a02529e03998d6a7219140dc0e6644ad337\"\u003e\u003ccode\u003ef7545a0\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, bound nr by file size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/170b88181f385913a457a08b68c88956fb3f8e4f\"\u003e\u003ccode\u003e170b881\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2116\"\u003e#2116\u003c/a\u003e from pjbgf/symlink-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/7b6d994467f06630268904aa3c441b6de7248b31\"\u003e\u003ccode\u003e7b6d994\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2117\"\u003e#2117\u003c/a\u003e from hiddeco/v5/worktree-fs-mkdirall-root-noop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f0709b32f8fbb87c16cd63c6762d2cd515f36541\"\u003e\u003ccode\u003ef0709b3\u003c/code\u003e\u003c/a\u003e git: Stop validating symlink target paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/776d00f11d336f26862d0f2bab987b217f3a7844\"\u003e\u003ccode\u003e776d00f\u003c/code\u003e\u003c/a\u003e git: Allow MkdirAll on worktree-root paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gofrs/flock` from 0.12.1 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gofrs/flock/releases\"\u003egithub.com/gofrs/flock's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eMinimum Go version 1.24\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add Stat method by \u003ca href=\"https://github.com/ferhatelmas\"\u003e\u003ccode\u003e@​ferhatelmas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gofrs/flock/pull/127\"\u003egofrs/flock#127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.22.0 to 0.37.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ehttps://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/bfec60bb026171031050af631b6dec974f14e9fa\"\u003e\u003ccode\u003ebfec60b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/7094284415ad11369be4662a7c12be25963b4ea5\"\u003e\u003ccode\u003e7094284\u003c/code\u003e\u003c/a\u003e chore: update linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/8111aec69ca1501f26bb5198ed02673e87806e65\"\u003e\u003ccode\u003e8111aec\u003c/code\u003e\u003c/a\u003e feat: add Stat method (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/127\"\u003e#127\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/6f0f0ed4e14d546b238ae500710aba38b924e135\"\u003e\u003ccode\u003e6f0f0ed\u003c/code\u003e\u003c/a\u003e chore(deps): bump the github-actions group with 4 updates (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/126\"\u003e#126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/fe44231e563ec57fda028bc2484140fb1f24a6d1\"\u003e\u003ccode\u003efe44231\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/f74f0fb0332646c6b3730bfe9cce6fc0badc52c6\"\u003e\u003ccode\u003ef74f0fb\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 in the go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c1f6d161c8e3b29a4d612e34ff17b37d00d4cd2f\"\u003e\u003ccode\u003ec1f6d16\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c542c57ff5f6af1d62b6864144170b612731796a\"\u003e\u003ccode\u003ec542c57\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.29.2 to 3.29.5 in the github-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/425570ba9b698b04bb9506c4906f137fb34ac7e0\"\u003e\u003ccode\u003e425570b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/12753ea298e1aeb97f0881ff3fc07eabcb2b86e5\"\u003e\u003ccode\u003e12753ea\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.28.18 to 3.29.2 in the github-a...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-version` from 1.7.0 to 1.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/releases\"\u003egithub.com/hashicorp/go-version's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for prefix of any character by \u003ca href=\"https://github.com/brondum\"\u003e\u003ccode\u003e@​brondum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/79\"\u003ehashicorp/go-version#79\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate CHANGELOG for version 1.8.0 enhancements by \u003ca href=\"https://github.com/sonamtenzin2\"\u003e\u003ccode\u003e@​sonamtenzin2\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/178\"\u003ehashicorp/go-version#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/179\"\u003ehashicorp/go-version#179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/180\"\u003ehashicorp/go-version#180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/182\"\u003ehashicorp/go-version#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions to trigger on pull requests and update go version by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/185\"\u003ehashicorp/go-version#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaking group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/183\"\u003ehashicorp/go-version#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/186\"\u003ehashicorp/go-version#186\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sonamtenzin2\"\u003e\u003ccode\u003e@​sonamtenzin2\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/178\"\u003ehashicorp/go-version#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/brondum\"\u003e\u003ccode\u003e@​brondum\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/79\"\u003ehashicorp/go-version#79\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/185\"\u003ehashicorp/go-version#185\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.8.0...v1.9.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.8.0...v1.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot by \u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required by \u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd benchmark test for version.String() by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() by \u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/go-version's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.9.0 (Mar 30, 2026)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cp\u003eSupport parsing versions with custom prefixes via opt-in option in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/79\"\u003ehashicorp/go-version#79\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/179\"\u003ehashicorp/go-version#179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 4 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/180\"\u003ehashicorp/go-version#180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 3 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/182\"\u003ehashicorp/go-version#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions to trigger on pull requests and update go version in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/185\"\u003ehashicorp/go-version#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaking group across 1 directory in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/183\"\u003ehashicorp/go-version#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/186\"\u003ehashicorp/go-version#186\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.8.0 (Nov 28, 2025)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd benchmark test for version.String() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b80b1e68c4854757b38663ec02bada2d839b6f56\"\u003e\u003ccode\u003eb80b1e6\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for version 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/187\"\u003e#187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/e93736f31592c971fe8ebbd600844cad58b18ad8\"\u003e\u003ccode\u003ee93736f\u003c/code\u003e\u003c/a\u003e Bump the github-actions-backward-compatible group across 1 directory with 2 u...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/c009de06b736afce5f36f7180c1356d6a40bee38\"\u003e\u003ccode\u003ec009de0\u003c/code\u003e\u003c/a\u003e Bump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaki...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0474357931d1b2fe3d7ac492bcd8ee4802b3c22c\"\u003e\u003ccode\u003e0474357\u003c/code\u003e\u003c/a\u003e Update GitHub Actions to trigger on pull requests and update go version (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/185\"\u003e#185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b4ab5fc7d9d3eb48253b467f8f00b22403ec8089\"\u003e\u003ccode\u003eb4ab5fc\u003c/code\u003e\u003c/a\u003e Support parsing versions with custom prefixes via opt-in option (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/79\"\u003e#79\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/25c683be0f3830787e522175e0309e14de37ef7b\"\u003e\u003ccode\u003e25c683b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/182\"\u003e#182\u003c/a\u003e from hashicorp/dependabot/github_actions/github-actio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/4f2bcd85ae00b22689501fa029976f6544d18a6b\"\u003e\u003ccode\u003e4f2bcd8\u003c/code\u003e\u003c/a\u003e Bump the github-actions-backward-compatible group with 3 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/acb8b18f5cb9ada9a3c92a9477e54aab6dd7900f\"\u003e\u003ccode\u003eacb8b18\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/180\"\u003e#180\u003c/a\u003e from hashicorp/dependabot/github_actions/github-actio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0394c4f5ebf87c7bdf0a3034ee48613bfe5bf341\"\u003e\u003ccode\u003e0394c4f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/179\"\u003e#179\u003c/a\u003e from hashicorp/dependabot/github_actions/github-actio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b2fbaa797b31cd3b36e55bdc4f20a765acc9a251\"\u003e\u003ccode\u003eb2fbaa7\u003c/code\u003e\u003c/a\u003e Bump the github-actions-backward-compatible group across 1 directory with 2 u...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/samber/lo` from 1.52.0 to 1.53.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/samber/lo/releases\"\u003egithub.com/samber/lo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.53.0\u003c/h2\u003e\n\u003cp\u003eAnnouncing the latest release of \u003ccode\u003elo\u003c/code\u003e with lots of good gifts! 🎁\u003c/p\u003e\n\u003cp\u003e🌊 First, a big thanks to \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e for making lots of \u003cstrong\u003eperformance improvements\u003c/strong\u003e in the recent weeks.\u003c/p\u003e\n\u003cp\u003e🧪 Second, this release introduces a new \u003cstrong\u003e\u003ccode\u003esimd\u003c/code\u003e experimental package\u003c/strong\u003e. If you run on an amd64 architecture and a recent CPU, you can perform very fast operations thanks to SIMD CPU instructions.\n-\u0026gt; Documentation: \u003ca href=\"https://lo.samber.dev/docs/experimental/simd\"\u003ehttps://lo.samber.dev/docs/experimental/simd\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e💥 Third, this version adds \u003cstrong\u003e\u003ccode\u003e*Err\u003c/code\u003e variants\u003c/strong\u003e of many \u003ccode\u003elo\u003c/code\u003e helpers (like \u003cstrong\u003e\u003ccode\u003eMapErr\u003c/code\u003e, \u003ccode\u003eFlatMapErr\u003c/code\u003e, \u003ccode\u003eReduceErr\u003c/code\u003e, etc.\u003c/strong\u003e) whose callbacks can return an error and short-circuit execution when one occurs.\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThe \u003ccode\u003esimd\u003c/code\u003e sub-package is considered \u003cem\u003enot stable\u003c/em\u003e. We might break the initial API based on developers' feedback in the coming months.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003chr /\u003e\n\u003ch2\u003eFeatures \u0026amp; improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: adding SIMD helpers by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/801\"\u003esamber/lo#801\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding Error variants: MapErr, FlatMapErr, ReduceErr... by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/823\"\u003esamber/lo#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: support for buffer iterator by \u003ca href=\"https://github.com/mimol91\"\u003e\u003ccode\u003e@​mimol91\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/824\"\u003esamber/lo#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add Take, TakeWhile, FilterTake, Window, and Sliding functions by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/760\"\u003esamber/lo#760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add a Concat slice function. by \u003ca href=\"https://github.com/FGasper\"\u003e\u003ccode\u003e@​FGasper\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/714\"\u003esamber/lo#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add iterator slice helpers by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/791\"\u003esamber/lo#791\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(it): adding loit.Concat by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/722\"\u003esamber/lo#722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Allow Union/Intersect to take many lists by \u003ca href=\"https://github.com/frankywahl\"\u003e\u003ccode\u003e@​frankywahl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/181\"\u003esamber/lo#181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add Clone function to return shallow copy of slice collections by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/732\"\u003esamber/lo#732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: IntersectBy by \u003ca href=\"https://github.com/ghosx\"\u003e\u003ccode\u003e@​ghosx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/653\"\u003esamber/lo#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Support Custom Assert by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/755\"\u003esamber/lo#755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Must support Custom error handler. by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/752\"\u003esamber/lo#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: WithoutNth handle non-comparable types by \u003ca href=\"https://github.com/urisimchoni\"\u003e\u003ccode\u003e@​urisimchoni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/774\"\u003esamber/lo#774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove unnecessary type arguments in \u003ccode\u003eNewThrottle\u003c/code\u003e by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/773\"\u003esamber/lo#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: lo.IntersectBy + adding loit.IntersectBy + adding doc by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/739\"\u003esamber/lo#739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: rename IsSortedByKey to IsSortedBy by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/735\"\u003esamber/lo#735\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(iter/tuples): support break iteration over Zip[By] seq by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/757\"\u003esamber/lo#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(it.Mode): align behavior with lo.Mode and ensure consistent slice… by \u003ca href=\"https://github.com/intojhanurag\"\u003e\u003ccode\u003e@​intojhanurag\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/711\"\u003esamber/lo#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve Clone function to preserve nilness and avoid liveness issues by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/740\"\u003esamber/lo#740\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: reset n counter per iteration in it.Replace by \u003ca href=\"https://github.com/LikimiaD\"\u003e\u003ccode\u003e@​LikimiaD\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/799\"\u003esamber/lo#799\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: make Ellipsis operate on runes instead of bytes to prevent Unicode truncation by \u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/796\"\u003esamber/lo#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct \u003ccode\u003eDropByIndex\u003c/code\u003e handling of negative indices out of bounds by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/778\"\u003esamber/lo#778\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: remove helpers deprecated for more than 3y by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/810\"\u003esamber/lo#810\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Optimize UniqMap to reduce unnecessary slice preallocation by \u003ca href=\"https://github.com/ivolkoff\"\u003e\u003ccode\u003e@​ivolkoff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/710\"\u003esamber/lo#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(it): simplify DropLast, TrimSuffix, TrimPrefix and use range loops by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/782\"\u003esamber/lo#782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebench: fix iterators to actually iterate in benchmarks by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/781\"\u003esamber/lo#781\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: simplify slice cut/trim prefix/suffix functions by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/787\"\u003esamber/lo#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimize Sliding by pre-allocating result capacity by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/783\"\u003esamber/lo#783\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/cf6fb4f9b08c1d3d6e309581316f106dc30b458e\"\u003e\u003ccode\u003ecf6fb4f\u003c/code\u003e\u003c/a\u003e bump v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/56ef3beaf8adfea1908b094e49b3b639ea604aab\"\u003e\u003ccode\u003e56ef3be\u003c/code\u003e\u003c/a\u003e feat: support for buffer iterator (\u003ca href=\"https://redirect.github.com/samber/lo/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6a9f881ae1ff32a7c650464615d175ef4c26d833\"\u003e\u003ccode\u003e6a9f881\u003c/code\u003e\u003c/a\u003e :lipstick:\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/7f0c2e0297fc2fdffe9c69c254dee8d00f60c90a\"\u003e\u003ccode\u003e7f0c2e0\u003c/code\u003e\u003c/a\u003e feat: adding UnzipByErrX helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/af46a13bfce4ae037193c23e05866df8d79cd163\"\u003e\u003ccode\u003eaf46a13\u003c/code\u003e\u003c/a\u003e feat: adding RejectErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6f42e74a117ce59882e92a9d4a5b05520d5dee33\"\u003e\u003ccode\u003e6f42e74\u003c/code\u003e\u003c/a\u003e doc: improve examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/ff0e293ce3dbde1e80a1b1eb059078aa7d1442c4\"\u003e\u003ccode\u003eff0e293\u003c/code\u003e\u003c/a\u003e feat: adding FilterErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/4bb58fd2c6d86bf54eb9408b8247d056b8f4a006\"\u003e\u003ccode\u003e4bb58fd\u003c/code\u003e\u003c/a\u003e feat: adding RepeatByErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/72a33aa3970554921210253dcce90540d6e34388\"\u003e\u003ccode\u003e72a33aa\u003c/code\u003e\u003c/a\u003e feat: adding FilterKeysErr + FilterValuesErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/dd1d58e324c2277117dbdbfa86f409473eda5ece\"\u003e\u003ccode\u003edd1d58e\u003c/code\u003e\u003c/a\u003e feat: adding FindDuplicatesByErr helper\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/samber/lo/compare/v1.52.0...v1.53.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/speakeasy-api/openapi` from 1.20.0 to 1.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/speakeasy-api/openapi/releases\"\u003egithub.com/speakeasy-api/openapi's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(oq): rename edge fields, fix security scheme type, add duplicates stage by \u003ca href=\"https://github.com/vishalg0wda\"\u003e\u003ccode\u003e@​vishalg0wda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/189\"\u003espeakeasy-api/openapi#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(snip): clarify help text to describe both remove and filter modes by \u003ca href=\"https://github.com/bflad\"\u003e\u003ccode\u003e@​bflad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/192\"\u003espeakeasy-api/openapi#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump jsonschema/oas3/tests/testsuite from \u003ccode\u003e06481b1\u003c/code\u003e to \u003ccode\u003ee819f32\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/195\"\u003espeakeasy-api/openapi#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): bump the go-minor-patch group across 2 directories with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/187\"\u003espeakeasy-api/openapi#187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(deps): bump the github-actions group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/194\"\u003espeakeasy-api/openapi#194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve interactive lint fixer controls and exit behavior by \u003ca href=\"https://github.com/TristanSpeakEasy\"\u003e\u003ccode\u003e@​TristanSpeakEasy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/196\"\u003espeakeasy-api/openapi#196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on invalid paths entries during index build by \u003ca href=\"https://github.com/TristanSpeakEasy\"\u003e\u003ccode\u003e@​TristanSpeakEasy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/197\"\u003espeakeasy-api/openapi#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update submodule dependencies to latest main by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/190\"\u003espeakeasy-api/openapi#190\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\"\u003ehttps://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOpenAPI CLI v1.23.0\u003c/h2\u003e\n\u003cp\u003eThis release includes binaries for Linux, macOS, and Windows on both x86_64 and ARM64 architectures.\u003c/p\u003e\n\u003ch3\u003eInstallation\u003c/h3\u003e\n\u003cp\u003eDownload the appropriate binary for your platform from the assets below, extract it, and add it to your PATH.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ee089c6006b4e6e342887a4384fa6d39a998eba5e feat(oq): rename edge fields, fix security scheme type, add duplicates stage (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/189\"\u003e#189\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e34df23fa74613ddc421d24a6b9f5f437e8fb3394 fix(deps): bump the go-minor-patch group across 2 directories with 2 updates (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/187\"\u003e#187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef5ae225c4a5487fb8a8ad340448e73d831153617 fix: improve interactive lint fixer controls and exit behavior (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/196\"\u003e#196\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e7a9aee7c092c2f0b58d79c9a2669010671ceb24d fix: prevent panic on invalid paths entries during index build (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/197\"\u003e#197\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb9e62ce2b6cfb626cf2351e192296991b0ce123c chore(deps): bump jsonschema/oas3/tests/testsuite from \u003ccode\u003e06481b1\u003c/code\u003e to \u003ccode\u003ee819f32\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/195\"\u003e#195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec1f4dc1e9193eab32e5bec4d0ef1bf1471385bbd chore(snip): clarify help text to describe both remove and filter modes (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/192\"\u003e#192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb03d5970ac7b3022a586c4f8ab097702f569f564 ci(deps): bump the github-actions group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/194\"\u003e#194\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\"\u003ehttps://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eReleased by \u003ca href=\"https://github.com/goreleaser/goreleaser\"\u003eGoReleaser\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.22.0\u003c/h2\u003e\n\u003ch2\u003eOpenAPI CLI v1.22.0\u003c/h2\u003e\n\u003cp\u003eThis release includes binaries for Linux, macOS, and Windows on both x86_64 and ARM64 architectures.\u003c/p\u003e\n\u003ch3\u003eInstallation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/32d0bebc9f99bd973ca749a8cbeb811660d985e4\"\u003e\u003ccode\u003e32d0beb\u003c/code\u003e\u003c/a\u003e chore: update submodule dependencies to latest main (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/190\"\u003e#190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/7a9aee7c092c2f0b58d79c9a2669010671ceb24d\"\u003e\u003ccode\u003e7a9aee7\u003c/code\u003e\u003c/a\u003e fix: prevent panic on invalid paths entries during index build (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/197\"\u003e#197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/f5ae225c4a5487fb8a8ad340448e73d831153617\"\u003e\u003ccode\u003ef5ae225\u003c/code\u003e\u003c/a\u003e fix: improve interactive lint fixer controls and exit behavior (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/196\"\u003e#196\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/b03d5970ac7b3022a586c4f8ab097702f569f564\"\u003e\u003ccode\u003eb03d597\u003c/code\u003e\u003c/a\u003e ci(deps): bump the github-actions group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/194\"\u003e#194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/34df23fa74613ddc421d24a6b9f5f437e8fb3394\"\u003e\u003ccode\u003e34df23f\u003c/code\u003e\u003c/a\u003e fix(deps): bump the go-minor-patch group across 2 directories with 2 updates ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/b9e62ce2b6cfb626cf2351e192296991b0ce123c\"\u003e\u003ccode\u003eb9e62ce\u003c/code\u003e\u003c/a\u003e chore(deps): bump jsonschema/oas3/tests/testsuite from \u003ccode\u003e06481b1\u003c/code\u003e to \u003ccode\u003ee819f32\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/c1f4dc1e9193eab32e5bec4d0ef1bf1471385bbd\"\u003e\u003ccode\u003ec1f4dc1\u003c/code\u003e\u003c/a\u003e chore(snip): clarify help text to describe both remove and filter modes (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/192\"\u003e#192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/e089c6006b4e6e342887a4384fa6d39a998eba5e\"\u003e\u003ccode\u003ee089c60\u003c/code\u003e\u003c/a\u003e feat(oq): rename edge fields, fix security scheme type, add duplicates stage ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/ff7136570f839bd9157f56408d97676b93db65db\"\u003e\u003ccode\u003eff71365\u003c/code\u003e\u003c/a\u003e chore: update submodule dependencies to latest main (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/188\"\u003e#188\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/511fc1aff0dc5e125300837769c305a73cb0c8d5\"\u003e\u003ccode\u003e511fc1a\u003c/code\u003e\u003c/a\u003e feat(oq): redesign query language syntax and traversal model (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/184\"\u003e#184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/speakeasy-api/openapi/compare/v1.20.0...v1.23.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/speakeasy-api/versioning-reports` from 0.6.1 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/versioning-reports/commit/994b7dd64bbdbf8290d971e6b58f4c8db9a5ec99\"\u003e\u003ccode\u003e994b7dd\u003c/code\u003e\u003c/a\u003e feat: add v2 version report logic (\u003ca href=\"https://redirect.github.com/speakeasy-api/versioning-reports/issues/2\"\u003e#2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/speakeasy-api/versioning-reports/compare/v0.6.1...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cobra` from 1.10.1 to 1.10.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cobra/releases\"\u003egithub.com/spf13/cobra's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003e🔧 Dependencies\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Migrate from \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e to \u003ccode\u003ego.yaml.in/yaml/v3\u003c/code\u003e by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e - the \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of \u003ccode\u003espf13/cobra\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📈 CI/CD\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix linter and allow CI to pass by \u003ca href=\"https://github.com/marckhouzam\"\u003e\u003ccode\u003e@​marckhouzam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2327\"\u003espf13/cobra#2327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: actions/setup-go v6 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2337\"\u003espf13/cobra#2337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔥✍🏼 Docs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd documentation for repeated flags functionality by \u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🍂 Refactors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace several vars with consts by \u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change minUsagePadding from var to const by \u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🤗 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssam18\"...\n\n_Description has been truncated_","html_url":"https://github.com/speakeasy-api/speakeasy/pull/2055","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/speakeasy-api%2Fspeakeasy/issues/2055","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2055/packages"},{"uuid":"4506885463","node_id":"PR_kwDOSaSbyc7ejp9i","number":2,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.3.1 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-23T04:57:52.000Z","updated_at":"2026-05-23T04:58:20.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.3.1","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.3.1 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.3.1...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.3.1\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Dct555/tenderly-cll/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Dct555/tenderly-cll/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Dct555%2Ftenderly-cll/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4482739607","node_id":"PR_kwDORAHZbs7dVinO","number":36,"state":"closed","title":"deps: bump the go-dependencies group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-07T14:42:42.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-20T02:57:01.000Z","updated_at":"2026-06-07T14:42:44.000Z","time_to_close":1597541,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"go-dependencies","update_count":5,"packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/hanwen/go-fuse/v2","old_version":"2.9.0","new_version":"2.10.1","repository_url":"https://github.com/hanwen/go-fuse"},{"name":"github.com/testcontainers/testcontainers-go/modules/postgres","old_version":"0.41.0","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"github.com/willscott/go-nfs","old_version":"0.0.3","new_version":"0.0.4","repository_url":"https://github.com/willscott/go-nfs"},{"name":"go.uber.org/zap","old_version":"1.27.1","new_version":"1.28.0","repository_url":"https://github.com/uber-go/zap"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-dependencies group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.8.0` | `5.9.0` |\n| [github.com/hanwen/go-fuse/v2](https://github.com/hanwen/go-fuse) | `2.9.0` | `2.10.1` |\n| [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) | `0.41.0` | `0.42.0` |\n| [github.com/willscott/go-nfs](https://github.com/willscott/go-nfs) | `0.0.3` | `0.0.4` |\n| [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.1` | `1.28.0` |\n\n\nUpdates `github.com/go-git/go-billy/v5` from 5.8.0 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hanwen/go-fuse/v2` from 2.9.0 to 2.10.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/1d16325e0693e4aeb40b3c899938e028cc8e538e\"\u003e\u003ccode\u003e1d16325\u003c/code\u003e\u003c/a\u003e virtiofs: skip tests if qemu not available\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/0c71566a50b759dd18933d9eb1a05715aad89817\"\u003e\u003ccode\u003e0c71566\u003c/code\u003e\u003c/a\u003e README: document change\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/a77f00832e7d1616e7bedd1acaf91f76200e314f\"\u003e\u003ccode\u003ea77f008\u003c/code\u003e\u003c/a\u003e virtiofs: add TestPosixtest — run posixtest suite inside a QEMU VM against vi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/d9be790502426218a4fa5f6a8bd3986e6ec661c9\"\u003e\u003ccode\u003ed9be790\u003c/code\u003e\u003c/a\u003e virtiofs: serve fuse.RawFileSystem to a VM directly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/4640dfc860bfa091a641ea1351b46b0d5db30f34\"\u003e\u003ccode\u003e4640dfc\u003c/code\u003e\u003c/a\u003e vhostuser: vhost server for virtioFS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/344ca7b1be8aaf7f0c0699952182926afaa0e612\"\u003e\u003ccode\u003e344ca7b\u003c/code\u003e\u003c/a\u003e fuse: public type ProtocolServer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/3e80db73a511de00429083ed232cfaf3b70fadd0\"\u003e\u003ccode\u003e3e80db7\u003c/code\u003e\u003c/a\u003e posixtest: minor cleanup\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/58616b5b3c32e49ce9bd60cf9915e139e2c55948\"\u003e\u003ccode\u003e58616b5\u003c/code\u003e\u003c/a\u003e fuse: set up request output payload sizes early\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/496352e63b0ff4725ac8691802ae41221ad3a2ab\"\u003e\u003ccode\u003e496352e\u003c/code\u003e\u003c/a\u003e fuse: fix filename()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/3bcfa7d6deec164848c9942f2078bf5818a439b9\"\u003e\u003ccode\u003e3bcfa7d\u003c/code\u003e\u003c/a\u003e posixtest: cover getxattr with nil buffer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hanwen/go-fuse/compare/v2.9.0...v2.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.41.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go/modules/postgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71ff693f1fc\"\u003e\u003ccode\u003e75aa226\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/2f59938fb9ce365d974fe21a426ffffe7231caca\"\u003e\u003ccode\u003e2f59938\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/580abf68d44021bc7e54f8655a2fb66578205527\"\u003e\u003ccode\u003e580abf6\u003c/code\u003e\u003c/a\u003e chore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/testcontainers/testcontainers-go/compare/v0.41.0...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/willscott/go-nfs` from 0.0.3 to 0.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/willscott/go-nfs/releases\"\u003egithub.com/willscott/go-nfs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.0.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003emap errors to NFS errors by \u003ca href=\"https://github.com/ehazlett\"\u003e\u003ccode\u003e@​ehazlett\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/145\"\u003ewillscott/go-nfs#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse rwmutex to make reverseHandles map safe for concurrent access by \u003ca href=\"https://github.com/sitole\"\u003e\u003ccode\u003e@​sitole\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/146\"\u003ewillscott/go-nfs#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003enfs: fix EOF flag in READ response not being set when read reaches end of file by \u003ca href=\"https://github.com/ncw\"\u003e\u003ccode\u003e@​ncw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/149\"\u003ewillscott/go-nfs#149\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ehazlett\"\u003e\u003ccode\u003e@​ehazlett\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/145\"\u003ewillscott/go-nfs#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sitole\"\u003e\u003ccode\u003e@​sitole\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/146\"\u003ewillscott/go-nfs#146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/willscott/go-nfs/compare/v0.0.3...v0.0.4\"\u003ehttps://github.com/willscott/go-nfs/compare/v0.0.3...v0.0.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/209a01f82ba9283bb36ec312d3908210b0b1cc89\"\u003e\u003ccode\u003e209a01f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/willscott/go-nfs/issues/149\"\u003e#149\u003c/a\u003e from ncw/fix-eof\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/275aeb956dd18eb4f6ab552d23dacb39cd41f829\"\u003e\u003ccode\u003e275aeb9\u003c/code\u003e\u003c/a\u003e nfs: fix EOF flag in READ response not being set when read reaches end of file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/527fb181bfaa51441dc30d9be61ef384c5c7fdac\"\u003e\u003ccode\u003e527fb18\u003c/code\u003e\u003c/a\u003e Use rwmutex to make reverseHandles map safe for concurrent access (\u003ca href=\"https://redirect.github.com/willscott/go-nfs/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/28bb2174eb33069356a79399c40e6d9f76ad9064\"\u003e\u003ccode\u003e28bb217\u003c/code\u003e\u003c/a\u003e map errors to NFS errors (\u003ca href=\"https://redirect.github.com/willscott/go-nfs/issues/145\"\u003e#145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/willscott/go-nfs/compare/v0.0.3...v0.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.uber.org/zap` from 1.27.1 to 1.28.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uber-go/zap/releases\"\u003ego.uber.org/zap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.28.0\u003c/h2\u003e\n\u003cp\u003eEnhancements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e[]: Add \u003ccode\u003ezapcore.CheckPreWriteHook\u003c/code\u003e and \u003ccode\u003eCheckedEntry.Before\u003c/code\u003e method for transforming entries before they are written to any Cores.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/uber-go/zap/pull/1534\"\u003euber-go/zap#1534\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uber-go/zap/blob/master/CHANGELOG.md\"\u003ego.uber.org/zap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.28.0 (27 Apr 2026)\u003c/h2\u003e\n\u003cp\u003eEnhancements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e[]: Add \u003ccode\u003ezapcore.CheckPreWriteHook\u003c/code\u003e and \u003ccode\u003eCheckedEntry.Before\u003c/code\u003e method for transforming entries before they are written to any Cores.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/5b81b37b81b8e2ed447a6f57991e372ee4fa5c8f\"\u003e\u003ccode\u003e5b81b37\u003c/code\u003e\u003c/a\u003e release v1.28.0 (\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1547\"\u003e#1547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/0ab0d5aae5986395e2ca497385d977ccd7cdfc5e\"\u003e\u003ccode\u003e0ab0d5a\u003c/code\u003e\u003c/a\u003e zapcore: Add PreWriteHook for transforming entries before write (\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/d278c5962cb0f7423170c11a5da9b7a4edbf9b92\"\u003e\u003ccode\u003ed278c59\u003c/code\u003e\u003c/a\u003e [chore] CI: test on Go 1.26 (\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1535\"\u003e#1535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/16fb16b353f2e27bcd71eba69cbd346b3dcc471a\"\u003e\u003ccode\u003e16fb16b\u003c/code\u003e\u003c/a\u003e chore(dep): replace archived gopkg.in/yaml.v3 with officially maintained go.y...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/uber-go/zap/compare/v1.27.1...v1.28.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/timescale/tigerfs/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Ftigerfs/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"},{"uuid":"4451308189","node_id":"PR_kwDOM5mTgM7byK99","number":4,"state":"closed","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.2 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-15T05:13:03.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-15T04:40:50.000Z","updated_at":"2026-05-15T05:13:06.000Z","time_to_close":1933,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.6.2 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.6.2\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/joint-online-judge/JOJ3/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/joint-online-judge/JOJ3/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/joint-online-judge%2FJOJ3/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4442979612","node_id":"PR_kwDOKCo3Wc7bXqXz","number":70,"state":"closed","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-16T11:19:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T03:48:24.000Z","updated_at":"2026-05-16T11:19:11.000Z","time_to_close":199846,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/berquerant/install-via-git-go/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/berquerant/install-via-git-go/pull/70","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/berquerant%2Finstall-via-git-go/issues/70","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/70/packages"},{"uuid":"4442829369","node_id":"PR_kwDOJE57Oc7bXPjI","number":37,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.1.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T03:17:00.000Z","updated_at":"2026-05-14T03:17:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.1.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.1.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.1.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.1.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/lilsunny243/node-1/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/lilsunny243/node-1/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lilsunny243%2Fnode-1/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"},{"uuid":"4442737548","node_id":"PR_kwDOPf3WO87bW9Ht","number":4,"state":"open","title":"chore(deps): bump the go_modules group across 2 directories with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T02:52:17.000Z","updated_at":"2026-05-14T02:52:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":8,"packages":[{"name":"github.com/docker/cli","old_version":"28.3.3+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"go.opentelemetry.io/otel","old_version":"1.37.0","new_version":"1.43.0"},{"name":"google.golang.org/grpc","old_version":"1.74.2","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/cloudflare/circl","old_version":"1.6.1","new_version":"1.6.3"},{"name":"github.com/ethereum/go-ethereum","old_version":"1.16.8","new_version":"1.17.0","repository_url":"https://github.com/ethereum/go-ethereum"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.36.0","new_version":"1.39.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the / directory: [github.com/docker/cli](https://github.com/docker/cli), [github.com/go-git/go-git/v5](https://github.com/go-git/go-git), [google.golang.org/grpc](https://github.com/grpc/grpc-go) and [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum).\nBumps the go_modules group with 2 updates in the /pkg directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go) and [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum).\n\nUpdates `github.com/docker/cli` from 28.3.3+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v28.3.3...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.37.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.37.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.74.2 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.74.2...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ethereum/go-ethereum` from 1.16.8 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ethereum/go-ethereum/releases\"\u003egithub.com/ethereum/go-ethereum's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eEezo-Inlaid Circuitry (v1.17.0)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eThis is a feature release, with all accumulated development from the last 3 months. See below for the highlights.\u003c/p\u003e\n\u003cp\u003eNote that this release contains multiple critical security fixes, as well as many bug fixes, and is recommended for all users. However, if you are cautious about upgrades, you can also install v1.16.9 which has just the critical security fixes. Specifically, this release fixes \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-689v-6xwf-5jf3\"\u003eCVE-2026-26313\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-2gjw-fg97-vg3r\"\u003eCVE-2026-26314\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-m6j8-rg6r-7mv8\"\u003eCVE-2026-26315\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eWe recommend recreating your p2p node key after installing this update, which you can do by removing the \u003ccode\u003eDATADIR/geth/nodekey\u003c/code\u003e file before restarting geth. Note this will cause a change in the p2p node ID, which may break static peering setups.\u003c/p\u003e\n\u003ch2\u003eHighlights\u003c/h2\u003e\n\u003ch3\u003ePath-based Archive Node with Proofs\u003c/h3\u003e\n\u003cp\u003eThe path-based archive node can now serve proofs (via \u003ccode\u003eeth_getProof\u003c/code\u003e) for the state of older blocks.\u003c/p\u003e\n\u003cp\u003eYou can configure the block range that supports proving independently from other archive state availability. Specifically, you can use the \u003ccode\u003e--history.trienode\u003c/code\u003e command-line flag to set the amount of blocks for which tree nodes will be tracked.\u003c/p\u003e\n\u003cp\u003eThis feature is disabled by default. Note that state history cannot easily be recovered once deleted, as it can only be generated by processing blocks. However, you can enable trienode history (and/or state history) at any time to turn a full node into a partial archive node, keeping state from that point in time onwards.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32727\"\u003e#32727\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32621\"\u003e#32621\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33551\"\u003e#33551\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32981\"\u003e#32981\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33399\"\u003e#33399\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32913\"\u003e#32913\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33303\"\u003e#33303\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33584\"\u003e#33584\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33329\"\u003e#33329\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33681\"\u003e#33681\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33103\"\u003e#33103\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33098\"\u003e#33098\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33515\"\u003e#33515\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32247\"\u003e#32247\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEraE History Support\u003c/h3\u003e\n\u003cp\u003eGeth now suports the \u003ca href=\"https://redirect.github.com/eth-clients/e2store-format-specs/pull/16\"\u003eEraE\u003c/a\u003e file format, an archival format for post-merge chain history.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32157\"\u003e#32157\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33827\"\u003e#33827\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eOpenTelemetry Tracing\u003c/h3\u003e\n\u003cp\u003eOpenTelemetry tracing is now supported by the RPC server, including support for distributed tracing.\nWe have also added some tracing spans for block processing via the engine API, i.e. \u003ccode\u003eengine_newPayload\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33599\"\u003e#33599\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33452\"\u003e#33452\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAll Changes\u003c/h2\u003e\n\u003ch3\u003eGeth CLI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003egeth version-check\u003c/code\u003e subcommand has been removed. This command checked the geth website for signed vulnerability notices, and would tell if updates are necessary  (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33498\"\u003e#33498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThere is now a \u003ccode\u003e--miner.maxblobs\u003c/code\u003e command-line flag to set a limit on blobs included in built blocks (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33129\"\u003e#33129\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33302\"\u003e#33302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eGeth now supports continuous profiling with Grafana Pyroscope (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33623\"\u003e#33623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA rare bug that could halt block production in \u003ccode\u003egeth --dev\u003c/code\u003e mode was fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33146\"\u003e#33146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA new \u003ccode\u003e--rpc.rangelimit\u003c/code\u003e flag configures the maximum block range for \u003ccode\u003eeth_getLogs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33163\"\u003e#33163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --exitwhensynced\u003c/code\u003e will now set the \u003ccode\u003efinalized\u003c/code\u003e and \u003ccode\u003esafe\u003c/code\u003e block (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33038\"\u003e#33038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --ethstats\u003c/code\u003e now reports the newPayload processing time to the stats server (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33395\"\u003e#33395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA lot of minor issues in Geth's command-line flag processing have been fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33379\"\u003e#33379\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33338\"\u003e#33338\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33330\"\u003e#33330\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32999\"\u003e#32999\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33279\"\u003e#33279\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33252\"\u003e#33252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eevm blocktest\u003c/code\u003e command can now read filenames from stdin when no path is provided (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32824\"\u003e#32824\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFork Implementation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cf3d3ba4f7062fd2bbf2bda10972d528974e876\"\u003e\u003ccode\u003e0cf3d3b\u003c/code\u003e\u003c/a\u003e version: release go-ethereum v1.17.0 stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/9b78f45e337f01e66b505c35b74415751b2a0a28\"\u003e\u003ccode\u003e9b78f45\u003c/code\u003e\u003c/a\u003e crypto/secp256k1: fix coordinate check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c709c19b40f4b6655d7944c3fb0c36a14c6774d6\"\u003e\u003ccode\u003ec709c19\u003c/code\u003e\u003c/a\u003e eth/catalyst: add initial OpenTelemetry tracing for newPayload (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/550ca91b179493e5c0394ee644efed3deefb890e\"\u003e\u003ccode\u003e550ca91\u003c/code\u003e\u003c/a\u003e consensus/misc: hardening header verification (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33860\"\u003e#33860\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/a4b3898f9041fd7c77130dc17ba2b80441a998af\"\u003e\u003ccode\u003ea4b3898\u003c/code\u003e\u003c/a\u003e internal/telemetry: don't create internal spans without parents (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cba803fbafb12e9daaea53b76de847842ab3055\"\u003e\u003ccode\u003e0cba803\u003c/code\u003e\u003c/a\u003e eth/protocols/eth, eth/protocols/snap: delayed p2p message decoding (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33835\"\u003e#33835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ad88b68a467b6b3cb9d6a8a24f0ec74e8aa77565\"\u003e\u003ccode\u003ead88b68\u003c/code\u003e\u003c/a\u003e internal/download: show progress bar only if server gives length (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33842\"\u003e#33842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c50e5edfafe408d911f3cdd2191a6808dc95cb42\"\u003e\u003ccode\u003ec50e5ed\u003c/code\u003e\u003c/a\u003e cmd/geth, internal/telemetry: wire OpenTelemetry tracing via CLI flags (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33484\"\u003e#33484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/d8b92cb9e60fc8785c84f1afb35e64c9312eb35d\"\u003e\u003ccode\u003ed8b92cb\u003c/code\u003e\u003c/a\u003e rpc,internal/telemetry: fix deferred spanEnd to capture errors via pointer (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ac85a6f25449a7b96505637e18c988b3142d47bf\"\u003e\u003ccode\u003eac85a6f\u003c/code\u003e\u003c/a\u003e rlp: add back Iterator.Count, with fixes (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33841\"\u003e#33841\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ethereum/go-ethereum/compare/v1.16.8...v1.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-billy/v5` from 5.6.2 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.36.0 to 1.39.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.39.0/0.61.0/0.15.0/0.0.14] 2025-12-05\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGreatly reduce the cost of recording metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e using hashing for map keys. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7175\"\u003e#7175\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithInstrumentationAttributeSet\u003c/code\u003e option to \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e packages.\nThis provides a concurrent-safe and performant alternative to \u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e by accepting a pre-constructed \u003ccode\u003eattribute.Set\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7287\"\u003e#7287\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability for the Prometheus exporter in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e.\nCheck the \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus/internal/x\u003c/code\u003e package documentation for more information. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7345\"\u003e#7345\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7353\"\u003e#7353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd temporality selector functions \u003ccode\u003eDeltaTemporalitySelector\u003c/code\u003e, \u003ccode\u003eCumulativeTemporalitySelector\u003c/code\u003e, \u003ccode\u003eLowMemoryTemporalitySelector\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7434\"\u003e#7434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for simple log processor in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7548\"\u003e#7548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7459\"\u003e#7459\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7486\"\u003e#7486\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for simple span processor in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7374\"\u003e#7374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7512\"\u003e#7512\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for manual reader in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7524\"\u003e#7524\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for periodic reader in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7571\"\u003e#7571\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eOTEL_EXPORTER_OTLP_LOGS_INSECURE\u003c/code\u003e and \u003ccode\u003eOTEL_EXPORTER_OTLP_INSECURE\u003c/code\u003e environmental variables in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7608\"\u003e#7608\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to the \u003ccode\u003eProcessor\u003c/code\u003e interface in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e.\nAll \u003ccode\u003eProcessor\u003c/code\u003e implementations now include an \u003ccode\u003eEnabled\u003c/code\u003e method. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7639\"\u003e#7639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.38.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.38.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.37.0.\u003c/code\u003e(\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7648\"\u003e#7648\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eDistinct\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e is no longer guaranteed to uniquely identify an attribute set.\nCollisions between \u003ccode\u003eDistinct\u003c/code\u003e values for different Sets are possible with extremely high cardinality (billions of series per instrument), but are highly unlikely. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7175\"\u003e#7175\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e synchronously de-duplicates the passed attributes instead of delegating it to the returned \u003ccode\u003eTracerOption\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7266\"\u003e#7266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/meter\u003c/code\u003e synchronously de-duplicates the passed attributes instead of delegating it to the returned \u003ccode\u003eMeterOption\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7266\"\u003e#7266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e synchronously de-duplicates the passed attributes instead of delegating it to the returned \u003ccode\u003eLoggerOption\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7266\"\u003e#7266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename the \u003ccode\u003eOTEL_GO_X_SELF_OBSERVABILITY\u003c/code\u003e environment variable to \u003ccode\u003eOTEL_GO_X_OBSERVABILITY\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdouttrace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7302\"\u003e#7302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of histogram \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e when min and max are disabled using \u003ccode\u003eNoMinMax\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7306\"\u003e#7306\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove error handling for dropped data during translation by using \u003ccode\u003eprometheus.NewInvalidMetric\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e.\n⚠️ \u003cstrong\u003eBreaking Change:\u003c/strong\u003e Previously, these cases were only logged and scrapes succeeded.\nNow, when translation would drop data (e.g., invalid label/value), the exporter emits a \u003ccode\u003eNewInvalidMetric\u003c/code\u003e, and Prometheus scrapes \u003cstrong\u003efail with HTTP 500\u003c/strong\u003e by default.\nTo preserve the prior behavior (scrapes succeed while errors are logged), configure your Prometheus HTTP handler with: \u003ccode\u003epromhttp.HandlerOpts{ ErrorHandling: promhttp.ContinueOnError }\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7363\"\u003e#7363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace fnv hash with xxhash in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e for better performance. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe default \u003ccode\u003eTranslationStrategy\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/exporters/prometheus\u003c/code\u003e is changed from \u003ccode\u003eotlptranslator.NoUTF8EscapingWithSuffixes\u003c/code\u003e to \u003ccode\u003eotlptranslator.UnderscoreEscapingWithSuffixes\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7421\"\u003e#7421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7427\"\u003e#7427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eInclude W3C TraceFlags (bits 0–7) in the OTLP \u003ccode\u003eSpan.Flags\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e and \u003ccode\u003ego.opentelemetry.io/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7438\"\u003e#7438\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eErrorType\u003c/code\u003e function in \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.37.0\u003c/code\u003e now handles custom error types.\nIf an error implements an \u003ccode\u003eErrorType() string\u003c/code\u003e method, the return value of that method will be used as the error type. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7442\"\u003e#7442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e options in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e to properly merge attributes when passed multiple times instead of replacing them.\nAttributes with duplicate keys will use the last value passed. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7300\"\u003e#7300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe equality of \u003ccode\u003eattribute.Set\u003c/code\u003e when using the \u003ccode\u003eEqual\u003c/code\u003e method is not affected by the user overriding the empty set pointed to by \u003ccode\u003eattribute.EmptySet\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7357\"\u003e#7357\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/6ce14298b9d58647295280560205307768400496\"\u003e\u003ccode\u003e6ce1429\u003c/code\u003e\u003c/a\u003e Release v1.39.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7676\"\u003e#7676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/12e421a7061c1ab5c25a1851ca168e1c3ac11bbb\"\u003e\u003ccode\u003e12e421a\u003c/code\u003e\u003c/a\u003e sdk/log: move Enabled method from FilterProcessor to Processor (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7639\"\u003e#7639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5982f16d244fafebffcfc92b4673dbeb565b4e7b\"\u003e\u003ccode\u003e5982f16\u003c/code\u003e\u003c/a\u003e fix(deps): update module golang.org/x/sys to v0.39.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7684\"\u003e#7684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/928837830da34dea636b48a468149d480cc41058\"\u003e\u003ccode\u003e9288378\u003c/code\u003e\u003c/a\u003e chore(deps): update module golang.org/x/sync to v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7683\"\u003e#7683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/ee3dfef45d9462e209d92e0651a58d2417c1305f\"\u003e\u003ccode\u003eee3dfef\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/securego/gosec/v2 digest to 41f28e2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7682\"\u003e#7682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9345d1f64d874fa8df5f6ca4e14acaeb44532cd3\"\u003e\u003ccode\u003e9345d1f\u003c/code\u003e\u003c/a\u003e fix(deps): update module github.com/golangci/golangci-lint/v2 to v2.7.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7680\"\u003e#7680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/d03b03395dc9436d79d5ba7b5ea77053b18a9915\"\u003e\u003ccode\u003ed03b033\u003c/code\u003e\u003c/a\u003e Check context prior to delaying retry in OTLP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7678\"\u003e#7678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61765e78a620994b5922e34e776e029da1a2b983\"\u003e\u003ccode\u003e61765e7\u003c/code\u003e\u003c/a\u003e Fix flaky \u003ccode\u003eTestClientInstrumentation\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7677\"\u003e#7677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/a54721cc8052fcd497d6f637a463d1aba787012c\"\u003e\u003ccode\u003ea54721c\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-billy/v5 to v5.7.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7679\"\u003e#7679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/746d0860d70bb9c1e875afe1c7e41e9060387d46\"\u003e\u003ccode\u003e746d086\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.31.7 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7675\"\u003e#7675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.36.0....\n\n_Description has been truncated_\n\n---\n\n🔄 This PR updates Go module dependencies across the project, bumping 8 packages including Docker CLI, go-git, OpenTelemetry, gRPC, and Ethereum libraries to their latest versions. The update also upgrades the Go version from 1.24.4 to 1.25.0 and includes both direct and indirect dependency updates.\n\n\u003cdetails\u003e\n\u003csummary\u003e🔍 \u003cstrong\u003eDetailed Analysis\u003c/strong\u003e\u003c/summary\u003e\n\n### Key Changes\n- **Go Version**: Upgraded from 1.24.4 to 1.25.0\n- **Docker Dependencies**: Updated docker/cli from v28.3.3 to v29.2.0 and docker/go-connections from v0.6.0 to v0.7.0\n- **Git Libraries**: Updated go-git/go-git from v5.16.2 to v5.19.0 and go-git/go-billy from v5.6.2 to v5.9.0\n- **OpenTelemetry**: Updated otel from v1.37.0 to v1.43.0 and related SDK components\n- **gRPC**: Updated from v1.74.2 to v1.79.3 across both main and pkg modules\n- **Testing**: Updated stretchr/testify from v1.10.0 to v1.11.1\n- **Cryptography**: Updated cloudflare/circl from v1.6.1 to v1.6.3 and ethereum/go-ethereum from v1.16.8 to v1.17.0\n\n### Technical Implementation\n```mermaid\nflowchart TD\n    A[Dependabot Scan] --\u003e B[Identify Updates]\n    B --\u003e C[Update go.mod files]\n    C --\u003e D[Update go.sum files]\n    D --\u003e E[Version Compatibility Check]\n    E --\u003e F[Security Patches Applied]\n    F --\u003e G[Ready for Merge]\n    \n    H[Main Module] --\u003e C\n    I[pkg/ Module] --\u003e C\n    \n    J[Direct Dependencies] --\u003e C\n    K[Indirect Dependencies] --\u003e C\n```\n\n### Impact\n- **Security Improvements**: Multiple security fixes included, particularly in gRPC v1.79.3 which addresses authorization bypass vulnerabilities\n- **Performance Enhancements**: OpenTelemetry v1.43.0 includes performance improvements for metric recording and attribute handling\n- **Feature Updates**: New capabilities in go-git v5.19.0 including improved object encoding and security hardening\n- **Compatibility**: Go 1.25.0 provides latest language features and standard library improvements\n- **Maintenance**: Automated dependency management ensures the project stays current with upstream security patches and bug fixes\n\n\u003c/details\u003e\n\n_Created with [Palmier](https://www.palmier.io)_","html_url":"https://github.com/GlacierEQ/cli/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GlacierEQ%2Fcli/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4442442211","node_id":"PR_kwDOMPIuiM7bWJGe","number":3,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in /internal/tools","user":"dependabot[bot]","labels":["Stale","dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T01:51:11.000Z","updated_at":"2026-05-28T04:41:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"/internal/tools","ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/cardinalhq/opentelemetry-collector/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/cardinalhq/opentelemetry-collector/pull/3","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cardinalhq%2Fopentelemetry-collector/issues/3","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3/packages"},{"uuid":"4442058775","node_id":"PR_kwDOF_Bxuc7bVAs3","number":730,"state":"open","title":"build(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:17:42.000Z","updated_at":"2026-05-28T14:03:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"[//]: # (dependabot-start)\n⚠️  **Dependabot is rebasing this PR** ⚠️ \n\nRebasing might not happen immediately, so don't worry if this takes some time.\n\nNote: if you make any changes to this PR yourself, they will take precedence over the rebase.\n\n---\n\n[//]: # (dependabot-end)\n\nBumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/nais/cli/pull/730","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nais%2Fcli/issues/730","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/730/packages"},{"uuid":"4442045830","node_id":"PR_kwDORBvg1s7bU-DV","number":12,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:14:19.000Z","updated_at":"2026-05-14T03:10:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Dustin4444/bashbrew/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- Reviewable:start --\u003e\n- - -\nThis change is [\u003cimg src=\"https://reviewable.io/review_button.svg\" height=\"34\" align=\"absmiddle\" alt=\"Reviewable\"/\u003e](https://reviewable.io/reviews/Dustin4444/bashbrew/12)\n\u003c!-- Reviewable:end --\u003e\n","html_url":"https://github.com/Dustin4444/bashbrew/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Dustin4444%2Fbashbrew/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"},{"uuid":"4442043125","node_id":"PR_kwDOQo0OIc7bU9f6","number":30,"state":"closed","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-14T05:22:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T00:13:43.000Z","updated_at":"2026-05-14T05:22:51.000Z","time_to_close":18546,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ariel-frischer/autospec/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/ariel-frischer/autospec/pull/30","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ariel-frischer%2Fautospec/issues/30","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/30/packages"},{"uuid":"4442032166","node_id":"PR_kwDODXC7ic7bU7cc","number":1410,"state":"closed","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.0 to 5.9.0 in /tools","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-24T11:27:59.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T00:10:56.000Z","updated_at":"2026-05-24T11:28:00.000Z","time_to_close":904623,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"/tools","ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.6.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.6.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-client-go/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/newrelic/newrelic-client-go/pull/1410","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/newrelic%2Fnewrelic-client-go/issues/1410","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1410/packages"},{"uuid":"4442026090","node_id":"PR_kwDOCrwMCc7bU6Wc","number":8121,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:09:31.000Z","updated_at":"2026-05-14T01:10:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/GoogleCloudPlatform/k8s-config-connector/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/k8s-config-connector/pull/8121","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fk8s-config-connector/issues/8121","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8121/packages"},{"uuid":"4442014707","node_id":"PR_kwDOP_aDGM7bU4FP","number":336,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:06:44.000Z","updated_at":"2026-05-14T00:06:51.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aspect-build/aspect-cli-legacy/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/aspect-build/aspect-cli-legacy/pull/336","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aspect-build%2Faspect-cli-legacy/issues/336","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/336/packages"},{"uuid":"4442001797","node_id":"PR_kwDORGlKUs7bU1bE","number":7,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.0.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:03:58.000Z","updated_at":"2026-05-14T03:10:26.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.0.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.0.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.0.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.0.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Dustin4444/community-1/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- Reviewable:start --\u003e\n- - -\nThis change is [\u003cimg src=\"https://reviewable.io/review_button.svg\" height=\"34\" align=\"absmiddle\" alt=\"Reviewable\"/\u003e](https://reviewable.io/reviews/Dustin4444/community-1/7)\n\u003c!-- Reviewable:end --\u003e\n","html_url":"https://github.com/Dustin4444/community-1/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Dustin4444%2Fcommunity-1/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"},{"uuid":"4441886325","node_id":"PR_kwDOPCnuX87bUdrB","number":37,"state":"closed","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in /tools","user":"dependabot[bot]","labels":["dependencies","go","Stale"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-13T02:21:34.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T23:36:22.000Z","updated_at":"2026-06-13T02:21:43.000Z","time_to_close":2601912,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"/tools","ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/harekrishnarai/scorecard/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/harekrishnarai/scorecard/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/harekrishnarai%2Fscorecard/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"},{"uuid":"4441865873","node_id":"PR_kwDOHMmHms7bUZcM","number":744,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-13T23:31:31.000Z","updated_at":"2026-05-13T23:33:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aviator-co/av/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/aviator-co/av/pull/744","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aviator-co%2Fav/issues/744","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/744/packages"},{"uuid":"4441526154","node_id":"PR_kwDOQu0O8c7bTUqJ","number":42,"state":"closed","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-31T01:20:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T22:11:11.000Z","updated_at":"2026-05-31T01:20:50.000Z","time_to_close":1480178,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jh125486/gradebot/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/jh125486/gradebot/pull/42","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jh125486%2Fgradebot/issues/42","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/42/packages"}],"issue_packages":[{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":"the go_modules group across 1 directory","pr_created_at":"2026-05-30T12:51:08.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4554428567","node_id":"PR_kwDOOgZF2c7g8Zu_","number":28,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in the go_modules group across 1 directory","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T12:51:08.000Z","updated_at":"2026-05-30T12:51:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"the go_modules group across 1 directory","ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the / directory: [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy).\n\nUpdates `github.com/go-git/go-billy/v5` from 5.8.0 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/AKJUS/frizbee/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/AKJUS/frizbee/pull/28","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AKJUS%2Ffrizbee/issues/28","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/28/packages"}},{"old_version":"5.6.2","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-30T09:39:44.000Z","version_change":"5.6.2 → 5.9.0","issue":{"uuid":"4554010034","node_id":"PR_kwDOQXHkUc7g7LQz","number":2,"state":"open","title":"build(deps): bump the go_modules group across 2 directories with 25 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T09:39:44.000Z","updated_at":"2026-05-30T09:41:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"go_modules","update_count":25,"packages":[{"name":"github.com/agentgateway/agentgateway","old_version":"0.10.6-0.20251108001651-54763bfe02e1","new_version":"0.12.0","repository_url":"https://github.com/agentgateway/agentgateway"},{"name":"google.golang.org/grpc","old_version":"1.76.0","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"helm.sh/helm/v3","old_version":"3.19.2","new_version":"3.20.2","repository_url":"https://github.com/helm/helm"},{"name":"github.com/in-toto/in-toto-golang","old_version":"0.9.0","new_version":"0.11.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/theupdateframework/go-tuf/v2","old_version":"2.0.2","new_version":"2.4.1","repository_url":"https://github.com/theupdateframework/go-tuf"},{"name":"github.com/anchore/quill","old_version":"0.5.1","new_version":"0.7.1","repository_url":"https://github.com/anchore/quill"},{"name":"github.com/buger/jsonparser","old_version":"1.1.1","new_version":"1.1.2","repository_url":"https://github.com/buger/jsonparser"},{"name":"github.com/cloudflare/circl","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/go-git/go-git/v5","old_version":"5.14.0","new_version":"5.19.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/moby/spdystream","old_version":"0.5.0","new_version":"0.5.1","repository_url":"https://github.com/moby/spdystream"},{"name":"github.com/sigstore/cosign/v2","old_version":"2.5.0","new_version":"2.6.2","repository_url":"https://github.com/sigstore/cosign"},{"name":"github.com/slack-go/slack","old_version":"0.17.3","new_version":"0.23.1","repository_url":"https://github.com/slack-go/slack"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/agentgateway/agentgateway](https://github.com/agentgateway/agentgateway) | `0.10.6-0.20251108001651-54763bfe02e1` | `0.12.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.76.0` | `1.79.3` |\n| [helm.sh/helm/v3](https://github.com/helm/helm) | `3.19.2` | `3.20.2` |\n| [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) | `0.9.0` | `0.11.0` |\n| [github.com/theupdateframework/go-tuf/v2](https://github.com/theupdateframework/go-tuf) | `2.0.2` | `2.4.1` |\n| [github.com/anchore/quill](https://github.com/anchore/quill) | `0.5.1` | `0.7.1` |\n| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.1` | `1.1.2` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.6.1` | `1.6.3` |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.2` | `5.9.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.14.0` | `5.19.1` |\n| [github.com/moby/spdystream](https://github.com/moby/spdystream) | `0.5.0` | `0.5.1` |\n| [github.com/sigstore/cosign/v2](https://github.com/sigstore/cosign) | `2.5.0` | `2.6.2` |\n| [github.com/slack-go/slack](https://github.com/slack-go/slack) | `0.17.3` | `0.23.1` |\n\nBumps the go_modules group with 3 updates in the /hack/utils/applier directory: [github.com/moby/spdystream](https://github.com/moby/spdystream), [golang.org/x/crypto](https://github.com/golang/crypto) and [golang.org/x/oauth2](https://github.com/golang/oauth2).\n\nUpdates `github.com/agentgateway/agentgateway` from 0.10.6-0.20251108001651-54763bfe02e1 to 0.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/agentgateway/agentgateway/releases\"\u003egithub.com/agentgateway/agentgateway's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.12.0\u003c/h2\u003e\n\u003cp\u003eAgentgateway is an open source project that is built on AI-native protocols to connect, secure, and observe agent-to-agent and agent-to-tool communication across any agent framework and environment.\u003c/p\u003e\n\u003cp\u003eThis release contains various bug fixes, and some major changes to the CEL expression language implementation.\u003c/p\u003e\n\u003ch2\u003eCEL\u003c/h2\u003e\n\u003cp\u003eThis release comes with a rewrite of the \u003ca href=\"https://agentgateway.dev/docs/local/latest/reference/cel/\"\u003eCEL implementation\u003c/a\u003e that powers policies such as authorization, rate limiting, access logging, etc. The new implementation is 5-500x faster depending on the expression; typical users can see up to a 50% increase in end-to-end throughput.\u003c/p\u003e\n\u003cp\u003eAdditionally, a new CEL playground is available in the UI to help troubleshoot and test CEL expressions.\u003c/p\u003e\n\u003cp\u003eWhile most of the changes are internal, a few minor behavioral changes are present\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix MCP attributes not being available during logging (only authz)\u003c/li\u003e\n\u003cli\u003eBefore, we snapshotted the request once at an arbitrary (and inconsistent, across requests) time. Now, each execution consistently gets the 'current' view of the request and response. For example, during logging, manipulations from policies would be observed.\u003c/li\u003e\n\u003cli\u003eNew function names: \u003ccode\u003ebase64Encode\u003c/code\u003e -\u0026gt; \u003ccode\u003ebase64.encode\u003c/code\u003e (this comes from a bump in the library before forking it). The old name is available for backwards compat.\u003c/li\u003e\n\u003cli\u003eBefore, the top level variables were always present but could be \u003ccode\u003enull\u003c/code\u003e. Now, if they are not available they will fail to lookup instead of return \u003ccode\u003enull\u003c/code\u003e. For example, before \u003ccode\u003ehas(jwt)\u003c/code\u003e would always return \u003ccode\u003etrue\u003c/code\u003e; now it will only return \u003ccode\u003etrue\u003c/code\u003e if there is a JWT.\u003c/li\u003e\n\u003cli\u003eIts faster!\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSPIKE: Fork htpasswd-verify and upgrade deps by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/787\"\u003eagentgateway/agentgateway#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mcp/openapi): improve path, query and header handling by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/866\"\u003eagentgateway/agentgateway#866\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDelete MCP-Authentication.md by \u003ca href=\"https://github.com/rinormaloku\"\u003e\u003ccode\u003e@​rinormaloku\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/872\"\u003eagentgateway/agentgateway#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ellm: properly use user-defined buffer limit by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/881\"\u003eagentgateway/agentgateway#881\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCEL 2.0 by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/877\"\u003eagentgateway/agentgateway#877\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: update to rmcp 0.14.0 by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/885\"\u003eagentgateway/agentgateway#885\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(aws-sse): migrate to official AWS EventStream crates by \u003ca href=\"https://github.com/apexlnc\"\u003e\u003ccode\u003e@​apexlnc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/879\"\u003eagentgateway/agentgateway#879\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(llm): Implements count_tokens for Anthropic/Vertex/Bedrock providers by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/883\"\u003eagentgateway/agentgateway#883\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Feat] MCP target policies by \u003ca href=\"https://github.com/Jack-Kilrain\"\u003e\u003ccode\u003e@​Jack-Kilrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/862\"\u003eagentgateway/agentgateway#862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport hostname in incoming HBONE connect by \u003ca href=\"https://github.com/ymesika\"\u003e\u003ccode\u003e@​ymesika\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/859\"\u003eagentgateway/agentgateway#859\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elocal: fix regression in mcp backends by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/888\"\u003eagentgateway/agentgateway#888\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(llm): bedrock token counting and get_messages conversions by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/884\"\u003eagentgateway/agentgateway#884\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: better propogate errors up by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/889\"\u003eagentgateway/agentgateway#889\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ellm e2e: add support for completions to anthropic via vertex by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/892\"\u003eagentgateway/agentgateway#892\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ui): upgrade npm packages by \u003ca href=\"https://github.com/markuskobler\"\u003e\u003ccode\u003e@​markuskobler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/894\"\u003eagentgateway/agentgateway#894\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egha: cache only on main by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/893\"\u003eagentgateway/agentgateway#893\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edeps: bump rust by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/899\"\u003eagentgateway/agentgateway#899\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExt Proc and Ext Authz: Treat Unset Header Append as Overwrite by \u003ca href=\"https://github.com/danehans\"\u003e\u003ccode\u003e@​danehans\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/906\"\u003eagentgateway/agentgateway#906\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emcp: enhance observability and route discovery plumbing by \u003ca href=\"https://github.com/apexlnc\"\u003e\u003ccode\u003e@​apexlnc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/901\"\u003eagentgateway/agentgateway#901\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd primitive TCP CEL logging support by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/916\"\u003eagentgateway/agentgateway#916\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: drop build from pull request by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/915\"\u003eagentgateway/agentgateway#915\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCEL playground by \u003ca href=\"https://github.com/howardjohn\"\u003e\u003ccode\u003e@​howardjohn\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/914\"\u003eagentgateway/agentgateway#914\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/danehans\"\u003e\u003ccode\u003e@​danehans\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/agentgateway/agentgateway/pull/906\"\u003eagentgateway/agentgateway#906\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/agentgateway/agentgateway/compare/v0.11.3...v0.12.0\"\u003ehttps://github.com/agentgateway/agentgateway/compare/v0.11.3...v0.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.11.3\u003c/h2\u003e\n\u003cp\u003eAutomated release of v0.11.3.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/agentgateway/agentgateway/commits/v0.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.76.0 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.76.0...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `helm.sh/helm/v3` from 3.19.2 to 3.20.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/helm/helm/releases\"\u003ehelm.sh/helm/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eHelm v3.20.2\u003c/h2\u003e\n\u003ch2\u003ev3.20.2\u003c/h2\u003e\n\u003cp\u003eHelm v3.20.2 is a security patch release. Users are encouraged to upgrade for the best experience.\u003c/p\u003e\n\u003cp\u003eThe community keeps growing, and we'd love to see you there!\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eJoin the discussion in \u003ca href=\"https://kubernetes.slack.com\"\u003eKubernetes Slack\u003c/a\u003e:\n\u003cul\u003e\n\u003cli\u003efor questions and just to hang out\u003c/li\u003e\n\u003cli\u003efor discussing PRs, code, and bugs\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eHang out at the Public Developer Call: Thursday, 9:30 Pacific via \u003ca href=\"https://zoom.us/j/696660622\"\u003eZoom\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTest, debug, and contribute charts: \u003ca href=\"https://artifacthub.io/packages/search?kind=0\"\u003eArtifactHub/packages\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSecurity fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/security/advisories/GHSA-hr2v-4r36-88hr\"\u003eGHSA-hr2v-4r36-88hr\u003c/a\u003e Helm Chart extraction output directory collapse via \u003ccode\u003eChart.yaml\u003c/code\u003e name dot-segment\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eInstallation and Upgrading\u003c/h2\u003e\n\u003cp\u003eDownload Helm v3.20.2. The common platform binaries are here:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-amd64.tar.gz\"\u003eMacOS amd64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-amd64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 7de04301f28b902a74f6286ed941cadc86ee5e6a9086a18f2ccf1f548e99d618)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-arm64.tar.gz\"\u003eMacOS arm64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-darwin-arm64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 139c794c22f16b579d08ddd3008c8038b9bb2814f35b5bcca91f50a1f458978d)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-amd64.tar.gz\"\u003eLinux amd64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-amd64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 258e830a9e613c8a7a302d6059b4bb3b9758f2f3e1bb8ea0d707ce10a9a72fea)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm.tar.gz\"\u003eLinux arm\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / a8a614c740399ff1ef32bcea6be6e4523f17e3376f9cf55c192cc48c8f2d1f19)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm64.tar.gz\"\u003eLinux arm64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-arm64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 5ea2d6bc2cda3f8edf985e028809f5a9278f404fb8ab24044de9b7cb9b79a691)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-386.tar.gz\"\u003eLinux i386\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-386.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 88e4c1834307cdbc9f3b80920e1a383e4ba50bb488fb0be1b1fbd4918bb6ae73)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-ppc64le.tar.gz\"\u003eLinux ppc64le\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-ppc64le.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 98bb26a2f3c0b0c1a50db3181dff192554e0c204a07427d98d6b01e259f23cbe)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-s390x.tar.gz\"\u003eLinux s390x\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-s390x.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 584dd77ef8096d6ef939a1822f72840e749fc8311b2b13ae94df5f786862a56b)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-riscv64.tar.gz\"\u003eLinux riscv64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-linux-riscv64.tar.gz.sha256sum\"\u003echecksum\u003c/a\u003e / 957391d0710d72678acd09959b5dc77888cd007a78a4b99944d3b2fc7e1895ca)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-amd64.zip\"\u003eWindows amd64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-amd64.zip.sha256sum\"\u003echecksum\u003c/a\u003e / 24e8e5b71bab4ee17e6f989931ecf4fb144f9916cbe9990c0b6b2ec7b925c454)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-arm64.zip\"\u003eWindows arm64\u003c/a\u003e (\u003ca href=\"https://get.helm.sh/helm-v3.20.2-windows-arm64.zip.sha256sum\"\u003echecksum\u003c/a\u003e / 7c940a73a6882f50b69aec3282549da4a49917669db18fc503db930fb74b9789)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eThe \u003ca href=\"https://helm.sh/docs/intro/quickstart/\"\u003eQuickstart Guide\u003c/a\u003e will get you going from there. For \u003cstrong\u003eupgrade instructions\u003c/strong\u003e or detailed installation notes, check the \u003ca href=\"https://helm.sh/docs/intro/install/\"\u003einstall guide\u003c/a\u003e. You can also use a \u003ca href=\"https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3\"\u003escript to install\u003c/a\u003e on any system with \u003ccode\u003ebash\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Next\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e4.1.5 and 3.20.3 are the next patch (bug fix) releases and will be on April 8, 2026\u003c/li\u003e\n\u003cli\u003e4.2.0 and 3.21.0 are the next minor (feature) releases and will be on May 13, 2026\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Chart dot-name path bug 8fb76d6ab555577e98e23b7500009537a471feee (George Jenkins)\u003c/li\u003e\n\u003cli\u003efix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow 3a8927e275c50cecde273872dad2a5576bd46375 (Terry Howe)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eHelm v3.20.1 is a patch release. Users are encouraged to upgrade for the best experience.\u003c/p\u003e\n\u003cp\u003eThe community keeps growing, and we'd love to see you there!\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eJoin the discussion in \u003ca href=\"https://kubernetes.slack.com\"\u003eKubernetes Slack\u003c/a\u003e:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/8fb76d6ab555577e98e23b7500009537a471feee\"\u003e\u003ccode\u003e8fb76d6\u003c/code\u003e\u003c/a\u003e fix: Chart dot-name path bug\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/3a8927e275c50cecde273872dad2a5576bd46375\"\u003e\u003ccode\u003e3a8927e\u003c/code\u003e\u003c/a\u003e fix: pin codeql-action/upload-sarif to commit SHA in scorecards workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/a2369ca71c0ef633bf6e4fccd66d634eb379b371\"\u003e\u003ccode\u003ea2369ca\u003c/code\u003e\u003c/a\u003e chore(deps): bump the k8s-io group with 7 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/90e10564f7ae746a153f3a03006e7061a54ad490\"\u003e\u003ccode\u003e90e1056\u003c/code\u003e\u003c/a\u003e add image index test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/911f2e908ae40b01ca95b857e94b8894043f64fd\"\u003e\u003ccode\u003e911f2e9\u003c/code\u003e\u003c/a\u003e fix pulling charts from OCI indices\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/76dad33fb1a2b6451920429b4f5f2dd575ea71bb\"\u003e\u003ccode\u003e76dad33\u003c/code\u003e\u003c/a\u003e Remove refactorring changes from coalesce_test.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/45c12f71407b6054a37d3e425d5293ee79a1ab37\"\u003e\u003ccode\u003e45c12f7\u003c/code\u003e\u003c/a\u003e Fix import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/26c6f19f967941dbe53bfb5e52d419b3b3e46075\"\u003e\u003ccode\u003e26c6f19\u003c/code\u003e\u003c/a\u003e Update pkg/chart/common/util/coalesce_test.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/09f5129d49a14c9336cea6f33adf5f52889915ef\"\u003e\u003ccode\u003e09f5129\u003c/code\u003e\u003c/a\u003e Fix lint warning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/helm/helm/commit/417deb2b6b7504357b0f580b76f5eed1bb8a5270\"\u003e\u003ccode\u003e417deb2\u003c/code\u003e\u003c/a\u003e Preserve nil values in chart already\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/helm/helm/compare/v3.19.2...v3.20.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.9.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump the all group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/453\"\u003ein-toto/in-toto-golang#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump the all group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/452\"\u003ein-toto/in-toto-golang#452\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/457\"\u003ein-toto/in-toto-golang#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/459\"\u003ein-toto/in-toto-golang#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ematch: Replace ^ with ! for negation in character classes by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/462\"\u003ein-toto/in-toto-golang#462\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.54.0 to 1.55.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/232\"\u003ein-toto/in-toto-golang#232\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate maintainers and governance by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/233\"\u003ein-toto/in-toto-golang#233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.2 to 1.8.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/234\"\u003ein-toto/in-toto-golang#234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.3 to 2.1.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/235\"\u003ein-toto/in-toto-golang#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.8.3 to 1.8.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/236\"\u003ein-toto/in-toto-golang#236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix expired signature in test by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/241\"\u003ein-toto/in-toto-golang#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.8.0 to 0.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/240\"\u003ein-toto/in-toto-golang#240\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.5 to 2.1.6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/239\"\u003ein-toto/in-toto-golang#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.55.0 to 1.56.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/242\"\u003ein-toto/in-toto-golang#242\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.0 to 1.56.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/243\"\u003ein-toto/in-toto-golang#243\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions workflows by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/246\"\u003ein-toto/in-toto-golang#246\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.9.0 to 0.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/245\"\u003ein-toto/in-toto-golang#245\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove linters that are no longer supported and add to make file by \u003ca href=\"https://github.com/pxp928\"\u003e\u003ccode\u003e@​pxp928\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/249\"\u003ein-toto/in-toto-golang#249\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd match products feature by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/237\"\u003ein-toto/in-toto-golang#237\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove unfinished link on record stop by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/248\"\u003ein-toto/in-toto-golang#248\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.1 to 1.56.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/250\"\u003ein-toto/in-toto-golang#250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.6.0 to 0.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/251\"\u003ein-toto/in-toto-golang#251\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.56.2 to 1.57.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/255\"\u003ein-toto/in-toto-golang#255\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd tests for coverage in envelope.go by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/256\"\u003ein-toto/in-toto-golang#256\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/257\"\u003ein-toto/in-toto-golang#257\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/setup-go from 4.0.1 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/258\"\u003ein-toto/in-toto-golang#258\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golangci/golangci-lint-action from 3.6.0 to 3.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/259\"\u003ein-toto/in-toto-golang#259\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixes filepath pattern matching in windows by \u003ca href=\"https://github.com/PradyumnaKrishna\"\u003e\u003ccode\u003e@​PradyumnaKrishna\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/254\"\u003ein-toto/in-toto-golang#254\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.5.3 to 3.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/261\"\u003ein-toto/in-toto-golang#261\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 3.6.0 to 4.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/262\"\u003ein-toto/in-toto-golang#262\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.11.0 to 0.12.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/263\"\u003ein-toto/in-toto-golang#263\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.57.0 to 1.58.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/264\"\u003ein-toto/in-toto-golang#264\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.0 to 1.58.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/266\"\u003ein-toto/in-toto-golang#266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate Provenance v1 struct in favor of /attestation protobufs by \u003ca href=\"https://github.com/marcelamelara\"\u003e\u003ccode\u003e@​marcelamelara\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/267\"\u003ein-toto/in-toto-golang#267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.1 to 1.58.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/269\"\u003ein-toto/in-toto-golang#269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/checkout from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/270\"\u003ein-toto/in-toto-golang#270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop use of \u003ccode\u003eany\u003c/code\u003e for hash objects by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/238\"\u003ein-toto/in-toto-golang#238\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.12.0 to 0.13.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/271\"\u003ein-toto/in-toto-golang#271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/google/go-cmp from 0.5.9 to 0.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/273\"\u003ein-toto/in-toto-golang#273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.2 to 1.58.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/272\"\u003ein-toto/in-toto-golang#272\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/net from 0.12.0 to 0.17.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/274\"\u003ein-toto/in-toto-golang#274\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.58.3 to 1.59.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/275\"\u003ein-toto/in-toto-golang#275\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/36d782ffb2ca3adbffcdce1fd971c23319dd4469\"\u003e\u003ccode\u003e36d782f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/462\"\u003e#462\u003c/a\u003e from in-toto/fix-negation-character\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/4a09e3bbc44bc687577b6532e57e8a4abfa5ddf4\"\u003e\u003ccode\u003e4a09e3b\u003c/code\u003e\u003c/a\u003e match: Replace ^ with ! for negation in character classes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c3302e8bc36e46119f7ae17c07eb879ff3507caa\"\u003e\u003ccode\u003ec3302e8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/459\"\u003e#459\u003c/a\u003e from in-toto/dependabot/go_modules/github.com/go-jose...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/016e87efbb55c6dd8772ce227002eeb1b6e3f593\"\u003e\u003ccode\u003e016e87e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/5b9df76e685eaa0a950ea9ba3f4a5561e87e13ad\"\u003e\u003ccode\u003e5b9df76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/457\"\u003e#457\u003c/a\u003e from in-toto/dependabot/go_modules/google.golang.org/...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/595b3fe0a13f481eb0ef898ccaff5e345e492a2f\"\u003e\u003ccode\u003e595b3fe\u003c/code\u003e\u003c/a\u003e chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/e396d248c9cf19f9e144f4e90c476af88742bf35\"\u003e\u003ccode\u003ee396d24\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/452\"\u003e#452\u003c/a\u003e from in-toto/dependabot/github_actions/all-502588e1ca\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/142b779059713332fe5c7856e98f1c564c6d6a09\"\u003e\u003ccode\u003e142b779\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/453\"\u003e#453\u003c/a\u003e from in-toto/dependabot/go_modules/all-d8ef5820aa\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/f741bcc43330554606b813fa0f8fe0c284fcdaea\"\u003e\u003ccode\u003ef741bcc\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c374dc9808137651fe8754eed363ec816cd59d2a\"\u003e\u003ccode\u003ec374dc9\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group across 1 directory with 2 updates\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.9.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/theupdateframework/go-tuf/v2` from 2.0.2 to 2.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/theupdateframework/go-tuf/releases\"\u003egithub.com/theupdateframework/go-tuf/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump github.com/sigstore/sigstore from 1.10.3 to 1.10.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/718\"\u003etheupdateframework/go-tuf#718\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnforce a stricter validation on the repo name for TAP 4 by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/720\"\u003etheupdateframework/go-tuf#720\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.4.0...v2.4.1\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.4.0...v2.4.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd BitLength validation for SuccinctRoles by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/716\"\u003etheupdateframework/go-tuf#716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd thread safety documentation for key types by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/715\"\u003etheupdateframework/go-tuf#715\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse restrictive permissions (0700) for cache directories by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/714\"\u003etheupdateframework/go-tuf#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBreaking change: Replace panic with error return in Key.ID() by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/713\"\u003etheupdateframework/go-tuf#713\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.3.1...v2.4.0\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.3.1...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump golang.org/x/crypto from 0.40.0 to 0.45.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/702\"\u003etheupdateframework/go-tuf#702\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eResolve govulncheck errors by bumping go to 1.24.11 by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/707\"\u003etheupdateframework/go-tuf#707\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spf13/cobra from 1.10.1 to 1.10.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/704\"\u003etheupdateframework/go-tuf#704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emodern go (1.20+) improvements by \u003ca href=\"https://github.com/udf2457\"\u003e\u003ccode\u003e@​udf2457\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/705\"\u003etheupdateframework/go-tuf#705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/sigstore/sigstore from 1.9.5 to 1.10.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/706\"\u003etheupdateframework/go-tuf#706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.9.1 to 0.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/708\"\u003etheupdateframework/go-tuf#708\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerform type assertion by \u003ca href=\"https://github.com/kommendorkapten\"\u003e\u003ccode\u003e@​kommendorkapten\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/710\"\u003etheupdateframework/go-tuf#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd tests for failing type assertions by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/711\"\u003etheupdateframework/go-tuf#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eVerify threshold is valid by \u003ca href=\"https://github.com/kommendorkapten\"\u003e\u003ccode\u003e@​kommendorkapten\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/712\"\u003etheupdateframework/go-tuf#712\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.3.0...v2.3.1\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.3.0...v2.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate the config for govulncheck by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/697\"\u003etheupdateframework/go-tuf#697\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go to 1.24.9 by \u003ca href=\"https://github.com/rdimitrov\"\u003e\u003ccode\u003e@​rdimitrov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/698\"\u003etheupdateframework/go-tuf#698\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.2.0...v2.3.0\"\u003ehttps://github.com/theupdateframework/go-tuf/compare/v2.2.0...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: treat http 403 as an updater error by \u003ca href=\"https://github.com/MDr164\"\u003e\u003ccode\u003e@​MDr164\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/687\"\u003etheupdateframework/go-tuf#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/sigstore/sigstore from 1.8.4 to 1.8.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/646\"\u003etheupdateframework/go-tuf#646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/cenkalti/backoff/v5 from 5.0.2 to 5.0.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/690\"\u003etheupdateframework/go-tuf#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.9.0 to 0.9.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/691\"\u003etheupdateframework/go-tuf#691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/692\"\u003etheupdateframework/go-tuf#692\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/stretchr/testify from 1.11.0 to 1.11.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/693\"\u003etheupdateframework/go-tuf#693\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/pull/694\"\u003etheupdateframework/go-tuf#694\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/d361e2ea24e427581343dee5c7a32b485d79fcc0\"\u003e\u003ccode\u003ed361e2e\u003c/code\u003e\u003c/a\u003e Enforce a stricter validation on the repo name for TAP 4 (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/720\"\u003e#720\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/29aae36c83127913c24e881bc1f95dbb0f0961e6\"\u003e\u003ccode\u003e29aae36\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/sigstore/sigstore from 1.10.3 to 1.10.4 (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/718\"\u003e#718\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/bde5f18dc95dfac365fc452ee4e278e5fd66d4b4\"\u003e\u003ccode\u003ebde5f18\u003c/code\u003e\u003c/a\u003e Replace panic with error return in Key.ID() (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/713\"\u003e#713\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/f400bf4c20476804475d34239f01212e1041ec38\"\u003e\u003ccode\u003ef400bf4\u003c/code\u003e\u003c/a\u003e Use restrictive permissions (0700) for cache directories (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/714\"\u003e#714\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/d2dbc180e74f4fe371392bb0b02d5a8659bc2fa4\"\u003e\u003ccode\u003ed2dbc18\u003c/code\u003e\u003c/a\u003e Add thread safety documentation for key types (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/715\"\u003e#715\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/846cd4eccd92b1a333c89cb45cf4f179de74018f\"\u003e\u003ccode\u003e846cd4e\u003c/code\u003e\u003c/a\u003e Add BitLength validation for SuccinctRoles (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/716\"\u003e#716\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/b38d91fdbc69dfe31fe9230d97dafe527ea854a0\"\u003e\u003ccode\u003eb38d91f\u003c/code\u003e\u003c/a\u003e Verify threshold is valid (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/712\"\u003e#712\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/876cf2a82b320be6deb43f4ad629057b209a584e\"\u003e\u003ccode\u003e876cf2a\u003c/code\u003e\u003c/a\u003e Add tests for failing type assertions (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/711\"\u003e#711\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/73345ab6b0eb7e59d525dac17a428f043074cef6\"\u003e\u003ccode\u003e73345ab\u003c/code\u003e\u003c/a\u003e Perform type assertion (\u003ca href=\"https://redirect.github.com/theupdateframework/go-tuf/issues/710\"\u003e#710\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/theupdateframework/go-tuf/commit/d3cdc4b2796d8c452ce17766f0cade2e80a3597d\"\u003e\u003ccode\u003ed3cdc4b\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/secure-systems-lab/go-securesystemslib from 0.9....\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/theupdateframework/go-tuf/compare/v2.0.2...v2.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/anchore/quill` from 0.5.1 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anchore/quill/releases\"\u003egithub.com/anchore/quill's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.7.1\u003c/h1\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow for unbounded reads for user controlled input [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/681\"\u003e#681\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAccount for excessive read limits in macho parsing [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/682\"\u003e#682\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eValidate developer log URL requests [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/680\"\u003e#680\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.7.0...v0.7.1\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch1\u003ev0.7.0\u003c/h1\u003e\n\u003ch3\u003eAdded Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edry run signing and notarization process before running in production [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/617\"\u003e#617\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/618\"\u003e#618\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTeamID is not set during signing [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/147\"\u003e#147\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/669\"\u003e#669\u003c/a\u003e \u003ca href=\"https://github.com/jflowers\"\u003e\u003ccode\u003e@​jflowers\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditional Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypo in install.sh help text [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/546\"\u003e#546\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/549\"\u003e#549\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003emigrate to latest tool ci patterns [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/670\"\u003e#670\u003c/a\u003e \u003ca href=\"https://github.com/spiffcs\"\u003e\u003ccode\u003e@​spiffcs\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate golang to v1.26 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/668\"\u003e#668\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003edoc: Add llms.txt for the 🤖 🕷️ [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/592\"\u003e#592\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eUpdate dependencies [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/627\"\u003e#627\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAdd periodic workflow to update certs [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/608\"\u003e#608\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003elint gh actions with zizmor [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/581\"\u003e#581\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate to go 1.24.x [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/543\"\u003e#543\u003c/a\u003e \u003ca href=\"https://github.com/westonsteimel\"\u003e\u003ccode\u003e@​westonsteimel\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate runners to ubuntu-24.04 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/541\"\u003e#541\u003c/a\u003e \u003ca href=\"https://github.com/kzantow\"\u003e\u003ccode\u003e@​kzantow\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.0\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/9cdb0823ea1d2c45dcc11557f8c5cd7291c75d29\"\u003e\u003ccode\u003e9cdb082\u003c/code\u003e\u003c/a\u003e do not allow for unbounded reads for user controlled input (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/681\"\u003e#681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/80cf3fe082678af0ec4f9f8dd93f39189d2dc1fe\"\u003e\u003ccode\u003e80cf3fe\u003c/code\u003e\u003c/a\u003e account for excessive read limits in macho parsing code (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/682\"\u003e#682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/e41d66a517c2dc20ad8e9fbccffbdc6ba5ef0020\"\u003e\u003ccode\u003ee41d66a\u003c/code\u003e\u003c/a\u003e validate developer log URL requests (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/899202c7eace3de7b3f4f7461bdfd1c4c38701db\"\u003e\u003ccode\u003e899202c\u003c/code\u003e\u003c/a\u003e update cred var values for p12 in release (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/679\"\u003e#679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/c73a37bd3b655633c1bd5466c2b2f65b2ae4032c\"\u003e\u003ccode\u003ec73a37b\u003c/code\u003e\u003c/a\u003e remove goreleaser config for release step + update tool refs (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/95e119c6cb513a69f6b45d3e86a9fbcb2c77b669\"\u003e\u003ccode\u003e95e119c\u003c/code\u003e\u003c/a\u003e persist credentials for git (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/02e765ab563811d7a3f0ede8df36977da92e8779\"\u003e\u003ccode\u003e02e765a\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/663\"\u003e#663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/530bb7f3ddf667d262891b79fb15c0147d81cf11\"\u003e\u003ccode\u003e530bb7f\u003c/code\u003e\u003c/a\u003e add test notarize command (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/3e8269c31055b1878a34c1954347254a42b37452\"\u003e\u003ccode\u003e3e8269c\u003c/code\u003e\u003c/a\u003e Set team ID during signing (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/12b3e8eb4c06d7582da9725fad3bc7c268872752\"\u003e\u003ccode\u003e12b3e8e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/blacktop/go-macho from 1.1.259 to 1.1.263 (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream` from 1.7.0 to 1.7.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/4599f78694cabb6853addabc6f92cb197fdb5647\"\u003e\u003ccode\u003e4599f78\u003c/code\u003e\u003c/a\u003e Release 2023-08-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2a439ce0fdda24816a5ea71c083765af67e93599\"\u003e\u003ccode\u003e2a439ce\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/46f31d76b34aefbc66bbfb08d2ef7e22267d4b66\"\u003e\u003ccode\u003e46f31d7\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/525486a4cfa9b8364ea5346a526dd1f92d3edc76\"\u003e\u003ccode\u003e525486a\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b4e3176642b69937575f61f752f7d094fb6f4084\"\u003e\u003ccode\u003eb4e3176\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2189\"\u003e#2189\u003c/a\u003e from aws/feat-presign-polly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/30fe9b8de4c8538156248ae21b577a3e49170750\"\u003e\u003ccode\u003e30fe9b8\u003c/code\u003e\u003c/a\u003e Modify and Merge polly mod import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f6c1d4839450e7f99850868570ff0c47850b72ca\"\u003e\u003ccode\u003ef6c1d48\u003c/code\u003e\u003c/a\u003e sync polly presigner from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/396f97a998c5fab5bc7ee7bd4297c6d0f42b661e\"\u003e\u003ccode\u003e396f97a\u003c/code\u003e\u003c/a\u003e Release 2023-08-18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/08ab45438df135fc66f2eaf80032694ff2486db3\"\u003e\u003ccode\u003e08ab454\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b50999bacbf780bf55d5c2b051c96e5c4467a5f6\"\u003e\u003ccode\u003eb50999b\u003c/code\u003e\u003c/a\u003e Update SDK's smithy-go dependency to v1.14.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.7.0...service/m2/v1.7.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/buger/jsonparser` from 1.1.1 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/buger/jsonparser/releases\"\u003egithub.com/buger/jsonparser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated travis to build for 1.13 to 1.15 by \u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003eeliminate 2 allocations in EachKey() by \u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003efix issue \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/150\"\u003e#150\u003c/a\u003e (in deleting case) by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efixing the oss-fuzz issue by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/227\"\u003ebuger/jsonparser#227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix parseInt overflow check false negative by \u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded bespoke error for null cases by \u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFuzzing: Add CIFuzz by \u003ca href=\"https://github.com/AdamKorcz\"\u003e\u003ccode\u003e@​AdamKorcz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/239\"\u003ebuger/jsonparser#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded latest versions of go to tests by \u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix EachKey pIdxFlags allocation by \u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on negative slice index in Delete with malformed JSON (GO-2026-4514) by \u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a69e7e01cd4ad67bdfd3ac2c080b9212af16f4b0\"\u003e\u003ccode\u003ea69e7e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/276\"\u003e#276\u003c/a\u003e from dbarrosop/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/d3eacc0bab779d6cf98221f5268828fff287876e\"\u003e\u003ccode\u003ed3eacc0\u003c/code\u003e\u003c/a\u003e fix: prevent panic on negative slice index in Delete with malformed JSON (GO-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/61b32cfdfa0f5d368ef7c7daef28ce12d538740f\"\u003e\u003ccode\u003e61b32cf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/241\"\u003e#241\u003c/a\u003e from unxcepted/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2181e8398f18397c9cacbaea9889314bb585e868\"\u003e\u003ccode\u003e2181e83\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/244\"\u003e#244\u003c/a\u003e from ScaleChamp/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/1510b5194182fc2fb898f28cdbceb42fd7258bfa\"\u003e\u003ccode\u003e1510b51\u003c/code\u003e\u003c/a\u003e Added latest versions of go to tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/6fc2e488ed3cc4f1f1debec3b0c70715bd7be6fd\"\u003e\u003ccode\u003e6fc2e48\u003c/code\u003e\u003c/a\u003e fix: eachkey allocation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a6f867eb7787e4ec54536b77b5d628ddf5c4f73d\"\u003e\u003ccode\u003ea6f867e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/239\"\u003e#239\u003c/a\u003e from AdamKorcz/cifuzz1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/cbc01fdbbe131706e89eeaaf0cd917760d8d3949\"\u003e\u003ccode\u003ecbc01fd\u003c/code\u003e\u003c/a\u003e Fuzzing: Add CIFuzz\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/dc92d6932a1272b4d8f485f798a88c3a75106256\"\u003e\u003ccode\u003edc92d69\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/228\"\u003e#228\u003c/a\u003e from jonomacd/null-handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2d9d6343e8621ddc18c70749663f74bc584c0de4\"\u003e\u003ccode\u003e2d9d634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/231\"\u003e#231\u003c/a\u003e from carsonip/fix-parseint-overflow-check\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. b...\n\n_Description has been truncated_\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpdate Go dependencies across the repo to pick up security fixes and performance improvements. Notable changes include gRPC and Helm security patches and a major `github.com/agentgateway/agentgateway` upgrade with faster CEL evaluation.\n\n- **Dependencies**\n  - `google.golang.org/grpc` → 1.79.3: fixes an auth bypass by rejecting malformed :path headers.\n  - `helm.sh/helm/v3` → 3.20.2: security patch for chart extraction path handling.\n  - `github.com/agentgateway/agentgateway` → 0.12.0: CEL rewrite with large perf gains and minor behavior tweaks.\n  - `github.com/buger/jsonparser` → 1.1.2: fixes panic on malformed JSON.\n  - `github.com/cloudflare/circl` → 1.6.3: bug fix in P-384 scalar multiplication.\n  - `github.com/sigstore/cosign/v2` → 2.6.2 and related `sigstore/*` bumps: supply chain signing updates.\n  - `github.com/moby/spdystream` → 0.5.1: patch applied in root and `hack/utils/applier`.\n  - Tooling/libs: Go 1.25.5, k8s libs v0.35.1, OpenTelemetry 1.39.0, `helm.sh/helm/v3` 3.20.2.\n\n- **Migration**\n  - Review CEL policies with `agentgateway` v0.12.0 (e.g., `base64.encode` naming and stricter variable lookups).\n  - Run an end-to-end smoke test to confirm routes with path-based auth still pass with gRPC’s stricter path validation.\n\n\u003csup\u003eWritten for commit f2d9194e186a8d9e9e41df92f41d5245e7adaa82. Summary will update on new commits.\u003c/sup\u003e\n\n\u003ca href=\"https://cubic.dev/pr/EmilynnJ/kgateway/pull/2?utm_source=github\" target=\"_blank\" rel=\"noopener noreferrer\" data-no-image-dialog=\"true\"\u003e\u003cpicture\u003e\u003csource media=\"(prefers-color-scheme: dark)\" srcset=\"https://cubic.dev/buttons/review-in-cubic-dark.svg\"\u003e\u003csource media=\"(prefers-color-scheme: light)\" srcset=\"https://cubic.dev/buttons/review-in-cubic-light.svg\"\u003e\u003cimg alt=\"Review in cubic\" src=\"https://cubic.dev/buttons/review-in-cubic-dark.svg\"\u003e\u003c/picture\u003e\u003c/a\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n\n\n\u003c!-- Macroscope's pull request summary starts here --\u003e\n\u003c!-- Macroscope will only edit the content between these invisible markers, and the markers themselves will not be visible in the GitHub rendered markdown. --\u003e\n\u003c!-- If you delete either of the start / end markers from your PR's description, Macroscope will append its summary at the bottom of the description. --\u003e\n\u003e [!NOTE]\n\u003e ### Bump Go dependencies across root and applier modules with 25 updates\n\u003e Updates [go.mod](https://github.com/EmilynnJ/kgateway/pull/2/files#diff-33ef32bf6c23acb95f5902d7097b7a1d5128ca061167ec0716715b0b9eeaa5f6) and [hack/utils/applier/go.mod](https://github.com/EmilynnJ/kgateway/pull/2/files#diff-7d16860419c22926d06b08ae9b67f33b83236c49e7008e3b4c652e3c87df9748) to their latest versions. Key upgrades include Kubernetes libraries to v0.35.1, Helm v3 to v3.20.2, agentgateway to v0.12.0, gRPC/protobuf, and extensive AWS SDK v1/v2 updates. Several indirect dependencies are removed (e.g. `go-chi/chi`, `mitchellh/mapstructure`, `sourcegraph/conc`) and new ones added (e.g. `moby/moby`, `coreos/go-oidc/v3`). Risk: transitive dependency additions and removals may surface unexpected build or runtime behavior in modules that relied on removed packages.\n\u003e\n\u003e \u003c!-- Macroscope's review summary starts here --\u003e\n\u003e\n\u003e \u003csup\u003e\u003ca href=\"https://app.macroscope.com\"\u003eMacroscope\u003c/a\u003e summarized f2d9194.\u003c/sup\u003e\n\u003e \u003c!-- Macroscope's review summary ends here --\u003e\n\u003e\n\u003c!-- macroscope-ui-refresh --\u003e\n\u003c!-- Macroscope's pull request summary ends here --\u003e","html_url":"https://github.com/EmilynnJ/kgateway/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/EmilynnJ%2Fkgateway/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"5.6.2","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-26T14:04:44.000Z","version_change":"5.6.2 → 5.9.0","issue":{"uuid":"4524763568","node_id":"PR_kwDOIF5UGs7fb8gu","number":2055,"state":"closed","title":"chore(deps): bump the gomod-minor-and-patch group across 1 directory with 17 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-27T01:37:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-26T14:04:44.000Z","updated_at":"2026-05-27T01:37:58.000Z","time_to_close":41592,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"gomod-minor-and-patch","update_count":17,"packages":[{"name":"github.com/bmatcuk/doublestar/v4","old_version":"4.9.1","new_version":"4.10.0","repository_url":"https://github.com/bmatcuk/doublestar"},{"name":"github.com/charmbracelet/bubbletea","old_version":"1.3.5","new_version":"1.3.10","repository_url":"https://github.com/charmbracelet/bubbletea"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.4","new_version":"5.19.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/gofrs/flock","old_version":"0.12.1","new_version":"0.13.0","repository_url":"https://github.com/gofrs/flock"},{"name":"github.com/hashicorp/go-version","old_version":"1.7.0","new_version":"1.9.0","repository_url":"https://github.com/hashicorp/go-version"},{"name":"github.com/samber/lo","old_version":"1.52.0","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/speakeasy-api/openapi","old_version":"1.20.0","new_version":"1.23.0","repository_url":"https://github.com/speakeasy-api/openapi"},{"name":"github.com/speakeasy-api/versioning-reports","old_version":"0.6.1","new_version":"0.7.0","repository_url":"https://github.com/speakeasy-api/versioning-reports"},{"name":"github.com/spf13/cobra","old_version":"1.10.1","new_version":"1.10.2","repository_url":"https://github.com/spf13/cobra"},{"name":"github.com/spf13/pflag","old_version":"1.0.9","new_version":"1.0.10","repository_url":"https://github.com/spf13/pflag"},{"name":"github.com/spf13/viper","old_version":"1.19.0","new_version":"1.21.0","repository_url":"https://github.com/spf13/viper"},{"name":"go.uber.org/zap","old_version":"1.27.1","new_version":"1.28.0","repository_url":"https://github.com/uber-go/zap"},{"name":"golang.org/x/oauth2","old_version":"0.33.0","new_version":"0.36.0","repository_url":"https://github.com/golang/oauth2"},{"name":"oras.land/oras-go/v2","old_version":"2.5.0","new_version":"2.6.0","repository_url":"https://github.com/oras-project/oras-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the gomod-minor-and-patch group with 15 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/bmatcuk/doublestar/v4](https://github.com/bmatcuk/doublestar) | `4.9.1` | `4.10.0` |\n| [github.com/charmbracelet/bubbletea](https://github.com/charmbracelet/bubbletea) | `1.3.5` | `1.3.10` |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.2` | `5.9.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.16.4` | `5.19.1` |\n| [github.com/gofrs/flock](https://github.com/gofrs/flock) | `0.12.1` | `0.13.0` |\n| [github.com/hashicorp/go-version](https://github.com/hashicorp/go-version) | `1.7.0` | `1.9.0` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.52.0` | `1.53.0` |\n| [github.com/speakeasy-api/openapi](https://github.com/speakeasy-api/openapi) | `1.20.0` | `1.23.0` |\n| [github.com/speakeasy-api/versioning-reports](https://github.com/speakeasy-api/versioning-reports) | `0.6.1` | `0.7.0` |\n| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.1` | `1.10.2` |\n| [github.com/spf13/pflag](https://github.com/spf13/pflag) | `1.0.9` | `1.0.10` |\n| [github.com/spf13/viper](https://github.com/spf13/viper) | `1.19.0` | `1.21.0` |\n| [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.1` | `1.28.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.33.0` | `0.36.0` |\n| [oras.land/oras-go/v2](https://github.com/oras-project/oras-go) | `2.5.0` | `2.6.0` |\n\n\nUpdates `github.com/bmatcuk/doublestar/v4` from 4.9.1 to 4.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/bmatcuk/doublestar/releases\"\u003egithub.com/bmatcuk/doublestar/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eAdded WithNoHidden option\u003c/h2\u003e\n\u003cp\u003eAdded support for a \u003ccode\u003eWithNoHidden\u003c/code\u003e option to ignore hidden files in patterns that might unintentionally match them. For example, a \u003ccode\u003e.config\u003c/code\u003e directory would not be matched by \u003ccode\u003e*\u003c/code\u003e or recursed into by \u003ccode\u003e**\u003c/code\u003e, but \u003cem\u003ewould\u003c/em\u003e be matched by \u003ccode\u003e.*\u003c/code\u003e or recursed by \u003ccode\u003e.config/**\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003eThanks to \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e for the initial PR and idea!\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add WithNoHidden option to skip hidden files by \u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lukasngl\"\u003e\u003ccode\u003e@​lukasngl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/109\"\u003ebmatcuk/doublestar#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.2...v4.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eFixed Handling of Paths With Meta Chars Using Alts\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e submitted a PR that fixed a small bug with the way paths were handled when the pattern used \u003ccode\u003e{alts}\u003c/code\u003e: if some part of the on-disk path that came before the \u003ccode\u003e{alt}\u003c/code\u003e included meta characters (say, a directory name that included the character \u003ccode\u003e?\u003c/code\u003e), these meta characters were not escaped when they were passed back through the globbing routines. This caused doublestar to interpret them as actual meta characters, rather than a fixed-string path as it should have. Nice find, \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e !\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: escape meta characters in paths during brace expansion by \u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/toga4\"\u003e\u003ccode\u003e@​toga4\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/bmatcuk/doublestar/pull/108\"\u003ebmatcuk/doublestar#108\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\"\u003ehttps://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.9.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/a9ad9e0ef4d6b7e4443090e9a7201d847a881711\"\u003e\u003ccode\u003ea9ad9e0\u003c/code\u003e\u003c/a\u003e allow starting test manually\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/9987c0c624376f84f44515adca73ddcdfdcdf453\"\u003e\u003ccode\u003e9987c0c\u003c/code\u003e\u003c/a\u003e update docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/d3b2184d103391fcd0fcca6590c16367310eee65\"\u003e\u003ccode\u003ed3b2184\u003c/code\u003e\u003c/a\u003e windows support for WithNoHidden; better tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/5d6a6cd76ba3e45482d13140f332be36451f5a48\"\u003e\u003ccode\u003e5d6a6cd\u003c/code\u003e\u003c/a\u003e Merge branch 'lukasngl-feat/no-hidden'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/e8319d206e9dab8d51d41e662811cdfb9af72b24\"\u003e\u003ccode\u003ee8319d2\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/614b331133390c7682c227740c51ff65dea2de65\"\u003e\u003ccode\u003e614b331\u003c/code\u003e\u003c/a\u003e run tests when a branch/tag is created\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/df2e03fb0b91b726e0366c0d9ba1c5e580e2d0c9\"\u003e\u003ccode\u003edf2e03f\u003c/code\u003e\u003c/a\u003e feat: add WithNoHidden option to skip hidden files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/3dc83064cf84411e82d1fa4fc734cb4f35778846\"\u003e\u003ccode\u003e3dc8306\u003c/code\u003e\u003c/a\u003e Merge branch 'toga4-fix-brace-exp-with-meta'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4db19e22da8418ce3bea1c0b7162a7d07ac59f13\"\u003e\u003ccode\u003e4db19e2\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/bmatcuk/doublestar/commit/4ef2b0039144da38066784f2efa4e51112855878\"\u003e\u003ccode\u003e4ef2b00\u003c/code\u003e\u003c/a\u003e fix: escape meta characters in paths during brace expansion\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/bmatcuk/doublestar/compare/v4.9.1...v4.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/charmbracelet/bubbletea` from 1.3.5 to 1.3.10\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/charmbracelet/bubbletea/releases\"\u003egithub.com/charmbracelet/bubbletea's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.10\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e9edf69c677c7353eca5fae6d3ea3986af39717b7: fix: handle setWindowTitleMsg and windowSizeMsg in eventLoop (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eThoughts? Questions? We love hearing from you. Feel free to reach out on \u003ca href=\"https://x.com/charmcli\"\u003eX\u003c/a\u003e, \u003ca href=\"https://charm.land/discord\"\u003eDiscord\u003c/a\u003e, \u003ca href=\"https://charm.land/slack\"\u003eSlack\u003c/a\u003e, \u003ca href=\"https://mastodon.social/@charmcli\"\u003eThe Fediverse\u003c/a\u003e, \u003ca href=\"https://bsky.app/profile/charm.land\"\u003eBluesky\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.3.9\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e314b50c7b452fd737d28582ae9d27c04ea725001: feat: properly call nested sequenceMsg and batchMsg (\u003ca href=\"https://github.com/wolfmagnate\"\u003e\u003ccode\u003e@​wolfmagnate\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e9e0e8f0df1c55044ed04bd17f4b460e01e94dc9c: fix: recover from nested panics in Sequence and Batch commands (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6e1282a76358cb680de9d4de7520f9f99c9e2903: add example for the nested Sequence and Batch (\u003ca href=\"https://github.com/wolfmagnate\"\u003e\u003ccode\u003e@​wolfmagnate\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0290af4a499ee6a3e22822cebe1e74fdeac313be: simplify case for BatchMsg (\u003ca href=\"https://github.com/wolfmagnate\"\u003e\u003ccode\u003e@​wolfmagnate\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eThoughts? Questions? We love hearing from you. Feel free to reach out on \u003ca href=\"https://twitter.com/charmcli\"\u003eTwitter\u003c/a\u003e, \u003ca href=\"https://charm.land/discord\"\u003eDiscord\u003c/a\u003e, \u003ca href=\"https://charm.land/slack\"\u003eSlack\u003c/a\u003e, \u003ca href=\"https://mastodon.technology/@charm\"\u003eThe Fediverse\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.3.8\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e21eecd586367fd0cd78da6842c48f9c4b1185b6f: fix: send batch commands to cmds channel instead of executing them in event loop (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1473\"\u003e#1473\u003c/a\u003e) (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/p\u003e\n\u003cp\u003eThoughts? Questions? We love hearing from you. Feel free to reach out on \u003ca href=\"https://twitter.com/charmcli\"\u003eTwitter\u003c/a\u003e, \u003ca href=\"https://charm.land/discord\"\u003eDiscord\u003c/a\u003e, \u003ca href=\"https://charm.land/slack\"\u003eSlack\u003c/a\u003e, \u003ca href=\"https://mastodon.technology/@charm\"\u003eThe Fediverse\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.3.7\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e28ab4f41b29fef14d900c46a4873a45891a9ee9b: fix(renderer): properly reset cursor position to start of line (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1472\"\u003e#1472\u003c/a\u003e) (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec76509a9d4974207cd66255707d14f4f938f7f52: fix: compact sequences like batches (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/958\"\u003e#958\u003c/a\u003e) (\u003ca href=\"https://github.com/jdhenke\"\u003e\u003ccode\u003e@​jdhenke\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef5da8d068af74764b271a197de54e2bc2bfedb38: fix: handle nested SequenceMsg in event loop and use sync.WaitGroup f… (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1463\"\u003e#1463\u003c/a\u003e) (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e80ea844a7650c84e13958de14cdd4f63ac1775aa: fix: lint issues in key_windows.go and tty_windows.go (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ec3136ed49037a096fe05c6cb16f0a14a38e20c58: docs(license): update copyright date range (\u003ca href=\"https://github.com/meowgorithm\"\u003e\u003ccode\u003e@​meowgorithm\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e919805f8f0d134af7e3569b0054c13b561976dfa: docs(readme): update footer art (\u003ca href=\"https://github.com/meowgorithm\"\u003e\u003ccode\u003e@​meowgorithm\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef01583bb899e125c7a26d3b870eff585ec0f4816: docs: show the correct branch in the build badge (\u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/9edf69c677c7353eca5fae6d3ea3986af39717b7\"\u003e\u003ccode\u003e9edf69c\u003c/code\u003e\u003c/a\u003e fix: handle setWindowTitleMsg and windowSizeMsg in eventLoop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/31c0299982a8237acc35979ce07f25f441c62cd6\"\u003e\u003ccode\u003e31c0299\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/lucasb-eyer/go-colorful (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1496\"\u003e#1496\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/ffa05021909e14c478cbe138ca78effbea04e4e0\"\u003e\u003ccode\u003effa0502\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/848\"\u003e#848\u003c/a\u003e from wolfmagnate/fix-nested-cmd-order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/9e0e8f0df1c55044ed04bd17f4b460e01e94dc9c\"\u003e\u003ccode\u003e9e0e8f0\u003c/code\u003e\u003c/a\u003e fix: recover from nested panics in Sequence and Batch commands\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/0966c3a140902959f86223eb4092bb52a74e8c96\"\u003e\u003ccode\u003e0966c3a\u003c/code\u003e\u003c/a\u003e Merge branch 'main' into fix-nested-cmd-order\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/21eecd586367fd0cd78da6842c48f9c4b1185b6f\"\u003e\u003ccode\u003e21eecd5\u003c/code\u003e\u003c/a\u003e fix: send batch commands to cmds channel instead of executing them in event l...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/9aae1f0a1bce0226c058b969f8f13f40bf012a69\"\u003e\u003ccode\u003e9aae1f0\u003c/code\u003e\u003c/a\u003e chore(examples): go mod tidy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/41f39959f2617a5cba6530608690e98c682c4439\"\u003e\u003ccode\u003e41f3995\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys in the all group (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1492\"\u003e#1492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/3da2d282196bb732a8b80a373318d73f29b6bb55\"\u003e\u003ccode\u003e3da2d28\u003c/code\u003e\u003c/a\u003e chore(deps): bump actions/setup-go from 5 to 6 in the all group (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1491\"\u003e#1491\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charmbracelet/bubbletea/commit/28ab4f41b29fef14d900c46a4873a45891a9ee9b\"\u003e\u003ccode\u003e28ab4f4\u003c/code\u003e\u003c/a\u003e fix(renderer): properly reset cursor position to start of line (\u003ca href=\"https://redirect.github.com/charmbracelet/bubbletea/issues/1472\"\u003e#1472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/charmbracelet/bubbletea/compare/v1.3.5...v1.3.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-billy/v5` from 5.6.2 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.4 to 5.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ev5: plumbing: transport/ssh, Shell-quote path by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2068\"\u003ego-git/go-git#2068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, Fix relative URL resolution by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2070\"\u003ego-git/go-git#2070\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, canonical remote for relative URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2074\"\u003ego-git/go-git#2074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, error on remote without URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2078\"\u003ego-git/go-git#2078\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/idxfile, Validate offset64 indices by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2084\"\u003ego-git/go-git#2084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: *: Reject malformed variable-length integers by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2092\"\u003ego-git/go-git#2092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/packfile, Tighten delta validation by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2091\"\u003ego-git/go-git#2091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Add \u003ccode\u003eworktreeFilesystem\u003c/code\u003e wrapper for worktree and hardening by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2100\"\u003ego-git/go-git#2100\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: config: validate submodule names by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2082\"\u003ego-git/go-git#2082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.19.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2111\"\u003ego-git/go-git#2111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Allow MkdirAll on worktree-root paths by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2117\"\u003ego-git/go-git#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Stop validating symlink target paths by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2116\"\u003ego-git/go-git#2116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format decoder input bounds and contracts by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2125\"\u003ego-git/go-git#2125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: format/packfile, cap delta chain depth in parser by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2137\"\u003ego-git/go-git#2137\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3c3be601aa6c0fd0d536c0d1e4f898b4c60e65fe\"\u003e\u003ccode\u003e3c3be60\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2137\"\u003e#2137\u003c/a\u003e from go-git/validate-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3fba897bd9e84b1aec170fa708b80e297b7d6cf6\"\u003e\u003ccode\u003e3fba897\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, cap delta chain depth in parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a97d6601c85e017bb64c2b0f2e3169f6ef6a6709\"\u003e\u003ccode\u003ea97d660\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2125\"\u003e#2125\u003c/a\u003e from hiddeco/v5/format-input-bounds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/aeaa125c8af8e4c4c95b574c22c5633e97fc436e\"\u003e\u003ccode\u003eaeaa125\u003c/code\u003e\u003c/a\u003e plumbing: format/objfile, require Header before Read\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1f38e171218526ea254a73187a52f0648253c1b8\"\u003e\u003ccode\u003e1f38e17\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, bound inflate size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f7545a02529e03998d6a7219140dc0e6644ad337\"\u003e\u003ccode\u003ef7545a0\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, bound nr by file size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/170b88181f385913a457a08b68c88956fb3f8e4f\"\u003e\u003ccode\u003e170b881\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2116\"\u003e#2116\u003c/a\u003e from pjbgf/symlink-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/7b6d994467f06630268904aa3c441b6de7248b31\"\u003e\u003ccode\u003e7b6d994\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2117\"\u003e#2117\u003c/a\u003e from hiddeco/v5/worktree-fs-mkdirall-root-noop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f0709b32f8fbb87c16cd63c6762d2cd515f36541\"\u003e\u003ccode\u003ef0709b3\u003c/code\u003e\u003c/a\u003e git: Stop validating symlink target paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/776d00f11d336f26862d0f2bab987b217f3a7844\"\u003e\u003ccode\u003e776d00f\u003c/code\u003e\u003c/a\u003e git: Allow MkdirAll on worktree-root paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gofrs/flock` from 0.12.1 to 0.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gofrs/flock/releases\"\u003egithub.com/gofrs/flock's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eMinimum Go version 1.24\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003efeat: add Stat method by \u003ca href=\"https://github.com/ferhatelmas\"\u003e\u003ccode\u003e@​ferhatelmas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/gofrs/flock/pull/127\"\u003egofrs/flock#127\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.22.0 to 0.37.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ehttps://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/bfec60bb026171031050af631b6dec974f14e9fa\"\u003e\u003ccode\u003ebfec60b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.36.0 to 0.37.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/7094284415ad11369be4662a7c12be25963b4ea5\"\u003e\u003ccode\u003e7094284\u003c/code\u003e\u003c/a\u003e chore: update linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/8111aec69ca1501f26bb5198ed02673e87806e65\"\u003e\u003ccode\u003e8111aec\u003c/code\u003e\u003c/a\u003e feat: add Stat method (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/127\"\u003e#127\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/6f0f0ed4e14d546b238ae500710aba38b924e135\"\u003e\u003ccode\u003e6f0f0ed\u003c/code\u003e\u003c/a\u003e chore(deps): bump the github-actions group with 4 updates (\u003ca href=\"https://redirect.github.com/gofrs/flock/issues/126\"\u003e#126\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/fe44231e563ec57fda028bc2484140fb1f24a6d1\"\u003e\u003ccode\u003efe44231\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.35.0 to 0.36.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/f74f0fb0332646c6b3730bfe9cce6fc0badc52c6\"\u003e\u003ccode\u003ef74f0fb\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 in the go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c1f6d161c8e3b29a4d612e34ff17b37d00d4cd2f\"\u003e\u003ccode\u003ec1f6d16\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.34.0 to 0.35.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/c542c57ff5f6af1d62b6864144170b612731796a\"\u003e\u003ccode\u003ec542c57\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.29.2 to 3.29.5 in the github-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/425570ba9b698b04bb9506c4906f137fb34ac7e0\"\u003e\u003ccode\u003e425570b\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/sys from 0.33.0 to 0.34.0 in the gomod group (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gofrs/flock/commit/12753ea298e1aeb97f0881ff3fc07eabcb2b86e5\"\u003e\u003ccode\u003e12753ea\u003c/code\u003e\u003c/a\u003e chore(deps): bump github/codeql-action from 3.28.18 to 3.29.2 in the github-a...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gofrs/flock/compare/v0.12.1...v0.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-version` from 1.7.0 to 1.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/releases\"\u003egithub.com/hashicorp/go-version's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for prefix of any character by \u003ca href=\"https://github.com/brondum\"\u003e\u003ccode\u003e@​brondum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/79\"\u003ehashicorp/go-version#79\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eInternal\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate CHANGELOG for version 1.8.0 enhancements by \u003ca href=\"https://github.com/sonamtenzin2\"\u003e\u003ccode\u003e@​sonamtenzin2\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/178\"\u003ehashicorp/go-version#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/179\"\u003ehashicorp/go-version#179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/180\"\u003ehashicorp/go-version#180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/182\"\u003ehashicorp/go-version#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions to trigger on pull requests and update go version by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/185\"\u003ehashicorp/go-version#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaking group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/183\"\u003ehashicorp/go-version#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/186\"\u003ehashicorp/go-version#186\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sonamtenzin2\"\u003e\u003ccode\u003e@​sonamtenzin2\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/178\"\u003ehashicorp/go-version#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/brondum\"\u003e\u003ccode\u003e@​brondum\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/79\"\u003ehashicorp/go-version#79\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/185\"\u003ehashicorp/go-version#185\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.8.0...v1.9.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.8.0...v1.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot by \u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required by \u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd benchmark test for version.String() by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation by \u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() by \u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nodyhub\"\u003e\u003ccode\u003e@​nodyhub\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/compliance-pr-automation-bot\"\u003e\u003ccode\u003e@​compliance-pr-automation-bot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Manikkumar1988\"\u003e\u003ccode\u003e@​Manikkumar1988\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/florianl\"\u003e\u003ccode\u003e@​florianl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\"\u003ehttps://github.com/hashicorp/go-version/compare/v1.7.0...v1.8.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-version/blob/main/CHANGELOG.md\"\u003egithub.com/hashicorp/go-version's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e1.9.0 (Mar 30, 2026)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cp\u003eSupport parsing versions with custom prefixes via opt-in option in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/79\"\u003ehashicorp/go-version#79\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/179\"\u003ehashicorp/go-version#179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 4 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/180\"\u003ehashicorp/go-version#180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 3 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/182\"\u003ehashicorp/go-version#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions to trigger on pull requests and update go version in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/185\"\u003ehashicorp/go-version#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaking group across 1 directory in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/183\"\u003ehashicorp/go-version#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/186\"\u003ehashicorp/go-version#186\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e1.8.0 (Nov 28, 2025)\u003c/h1\u003e\n\u003cp\u003eENHANCEMENTS:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd benchmark test for version.String() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/159\"\u003ehashicorp/go-version#159\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBytes implementation in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/161\"\u003ehashicorp/go-version#161\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eINTERNAL:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/145\"\u003ehashicorp/go-version#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLinting in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/151\"\u003ehashicorp/go-version#151\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect typos in comments in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/134\"\u003ehashicorp/go-version#134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMigrate GitHub Actions updates from TSCCR to Dependabot in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/155\"\u003ehashicorp/go-version#155\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-backward-compatible group with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/157\"\u003ehashicorp/go-version#157\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate doc reference in README in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/135\"\u003ehashicorp/go-version#135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group with 3 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/156\"\u003ehashicorp/go-version#156\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[Compliance] - PR Template Changes Required in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/158\"\u003ehashicorp/go-version#158\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/cache from 4.2.3 to 4.2.4 in the github-actions-backward-compatible group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/167\"\u003ehashicorp/go-version#167\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4.2.2 to 5.0.0 in the github-actions-breaking group in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/166\"\u003ehashicorp/go-version#166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump the github-actions-breaking group across 1 directory with 2 updates in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/171\"\u003ehashicorp/go-version#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4226] [COMPLIANCE] Update Copyright Headers in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/172\"\u003ehashicorp/go-version#172\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edrop init() in \u003ca href=\"https://redirect.github.com/hashicorp/go-version/pull/175\"\u003ehashicorp/go-version#175\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b80b1e68c4854757b38663ec02bada2d839b6f56\"\u003e\u003ccode\u003eb80b1e6\u003c/code\u003e\u003c/a\u003e Update CHANGELOG for version 1.9.0 (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/187\"\u003e#187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/e93736f31592c971fe8ebbd600844cad58b18ad8\"\u003e\u003ccode\u003ee93736f\u003c/code\u003e\u003c/a\u003e Bump the github-actions-backward-compatible group across 1 directory with 2 u...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/c009de06b736afce5f36f7180c1356d6a40bee38\"\u003e\u003ccode\u003ec009de0\u003c/code\u003e\u003c/a\u003e Bump actions/upload-artifact from 6.0.0 to 7.0.0 in the github-actions-breaki...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0474357931d1b2fe3d7ac492bcd8ee4802b3c22c\"\u003e\u003ccode\u003e0474357\u003c/code\u003e\u003c/a\u003e Update GitHub Actions to trigger on pull requests and update go version (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/185\"\u003e#185\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b4ab5fc7d9d3eb48253b467f8f00b22403ec8089\"\u003e\u003ccode\u003eb4ab5fc\u003c/code\u003e\u003c/a\u003e Support parsing versions with custom prefixes via opt-in option (\u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/79\"\u003e#79\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/25c683be0f3830787e522175e0309e14de37ef7b\"\u003e\u003ccode\u003e25c683b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/182\"\u003e#182\u003c/a\u003e from hashicorp/dependabot/github_actions/github-actio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/4f2bcd85ae00b22689501fa029976f6544d18a6b\"\u003e\u003ccode\u003e4f2bcd8\u003c/code\u003e\u003c/a\u003e Bump the github-actions-backward-compatible group with 3 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/acb8b18f5cb9ada9a3c92a9477e54aab6dd7900f\"\u003e\u003ccode\u003eacb8b18\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/180\"\u003e#180\u003c/a\u003e from hashicorp/dependabot/github_actions/github-actio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/0394c4f5ebf87c7bdf0a3034ee48613bfe5bf341\"\u003e\u003ccode\u003e0394c4f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-version/issues/179\"\u003e#179\u003c/a\u003e from hashicorp/dependabot/github_actions/github-actio...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-version/commit/b2fbaa797b31cd3b36e55bdc4f20a765acc9a251\"\u003e\u003ccode\u003eb2fbaa7\u003c/code\u003e\u003c/a\u003e Bump the github-actions-backward-compatible group across 1 directory with 2 u...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-version/compare/v1.7.0...v1.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/samber/lo` from 1.52.0 to 1.53.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/samber/lo/releases\"\u003egithub.com/samber/lo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.53.0\u003c/h2\u003e\n\u003cp\u003eAnnouncing the latest release of \u003ccode\u003elo\u003c/code\u003e with lots of good gifts! 🎁\u003c/p\u003e\n\u003cp\u003e🌊 First, a big thanks to \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e for making lots of \u003cstrong\u003eperformance improvements\u003c/strong\u003e in the recent weeks.\u003c/p\u003e\n\u003cp\u003e🧪 Second, this release introduces a new \u003cstrong\u003e\u003ccode\u003esimd\u003c/code\u003e experimental package\u003c/strong\u003e. If you run on an amd64 architecture and a recent CPU, you can perform very fast operations thanks to SIMD CPU instructions.\n-\u0026gt; Documentation: \u003ca href=\"https://lo.samber.dev/docs/experimental/simd\"\u003ehttps://lo.samber.dev/docs/experimental/simd\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e💥 Third, this version adds \u003cstrong\u003e\u003ccode\u003e*Err\u003c/code\u003e variants\u003c/strong\u003e of many \u003ccode\u003elo\u003c/code\u003e helpers (like \u003cstrong\u003e\u003ccode\u003eMapErr\u003c/code\u003e, \u003ccode\u003eFlatMapErr\u003c/code\u003e, \u003ccode\u003eReduceErr\u003c/code\u003e, etc.\u003c/strong\u003e) whose callbacks can return an error and short-circuit execution when one occurs.\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThe \u003ccode\u003esimd\u003c/code\u003e sub-package is considered \u003cem\u003enot stable\u003c/em\u003e. We might break the initial API based on developers' feedback in the coming months.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003chr /\u003e\n\u003ch2\u003eFeatures \u0026amp; improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: adding SIMD helpers by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/801\"\u003esamber/lo#801\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding Error variants: MapErr, FlatMapErr, ReduceErr... by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/823\"\u003esamber/lo#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: support for buffer iterator by \u003ca href=\"https://github.com/mimol91\"\u003e\u003ccode\u003e@​mimol91\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/824\"\u003esamber/lo#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add Take, TakeWhile, FilterTake, Window, and Sliding functions by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/760\"\u003esamber/lo#760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add a Concat slice function. by \u003ca href=\"https://github.com/FGasper\"\u003e\u003ccode\u003e@​FGasper\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/714\"\u003esamber/lo#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add iterator slice helpers by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/791\"\u003esamber/lo#791\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(it): adding loit.Concat by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/722\"\u003esamber/lo#722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Allow Union/Intersect to take many lists by \u003ca href=\"https://github.com/frankywahl\"\u003e\u003ccode\u003e@​frankywahl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/181\"\u003esamber/lo#181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add Clone function to return shallow copy of slice collections by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/732\"\u003esamber/lo#732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: IntersectBy by \u003ca href=\"https://github.com/ghosx\"\u003e\u003ccode\u003e@​ghosx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/653\"\u003esamber/lo#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Support Custom Assert by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/755\"\u003esamber/lo#755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Must support Custom error handler. by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/752\"\u003esamber/lo#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: WithoutNth handle non-comparable types by \u003ca href=\"https://github.com/urisimchoni\"\u003e\u003ccode\u003e@​urisimchoni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/774\"\u003esamber/lo#774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove unnecessary type arguments in \u003ccode\u003eNewThrottle\u003c/code\u003e by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/773\"\u003esamber/lo#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: lo.IntersectBy + adding loit.IntersectBy + adding doc by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/739\"\u003esamber/lo#739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: rename IsSortedByKey to IsSortedBy by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/735\"\u003esamber/lo#735\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(iter/tuples): support break iteration over Zip[By] seq by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/757\"\u003esamber/lo#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(it.Mode): align behavior with lo.Mode and ensure consistent slice… by \u003ca href=\"https://github.com/intojhanurag\"\u003e\u003ccode\u003e@​intojhanurag\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/711\"\u003esamber/lo#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve Clone function to preserve nilness and avoid liveness issues by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/740\"\u003esamber/lo#740\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: reset n counter per iteration in it.Replace by \u003ca href=\"https://github.com/LikimiaD\"\u003e\u003ccode\u003e@​LikimiaD\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/799\"\u003esamber/lo#799\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: make Ellipsis operate on runes instead of bytes to prevent Unicode truncation by \u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/796\"\u003esamber/lo#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct \u003ccode\u003eDropByIndex\u003c/code\u003e handling of negative indices out of bounds by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/778\"\u003esamber/lo#778\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: remove helpers deprecated for more than 3y by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/810\"\u003esamber/lo#810\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Optimize UniqMap to reduce unnecessary slice preallocation by \u003ca href=\"https://github.com/ivolkoff\"\u003e\u003ccode\u003e@​ivolkoff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/710\"\u003esamber/lo#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(it): simplify DropLast, TrimSuffix, TrimPrefix and use range loops by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/782\"\u003esamber/lo#782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebench: fix iterators to actually iterate in benchmarks by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/781\"\u003esamber/lo#781\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: simplify slice cut/trim prefix/suffix functions by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/787\"\u003esamber/lo#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimize Sliding by pre-allocating result capacity by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/783\"\u003esamber/lo#783\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/cf6fb4f9b08c1d3d6e309581316f106dc30b458e\"\u003e\u003ccode\u003ecf6fb4f\u003c/code\u003e\u003c/a\u003e bump v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/56ef3beaf8adfea1908b094e49b3b639ea604aab\"\u003e\u003ccode\u003e56ef3be\u003c/code\u003e\u003c/a\u003e feat: support for buffer iterator (\u003ca href=\"https://redirect.github.com/samber/lo/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6a9f881ae1ff32a7c650464615d175ef4c26d833\"\u003e\u003ccode\u003e6a9f881\u003c/code\u003e\u003c/a\u003e :lipstick:\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/7f0c2e0297fc2fdffe9c69c254dee8d00f60c90a\"\u003e\u003ccode\u003e7f0c2e0\u003c/code\u003e\u003c/a\u003e feat: adding UnzipByErrX helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/af46a13bfce4ae037193c23e05866df8d79cd163\"\u003e\u003ccode\u003eaf46a13\u003c/code\u003e\u003c/a\u003e feat: adding RejectErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6f42e74a117ce59882e92a9d4a5b05520d5dee33\"\u003e\u003ccode\u003e6f42e74\u003c/code\u003e\u003c/a\u003e doc: improve examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/ff0e293ce3dbde1e80a1b1eb059078aa7d1442c4\"\u003e\u003ccode\u003eff0e293\u003c/code\u003e\u003c/a\u003e feat: adding FilterErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/4bb58fd2c6d86bf54eb9408b8247d056b8f4a006\"\u003e\u003ccode\u003e4bb58fd\u003c/code\u003e\u003c/a\u003e feat: adding RepeatByErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/72a33aa3970554921210253dcce90540d6e34388\"\u003e\u003ccode\u003e72a33aa\u003c/code\u003e\u003c/a\u003e feat: adding FilterKeysErr + FilterValuesErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/dd1d58e324c2277117dbdbfa86f409473eda5ece\"\u003e\u003ccode\u003edd1d58e\u003c/code\u003e\u003c/a\u003e feat: adding FindDuplicatesByErr helper\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/samber/lo/compare/v1.52.0...v1.53.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/speakeasy-api/openapi` from 1.20.0 to 1.23.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/speakeasy-api/openapi/releases\"\u003egithub.com/speakeasy-api/openapi's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.23.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(oq): rename edge fields, fix security scheme type, add duplicates stage by \u003ca href=\"https://github.com/vishalg0wda\"\u003e\u003ccode\u003e@​vishalg0wda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/189\"\u003espeakeasy-api/openapi#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(snip): clarify help text to describe both remove and filter modes by \u003ca href=\"https://github.com/bflad\"\u003e\u003ccode\u003e@​bflad\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/192\"\u003espeakeasy-api/openapi#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump jsonschema/oas3/tests/testsuite from \u003ccode\u003e06481b1\u003c/code\u003e to \u003ccode\u003ee819f32\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/195\"\u003espeakeasy-api/openapi#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): bump the go-minor-patch group across 2 directories with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/187\"\u003espeakeasy-api/openapi#187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(deps): bump the github-actions group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/194\"\u003espeakeasy-api/openapi#194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve interactive lint fixer controls and exit behavior by \u003ca href=\"https://github.com/TristanSpeakEasy\"\u003e\u003ccode\u003e@​TristanSpeakEasy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/196\"\u003espeakeasy-api/openapi#196\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on invalid paths entries during index build by \u003ca href=\"https://github.com/TristanSpeakEasy\"\u003e\u003ccode\u003e@​TristanSpeakEasy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/197\"\u003espeakeasy-api/openapi#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update submodule dependencies to latest main by \u003ca href=\"https://github.com/github-actions\"\u003e\u003ccode\u003e@​github-actions\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/pull/190\"\u003espeakeasy-api/openapi#190\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\"\u003ehttps://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eOpenAPI CLI v1.23.0\u003c/h2\u003e\n\u003cp\u003eThis release includes binaries for Linux, macOS, and Windows on both x86_64 and ARM64 architectures.\u003c/p\u003e\n\u003ch3\u003eInstallation\u003c/h3\u003e\n\u003cp\u003eDownload the appropriate binary for your platform from the assets below, extract it, and add it to your PATH.\u003c/p\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ee089c6006b4e6e342887a4384fa6d39a998eba5e feat(oq): rename edge fields, fix security scheme type, add duplicates stage (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/189\"\u003e#189\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e34df23fa74613ddc421d24a6b9f5f437e8fb3394 fix(deps): bump the go-minor-patch group across 2 directories with 2 updates (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/187\"\u003e#187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef5ae225c4a5487fb8a8ad340448e73d831153617 fix: improve interactive lint fixer controls and exit behavior (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/196\"\u003e#196\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e7a9aee7c092c2f0b58d79c9a2669010671ceb24d fix: prevent panic on invalid paths entries during index build (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/197\"\u003e#197\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOthers\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb9e62ce2b6cfb626cf2351e192296991b0ce123c chore(deps): bump jsonschema/oas3/tests/testsuite from \u003ccode\u003e06481b1\u003c/code\u003e to \u003ccode\u003ee819f32\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/195\"\u003e#195\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec1f4dc1e9193eab32e5bec4d0ef1bf1471385bbd chore(snip): clarify help text to describe both remove and filter modes (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/192\"\u003e#192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb03d5970ac7b3022a586c4f8ab097702f569f564 ci(deps): bump the github-actions group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/194\"\u003e#194\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\"\u003ehttps://github.com/speakeasy-api/openapi/compare/v1.22.0...v1.23.0\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eReleased by \u003ca href=\"https://github.com/goreleaser/goreleaser\"\u003eGoReleaser\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ev1.22.0\u003c/h2\u003e\n\u003ch2\u003eOpenAPI CLI v1.22.0\u003c/h2\u003e\n\u003cp\u003eThis release includes binaries for Linux, macOS, and Windows on both x86_64 and ARM64 architectures.\u003c/p\u003e\n\u003ch3\u003eInstallation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/32d0bebc9f99bd973ca749a8cbeb811660d985e4\"\u003e\u003ccode\u003e32d0beb\u003c/code\u003e\u003c/a\u003e chore: update submodule dependencies to latest main (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/190\"\u003e#190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/7a9aee7c092c2f0b58d79c9a2669010671ceb24d\"\u003e\u003ccode\u003e7a9aee7\u003c/code\u003e\u003c/a\u003e fix: prevent panic on invalid paths entries during index build (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/197\"\u003e#197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/f5ae225c4a5487fb8a8ad340448e73d831153617\"\u003e\u003ccode\u003ef5ae225\u003c/code\u003e\u003c/a\u003e fix: improve interactive lint fixer controls and exit behavior (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/196\"\u003e#196\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/b03d5970ac7b3022a586c4f8ab097702f569f564\"\u003e\u003ccode\u003eb03d597\u003c/code\u003e\u003c/a\u003e ci(deps): bump the github-actions group across 1 directory with 2 updates (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/194\"\u003e#194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/34df23fa74613ddc421d24a6b9f5f437e8fb3394\"\u003e\u003ccode\u003e34df23f\u003c/code\u003e\u003c/a\u003e fix(deps): bump the go-minor-patch group across 2 directories with 2 updates ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/b9e62ce2b6cfb626cf2351e192296991b0ce123c\"\u003e\u003ccode\u003eb9e62ce\u003c/code\u003e\u003c/a\u003e chore(deps): bump jsonschema/oas3/tests/testsuite from \u003ccode\u003e06481b1\u003c/code\u003e to \u003ccode\u003ee819f32\u003c/code\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/c1f4dc1e9193eab32e5bec4d0ef1bf1471385bbd\"\u003e\u003ccode\u003ec1f4dc1\u003c/code\u003e\u003c/a\u003e chore(snip): clarify help text to describe both remove and filter modes (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/192\"\u003e#192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/e089c6006b4e6e342887a4384fa6d39a998eba5e\"\u003e\u003ccode\u003ee089c60\u003c/code\u003e\u003c/a\u003e feat(oq): rename edge fields, fix security scheme type, add duplicates stage ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/ff7136570f839bd9157f56408d97676b93db65db\"\u003e\u003ccode\u003eff71365\u003c/code\u003e\u003c/a\u003e chore: update submodule dependencies to latest main (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/188\"\u003e#188\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/openapi/commit/511fc1aff0dc5e125300837769c305a73cb0c8d5\"\u003e\u003ccode\u003e511fc1a\u003c/code\u003e\u003c/a\u003e feat(oq): redesign query language syntax and traversal model (\u003ca href=\"https://redirect.github.com/speakeasy-api/openapi/issues/184\"\u003e#184\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/speakeasy-api/openapi/compare/v1.20.0...v1.23.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/speakeasy-api/versioning-reports` from 0.6.1 to 0.7.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/speakeasy-api/versioning-reports/commit/994b7dd64bbdbf8290d971e6b58f4c8db9a5ec99\"\u003e\u003ccode\u003e994b7dd\u003c/code\u003e\u003c/a\u003e feat: add v2 version report logic (\u003ca href=\"https://redirect.github.com/speakeasy-api/versioning-reports/issues/2\"\u003e#2\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/speakeasy-api/versioning-reports/compare/v0.6.1...v0.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cobra` from 1.10.1 to 1.10.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cobra/releases\"\u003egithub.com/spf13/cobra's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003e🔧 Dependencies\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Migrate from \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e to \u003ccode\u003ego.yaml.in/yaml/v3\u003c/code\u003e by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e - the \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of \u003ccode\u003espf13/cobra\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📈 CI/CD\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix linter and allow CI to pass by \u003ca href=\"https://github.com/marckhouzam\"\u003e\u003ccode\u003e@​marckhouzam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2327\"\u003espf13/cobra#2327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: actions/setup-go v6 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2337\"\u003espf13/cobra#2337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔥✍🏼 Docs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd documentation for repeated flags functionality by \u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🍂 Refactors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace several vars with consts by \u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change minUsagePadding from var to const by \u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🤗 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssam18\"...\n\n_Description has been truncated_","html_url":"https://github.com/speakeasy-api/speakeasy/pull/2055","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/speakeasy-api%2Fspeakeasy/issues/2055","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2055/packages"}},{"old_version":"5.3.1","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-23T04:57:52.000Z","version_change":"5.3.1 → 5.9.0","issue":{"uuid":"4506885463","node_id":"PR_kwDOSaSbyc7ejp9i","number":2,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.3.1 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-23T04:57:52.000Z","updated_at":"2026-05-23T04:58:20.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.3.1","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.3.1 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.3.1...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.3.1\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Dct555/tenderly-cll/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Dct555/tenderly-cll/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Dct555%2Ftenderly-cll/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-20T02:57:01.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4482739607","node_id":"PR_kwDORAHZbs7dVinO","number":36,"state":"closed","title":"deps: bump the go-dependencies group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-06-07T14:42:42.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-20T02:57:01.000Z","updated_at":"2026-06-07T14:42:44.000Z","time_to_close":1597541,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps: bump","group_name":"go-dependencies","update_count":5,"packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/hanwen/go-fuse/v2","old_version":"2.9.0","new_version":"2.10.1","repository_url":"https://github.com/hanwen/go-fuse"},{"name":"github.com/testcontainers/testcontainers-go/modules/postgres","old_version":"0.41.0","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"github.com/willscott/go-nfs","old_version":"0.0.3","new_version":"0.0.4","repository_url":"https://github.com/willscott/go-nfs"},{"name":"go.uber.org/zap","old_version":"1.27.1","new_version":"1.28.0","repository_url":"https://github.com/uber-go/zap"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-dependencies group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.8.0` | `5.9.0` |\n| [github.com/hanwen/go-fuse/v2](https://github.com/hanwen/go-fuse) | `2.9.0` | `2.10.1` |\n| [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) | `0.41.0` | `0.42.0` |\n| [github.com/willscott/go-nfs](https://github.com/willscott/go-nfs) | `0.0.3` | `0.0.4` |\n| [go.uber.org/zap](https://github.com/uber-go/zap) | `1.27.1` | `1.28.0` |\n\n\nUpdates `github.com/go-git/go-billy/v5` from 5.8.0 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hanwen/go-fuse/v2` from 2.9.0 to 2.10.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/1d16325e0693e4aeb40b3c899938e028cc8e538e\"\u003e\u003ccode\u003e1d16325\u003c/code\u003e\u003c/a\u003e virtiofs: skip tests if qemu not available\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/0c71566a50b759dd18933d9eb1a05715aad89817\"\u003e\u003ccode\u003e0c71566\u003c/code\u003e\u003c/a\u003e README: document change\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/a77f00832e7d1616e7bedd1acaf91f76200e314f\"\u003e\u003ccode\u003ea77f008\u003c/code\u003e\u003c/a\u003e virtiofs: add TestPosixtest — run posixtest suite inside a QEMU VM against vi...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/d9be790502426218a4fa5f6a8bd3986e6ec661c9\"\u003e\u003ccode\u003ed9be790\u003c/code\u003e\u003c/a\u003e virtiofs: serve fuse.RawFileSystem to a VM directly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/4640dfc860bfa091a641ea1351b46b0d5db30f34\"\u003e\u003ccode\u003e4640dfc\u003c/code\u003e\u003c/a\u003e vhostuser: vhost server for virtioFS\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/344ca7b1be8aaf7f0c0699952182926afaa0e612\"\u003e\u003ccode\u003e344ca7b\u003c/code\u003e\u003c/a\u003e fuse: public type ProtocolServer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/3e80db73a511de00429083ed232cfaf3b70fadd0\"\u003e\u003ccode\u003e3e80db7\u003c/code\u003e\u003c/a\u003e posixtest: minor cleanup\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/58616b5b3c32e49ce9bd60cf9915e139e2c55948\"\u003e\u003ccode\u003e58616b5\u003c/code\u003e\u003c/a\u003e fuse: set up request output payload sizes early\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/496352e63b0ff4725ac8691802ae41221ad3a2ab\"\u003e\u003ccode\u003e496352e\u003c/code\u003e\u003c/a\u003e fuse: fix filename()\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hanwen/go-fuse/commit/3bcfa7d6deec164848c9942f2078bf5818a439b9\"\u003e\u003ccode\u003e3bcfa7d\u003c/code\u003e\u003c/a\u003e posixtest: cover getxattr with nil buffer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hanwen/go-fuse/compare/v2.9.0...v2.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.41.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go/modules/postgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71ff693f1fc\"\u003e\u003ccode\u003e75aa226\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/2f59938fb9ce365d974fe21a426ffffe7231caca\"\u003e\u003ccode\u003e2f59938\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/580abf68d44021bc7e54f8655a2fb66578205527\"\u003e\u003ccode\u003e580abf6\u003c/code\u003e\u003c/a\u003e chore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/testcontainers/testcontainers-go/compare/v0.41.0...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/willscott/go-nfs` from 0.0.3 to 0.0.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/willscott/go-nfs/releases\"\u003egithub.com/willscott/go-nfs's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.0.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003emap errors to NFS errors by \u003ca href=\"https://github.com/ehazlett\"\u003e\u003ccode\u003e@​ehazlett\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/145\"\u003ewillscott/go-nfs#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse rwmutex to make reverseHandles map safe for concurrent access by \u003ca href=\"https://github.com/sitole\"\u003e\u003ccode\u003e@​sitole\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/146\"\u003ewillscott/go-nfs#146\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003enfs: fix EOF flag in READ response not being set when read reaches end of file by \u003ca href=\"https://github.com/ncw\"\u003e\u003ccode\u003e@​ncw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/149\"\u003ewillscott/go-nfs#149\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ehazlett\"\u003e\u003ccode\u003e@​ehazlett\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/145\"\u003ewillscott/go-nfs#145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sitole\"\u003e\u003ccode\u003e@​sitole\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/willscott/go-nfs/pull/146\"\u003ewillscott/go-nfs#146\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/willscott/go-nfs/compare/v0.0.3...v0.0.4\"\u003ehttps://github.com/willscott/go-nfs/compare/v0.0.3...v0.0.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/209a01f82ba9283bb36ec312d3908210b0b1cc89\"\u003e\u003ccode\u003e209a01f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/willscott/go-nfs/issues/149\"\u003e#149\u003c/a\u003e from ncw/fix-eof\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/275aeb956dd18eb4f6ab552d23dacb39cd41f829\"\u003e\u003ccode\u003e275aeb9\u003c/code\u003e\u003c/a\u003e nfs: fix EOF flag in READ response not being set when read reaches end of file\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/527fb181bfaa51441dc30d9be61ef384c5c7fdac\"\u003e\u003ccode\u003e527fb18\u003c/code\u003e\u003c/a\u003e Use rwmutex to make reverseHandles map safe for concurrent access (\u003ca href=\"https://redirect.github.com/willscott/go-nfs/issues/146\"\u003e#146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/willscott/go-nfs/commit/28bb2174eb33069356a79399c40e6d9f76ad9064\"\u003e\u003ccode\u003e28bb217\u003c/code\u003e\u003c/a\u003e map errors to NFS errors (\u003ca href=\"https://redirect.github.com/willscott/go-nfs/issues/145\"\u003e#145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/willscott/go-nfs/compare/v0.0.3...v0.0.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.uber.org/zap` from 1.27.1 to 1.28.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uber-go/zap/releases\"\u003ego.uber.org/zap's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.28.0\u003c/h2\u003e\n\u003cp\u003eEnhancements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e[]: Add \u003ccode\u003ezapcore.CheckPreWriteHook\u003c/code\u003e and \u003ccode\u003eCheckedEntry.Before\u003c/code\u003e method for transforming entries before they are written to any Cores.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/uber-go/zap/pull/1534\"\u003euber-go/zap#1534\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/uber-go/zap/blob/master/CHANGELOG.md\"\u003ego.uber.org/zap's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.28.0 (27 Apr 2026)\u003c/h2\u003e\n\u003cp\u003eEnhancements:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e[]: Add \u003ccode\u003ezapcore.CheckPreWriteHook\u003c/code\u003e and \u003ccode\u003eCheckedEntry.Before\u003c/code\u003e method for transforming entries before they are written to any Cores.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/5b81b37b81b8e2ed447a6f57991e372ee4fa5c8f\"\u003e\u003ccode\u003e5b81b37\u003c/code\u003e\u003c/a\u003e release v1.28.0 (\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1547\"\u003e#1547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/0ab0d5aae5986395e2ca497385d977ccd7cdfc5e\"\u003e\u003ccode\u003e0ab0d5a\u003c/code\u003e\u003c/a\u003e zapcore: Add PreWriteHook for transforming entries before write (\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1534\"\u003e#1534\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/d278c5962cb0f7423170c11a5da9b7a4edbf9b92\"\u003e\u003ccode\u003ed278c59\u003c/code\u003e\u003c/a\u003e [chore] CI: test on Go 1.26 (\u003ca href=\"https://redirect.github.com/uber-go/zap/issues/1535\"\u003e#1535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/uber-go/zap/commit/16fb16b353f2e27bcd71eba69cbd346b3dcc471a\"\u003e\u003ccode\u003e16fb16b\u003c/code\u003e\u003c/a\u003e chore(dep): replace archived gopkg.in/yaml.v3 with officially maintained go.y...\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/uber-go/zap/compare/v1.27.1...v1.28.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/timescale/tigerfs/pull/36","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/timescale%2Ftigerfs/issues/36","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/36/packages"}},{"old_version":"5.6.2","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-15T04:40:50.000Z","version_change":"5.6.2 → 5.9.0","issue":{"uuid":"4451308189","node_id":"PR_kwDOM5mTgM7byK99","number":4,"state":"closed","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.2 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-15T05:13:03.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-15T04:40:50.000Z","updated_at":"2026-05-15T05:13:06.000Z","time_to_close":1933,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.6.2 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.6.2\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/joint-online-judge/JOJ3/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/joint-online-judge/JOJ3/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/joint-online-judge%2FJOJ3/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T03:48:24.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442979612","node_id":"PR_kwDOKCo3Wc7bXqXz","number":70,"state":"closed","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-16T11:19:10.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T03:48:24.000Z","updated_at":"2026-05-16T11:19:11.000Z","time_to_close":199846,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/berquerant/install-via-git-go/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/berquerant/install-via-git-go/pull/70","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/berquerant%2Finstall-via-git-go/issues/70","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/70/packages"}},{"old_version":"5.1.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T03:17:00.000Z","version_change":"5.1.0 → 5.9.0","issue":{"uuid":"4442829369","node_id":"PR_kwDOJE57Oc7bXPjI","number":37,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.1.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T03:17:00.000Z","updated_at":"2026-05-14T03:17:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.1.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.1.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.1.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.1.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/lilsunny243/node-1/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/lilsunny243/node-1/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lilsunny243%2Fnode-1/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"}},{"old_version":"5.6.2","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T02:52:17.000Z","version_change":"5.6.2 → 5.9.0","issue":{"uuid":"4442737548","node_id":"PR_kwDOPf3WO87bW9Ht","number":4,"state":"open","title":"chore(deps): bump the go_modules group across 2 directories with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T02:52:17.000Z","updated_at":"2026-05-14T02:52:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":8,"packages":[{"name":"github.com/docker/cli","old_version":"28.3.3+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-git/v5","old_version":"5.16.2","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"go.opentelemetry.io/otel","old_version":"1.37.0","new_version":"1.43.0"},{"name":"google.golang.org/grpc","old_version":"1.74.2","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/cloudflare/circl","old_version":"1.6.1","new_version":"1.6.3"},{"name":"github.com/ethereum/go-ethereum","old_version":"1.16.8","new_version":"1.17.0","repository_url":"https://github.com/ethereum/go-ethereum"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.2","new_version":"5.9.0"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.36.0","new_version":"1.39.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the / directory: [github.com/docker/cli](https://github.com/docker/cli), [github.com/go-git/go-git/v5](https://github.com/go-git/go-git), [google.golang.org/grpc](https://github.com/grpc/grpc-go) and [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum).\nBumps the go_modules group with 2 updates in the /pkg directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go) and [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum).\n\nUpdates `github.com/docker/cli` from 28.3.3+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v28.3.3...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.16.2 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.37.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.37.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.74.2 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.74.2...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ethereum/go-ethereum` from 1.16.8 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ethereum/go-ethereum/releases\"\u003egithub.com/ethereum/go-ethereum's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eEezo-Inlaid Circuitry (v1.17.0)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eThis is a feature release, with all accumulated development from the last 3 months. See below for the highlights.\u003c/p\u003e\n\u003cp\u003eNote that this release contains multiple critical security fixes, as well as many bug fixes, and is recommended for all users. However, if you are cautious about upgrades, you can also install v1.16.9 which has just the critical security fixes. Specifically, this release fixes \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-689v-6xwf-5jf3\"\u003eCVE-2026-26313\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-2gjw-fg97-vg3r\"\u003eCVE-2026-26314\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-m6j8-rg6r-7mv8\"\u003eCVE-2026-26315\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eWe recommend recreating your p2p node key after installing this update, which you can do by removing the \u003ccode\u003eDATADIR/geth/nodekey\u003c/code\u003e file before restarting geth. Note this will cause a change in the p2p node ID, which may break static peering setups.\u003c/p\u003e\n\u003ch2\u003eHighlights\u003c/h2\u003e\n\u003ch3\u003ePath-based Archive Node with Proofs\u003c/h3\u003e\n\u003cp\u003eThe path-based archive node can now serve proofs (via \u003ccode\u003eeth_getProof\u003c/code\u003e) for the state of older blocks.\u003c/p\u003e\n\u003cp\u003eYou can configure the block range that supports proving independently from other archive state availability. Specifically, you can use the \u003ccode\u003e--history.trienode\u003c/code\u003e command-line flag to set the amount of blocks for which tree nodes will be tracked.\u003c/p\u003e\n\u003cp\u003eThis feature is disabled by default. Note that state history cannot easily be recovered once deleted, as it can only be generated by processing blocks. However, you can enable trienode history (and/or state history) at any time to turn a full node into a partial archive node, keeping state from that point in time onwards.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32727\"\u003e#32727\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32621\"\u003e#32621\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33551\"\u003e#33551\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32981\"\u003e#32981\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33399\"\u003e#33399\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32913\"\u003e#32913\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33303\"\u003e#33303\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33584\"\u003e#33584\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33329\"\u003e#33329\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33681\"\u003e#33681\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33103\"\u003e#33103\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33098\"\u003e#33098\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33515\"\u003e#33515\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32247\"\u003e#32247\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEraE History Support\u003c/h3\u003e\n\u003cp\u003eGeth now suports the \u003ca href=\"https://redirect.github.com/eth-clients/e2store-format-specs/pull/16\"\u003eEraE\u003c/a\u003e file format, an archival format for post-merge chain history.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32157\"\u003e#32157\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33827\"\u003e#33827\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eOpenTelemetry Tracing\u003c/h3\u003e\n\u003cp\u003eOpenTelemetry tracing is now supported by the RPC server, including support for distributed tracing.\nWe have also added some tracing spans for block processing via the engine API, i.e. \u003ccode\u003eengine_newPayload\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33599\"\u003e#33599\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33452\"\u003e#33452\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAll Changes\u003c/h2\u003e\n\u003ch3\u003eGeth CLI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003egeth version-check\u003c/code\u003e subcommand has been removed. This command checked the geth website for signed vulnerability notices, and would tell if updates are necessary  (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33498\"\u003e#33498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThere is now a \u003ccode\u003e--miner.maxblobs\u003c/code\u003e command-line flag to set a limit on blobs included in built blocks (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33129\"\u003e#33129\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33302\"\u003e#33302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eGeth now supports continuous profiling with Grafana Pyroscope (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33623\"\u003e#33623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA rare bug that could halt block production in \u003ccode\u003egeth --dev\u003c/code\u003e mode was fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33146\"\u003e#33146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA new \u003ccode\u003e--rpc.rangelimit\u003c/code\u003e flag configures the maximum block range for \u003ccode\u003eeth_getLogs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33163\"\u003e#33163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --exitwhensynced\u003c/code\u003e will now set the \u003ccode\u003efinalized\u003c/code\u003e and \u003ccode\u003esafe\u003c/code\u003e block (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33038\"\u003e#33038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --ethstats\u003c/code\u003e now reports the newPayload processing time to the stats server (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33395\"\u003e#33395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA lot of minor issues in Geth's command-line flag processing have been fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33379\"\u003e#33379\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33338\"\u003e#33338\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33330\"\u003e#33330\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32999\"\u003e#32999\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33279\"\u003e#33279\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33252\"\u003e#33252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eevm blocktest\u003c/code\u003e command can now read filenames from stdin when no path is provided (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32824\"\u003e#32824\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFork Implementation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cf3d3ba4f7062fd2bbf2bda10972d528974e876\"\u003e\u003ccode\u003e0cf3d3b\u003c/code\u003e\u003c/a\u003e version: release go-ethereum v1.17.0 stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/9b78f45e337f01e66b505c35b74415751b2a0a28\"\u003e\u003ccode\u003e9b78f45\u003c/code\u003e\u003c/a\u003e crypto/secp256k1: fix coordinate check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c709c19b40f4b6655d7944c3fb0c36a14c6774d6\"\u003e\u003ccode\u003ec709c19\u003c/code\u003e\u003c/a\u003e eth/catalyst: add initial OpenTelemetry tracing for newPayload (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/550ca91b179493e5c0394ee644efed3deefb890e\"\u003e\u003ccode\u003e550ca91\u003c/code\u003e\u003c/a\u003e consensus/misc: hardening header verification (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33860\"\u003e#33860\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/a4b3898f9041fd7c77130dc17ba2b80441a998af\"\u003e\u003ccode\u003ea4b3898\u003c/code\u003e\u003c/a\u003e internal/telemetry: don't create internal spans without parents (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cba803fbafb12e9daaea53b76de847842ab3055\"\u003e\u003ccode\u003e0cba803\u003c/code\u003e\u003c/a\u003e eth/protocols/eth, eth/protocols/snap: delayed p2p message decoding (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33835\"\u003e#33835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ad88b68a467b6b3cb9d6a8a24f0ec74e8aa77565\"\u003e\u003ccode\u003ead88b68\u003c/code\u003e\u003c/a\u003e internal/download: show progress bar only if server gives length (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33842\"\u003e#33842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c50e5edfafe408d911f3cdd2191a6808dc95cb42\"\u003e\u003ccode\u003ec50e5ed\u003c/code\u003e\u003c/a\u003e cmd/geth, internal/telemetry: wire OpenTelemetry tracing via CLI flags (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33484\"\u003e#33484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/d8b92cb9e60fc8785c84f1afb35e64c9312eb35d\"\u003e\u003ccode\u003ed8b92cb\u003c/code\u003e\u003c/a\u003e rpc,internal/telemetry: fix deferred spanEnd to capture errors via pointer (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ac85a6f25449a7b96505637e18c988b3142d47bf\"\u003e\u003ccode\u003eac85a6f\u003c/code\u003e\u003c/a\u003e rlp: add back Iterator.Count, with fixes (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33841\"\u003e#33841\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ethereum/go-ethereum/compare/v1.16.8...v1.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-billy/v5` from 5.6.2 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.36.0 to 1.39.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.39.0/0.61.0/0.15.0/0.0.14] 2025-12-05\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGreatly reduce the cost of recording metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e using hashing for map keys. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7175\"\u003e#7175\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithInstrumentationAttributeSet\u003c/code\u003e option to \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e packages.\nThis provides a concurrent-safe and performant alternative to \u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e by accepting a pre-constructed \u003ccode\u003eattribute.Set\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7287\"\u003e#7287\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability for the Prometheus exporter in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e.\nCheck the \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus/internal/x\u003c/code\u003e package documentation for more information. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7345\"\u003e#7345\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7353\"\u003e#7353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd temporality selector functions \u003ccode\u003eDeltaTemporalitySelector\u003c/code\u003e, \u003ccode\u003eCumulativeTemporalitySelector\u003c/code\u003e, \u003ccode\u003eLowMemoryTemporalitySelector\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7434\"\u003e#7434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for simple log processor in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7548\"\u003e#7548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7459\"\u003e#7459\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7486\"\u003e#7486\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for simple span processor in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7374\"\u003e#7374\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7512\"\u003e#7512\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for manual reader in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7524\"\u003e#7524\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for periodic reader in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7571\"\u003e#7571\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport \u003ccode\u003eOTEL_EXPORTER_OTLP_LOGS_INSECURE\u003c/code\u003e and \u003ccode\u003eOTEL_EXPORTER_OTLP_INSECURE\u003c/code\u003e environmental variables in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7608\"\u003e#7608\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to the \u003ccode\u003eProcessor\u003c/code\u003e interface in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e.\nAll \u003ccode\u003eProcessor\u003c/code\u003e implementations now include an \u003ccode\u003eEnabled\u003c/code\u003e method. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7639\"\u003e#7639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.38.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.38.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.37.0.\u003c/code\u003e(\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7648\"\u003e#7648\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eDistinct\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e is no longer guaranteed to uniquely identify an attribute set.\nCollisions between \u003ccode\u003eDistinct\u003c/code\u003e values for different Sets are possible with extremely high cardinality (billions of series per instrument), but are highly unlikely. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7175\"\u003e#7175\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e synchronously de-duplicates the passed attributes instead of delegating it to the returned \u003ccode\u003eTracerOption\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7266\"\u003e#7266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/meter\u003c/code\u003e synchronously de-duplicates the passed attributes instead of delegating it to the returned \u003ccode\u003eMeterOption\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7266\"\u003e#7266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e synchronously de-duplicates the passed attributes instead of delegating it to the returned \u003ccode\u003eLoggerOption\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7266\"\u003e#7266\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRename the \u003ccode\u003eOTEL_GO_X_SELF_OBSERVABILITY\u003c/code\u003e environment variable to \u003ccode\u003eOTEL_GO_X_OBSERVABILITY\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdouttrace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7302\"\u003e#7302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of histogram \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e when min and max are disabled using \u003ccode\u003eNoMinMax\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7306\"\u003e#7306\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove error handling for dropped data during translation by using \u003ccode\u003eprometheus.NewInvalidMetric\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e.\n⚠️ \u003cstrong\u003eBreaking Change:\u003c/strong\u003e Previously, these cases were only logged and scrapes succeeded.\nNow, when translation would drop data (e.g., invalid label/value), the exporter emits a \u003ccode\u003eNewInvalidMetric\u003c/code\u003e, and Prometheus scrapes \u003cstrong\u003efail with HTTP 500\u003c/strong\u003e by default.\nTo preserve the prior behavior (scrapes succeed while errors are logged), configure your Prometheus HTTP handler with: \u003ccode\u003epromhttp.HandlerOpts{ ErrorHandling: promhttp.ContinueOnError }\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7363\"\u003e#7363\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReplace fnv hash with xxhash in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e for better performance. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7371\"\u003e#7371\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe default \u003ccode\u003eTranslationStrategy\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/exporters/prometheus\u003c/code\u003e is changed from \u003ccode\u003eotlptranslator.NoUTF8EscapingWithSuffixes\u003c/code\u003e to \u003ccode\u003eotlptranslator.UnderscoreEscapingWithSuffixes\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7421\"\u003e#7421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7427\"\u003e#7427\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eInclude W3C TraceFlags (bits 0–7) in the OTLP \u003ccode\u003eSpan.Flags\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e and \u003ccode\u003ego.opentelemetry.io/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7438\"\u003e#7438\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eErrorType\u003c/code\u003e function in \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.37.0\u003c/code\u003e now handles custom error types.\nIf an error implements an \u003ccode\u003eErrorType() string\u003c/code\u003e method, the return value of that method will be used as the error type. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7442\"\u003e#7442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e options in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e to properly merge attributes when passed multiple times instead of replacing them.\nAttributes with duplicate keys will use the last value passed. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7300\"\u003e#7300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe equality of \u003ccode\u003eattribute.Set\u003c/code\u003e when using the \u003ccode\u003eEqual\u003c/code\u003e method is not affected by the user overriding the empty set pointed to by \u003ccode\u003eattribute.EmptySet\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7357\"\u003e#7357\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/6ce14298b9d58647295280560205307768400496\"\u003e\u003ccode\u003e6ce1429\u003c/code\u003e\u003c/a\u003e Release v1.39.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7676\"\u003e#7676\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/12e421a7061c1ab5c25a1851ca168e1c3ac11bbb\"\u003e\u003ccode\u003e12e421a\u003c/code\u003e\u003c/a\u003e sdk/log: move Enabled method from FilterProcessor to Processor (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7639\"\u003e#7639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5982f16d244fafebffcfc92b4673dbeb565b4e7b\"\u003e\u003ccode\u003e5982f16\u003c/code\u003e\u003c/a\u003e fix(deps): update module golang.org/x/sys to v0.39.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7684\"\u003e#7684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/928837830da34dea636b48a468149d480cc41058\"\u003e\u003ccode\u003e9288378\u003c/code\u003e\u003c/a\u003e chore(deps): update module golang.org/x/sync to v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7683\"\u003e#7683\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/ee3dfef45d9462e209d92e0651a58d2417c1305f\"\u003e\u003ccode\u003eee3dfef\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/securego/gosec/v2 digest to 41f28e2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7682\"\u003e#7682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9345d1f64d874fa8df5f6ca4e14acaeb44532cd3\"\u003e\u003ccode\u003e9345d1f\u003c/code\u003e\u003c/a\u003e fix(deps): update module github.com/golangci/golangci-lint/v2 to v2.7.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7680\"\u003e#7680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/d03b03395dc9436d79d5ba7b5ea77053b18a9915\"\u003e\u003ccode\u003ed03b033\u003c/code\u003e\u003c/a\u003e Check context prior to delaying retry in OTLP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7678\"\u003e#7678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61765e78a620994b5922e34e776e029da1a2b983\"\u003e\u003ccode\u003e61765e7\u003c/code\u003e\u003c/a\u003e Fix flaky \u003ccode\u003eTestClientInstrumentation\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7677\"\u003e#7677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/a54721cc8052fcd497d6f637a463d1aba787012c\"\u003e\u003ccode\u003ea54721c\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-billy/v5 to v5.7.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7679\"\u003e#7679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/746d0860d70bb9c1e875afe1c7e41e9060387d46\"\u003e\u003ccode\u003e746d086\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.31.7 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7675\"\u003e#7675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.36.0....\n\n_Description has been truncated_\n\n---\n\n🔄 This PR updates Go module dependencies across the project, bumping 8 packages including Docker CLI, go-git, OpenTelemetry, gRPC, and Ethereum libraries to their latest versions. The update also upgrades the Go version from 1.24.4 to 1.25.0 and includes both direct and indirect dependency updates.\n\n\u003cdetails\u003e\n\u003csummary\u003e🔍 \u003cstrong\u003eDetailed Analysis\u003c/strong\u003e\u003c/summary\u003e\n\n### Key Changes\n- **Go Version**: Upgraded from 1.24.4 to 1.25.0\n- **Docker Dependencies**: Updated docker/cli from v28.3.3 to v29.2.0 and docker/go-connections from v0.6.0 to v0.7.0\n- **Git Libraries**: Updated go-git/go-git from v5.16.2 to v5.19.0 and go-git/go-billy from v5.6.2 to v5.9.0\n- **OpenTelemetry**: Updated otel from v1.37.0 to v1.43.0 and related SDK components\n- **gRPC**: Updated from v1.74.2 to v1.79.3 across both main and pkg modules\n- **Testing**: Updated stretchr/testify from v1.10.0 to v1.11.1\n- **Cryptography**: Updated cloudflare/circl from v1.6.1 to v1.6.3 and ethereum/go-ethereum from v1.16.8 to v1.17.0\n\n### Technical Implementation\n```mermaid\nflowchart TD\n    A[Dependabot Scan] --\u003e B[Identify Updates]\n    B --\u003e C[Update go.mod files]\n    C --\u003e D[Update go.sum files]\n    D --\u003e E[Version Compatibility Check]\n    E --\u003e F[Security Patches Applied]\n    F --\u003e G[Ready for Merge]\n    \n    H[Main Module] --\u003e C\n    I[pkg/ Module] --\u003e C\n    \n    J[Direct Dependencies] --\u003e C\n    K[Indirect Dependencies] --\u003e C\n```\n\n### Impact\n- **Security Improvements**: Multiple security fixes included, particularly in gRPC v1.79.3 which addresses authorization bypass vulnerabilities\n- **Performance Enhancements**: OpenTelemetry v1.43.0 includes performance improvements for metric recording and attribute handling\n- **Feature Updates**: New capabilities in go-git v5.19.0 including improved object encoding and security hardening\n- **Compatibility**: Go 1.25.0 provides latest language features and standard library improvements\n- **Maintenance**: Automated dependency management ensures the project stays current with upstream security patches and bug fixes\n\n\u003c/details\u003e\n\n_Created with [Palmier](https://www.palmier.io)_","html_url":"https://github.com/GlacierEQ/cli/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GlacierEQ%2Fcli/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":"/internal/tools","pr_created_at":"2026-05-14T01:51:11.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442442211","node_id":"PR_kwDOMPIuiM7bWJGe","number":3,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in /internal/tools","user":"dependabot[bot]","labels":["Stale","dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T01:51:11.000Z","updated_at":"2026-05-28T04:41:44.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"/internal/tools","ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/cardinalhq/opentelemetry-collector/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/cardinalhq/opentelemetry-collector/pull/3","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/cardinalhq%2Fopentelemetry-collector/issues/3","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T00:17:42.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442058775","node_id":"PR_kwDOF_Bxuc7bVAs3","number":730,"state":"open","title":"build(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:17:42.000Z","updated_at":"2026-05-28T14:03:41.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"[//]: # (dependabot-start)\n⚠️  **Dependabot is rebasing this PR** ⚠️ \n\nRebasing might not happen immediately, so don't worry if this takes some time.\n\nNote: if you make any changes to this PR yourself, they will take precedence over the rebase.\n\n---\n\n[//]: # (dependabot-end)\n\nBumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/nais/cli/pull/730","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nais%2Fcli/issues/730","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/730/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T00:14:19.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442045830","node_id":"PR_kwDORBvg1s7bU-DV","number":12,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:14:19.000Z","updated_at":"2026-05-14T03:10:56.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Dustin4444/bashbrew/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- Reviewable:start --\u003e\n- - -\nThis change is [\u003cimg src=\"https://reviewable.io/review_button.svg\" height=\"34\" align=\"absmiddle\" alt=\"Reviewable\"/\u003e](https://reviewable.io/reviews/Dustin4444/bashbrew/12)\n\u003c!-- Reviewable:end --\u003e\n","html_url":"https://github.com/Dustin4444/bashbrew/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Dustin4444%2Fbashbrew/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T00:13:43.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442043125","node_id":"PR_kwDOQo0OIc7bU9f6","number":30,"state":"closed","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-14T05:22:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T00:13:43.000Z","updated_at":"2026-05-14T05:22:51.000Z","time_to_close":18546,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/ariel-frischer/autospec/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/ariel-frischer/autospec/pull/30","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/ariel-frischer%2Fautospec/issues/30","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/30/packages"}},{"old_version":"5.6.0","new_version":"5.9.0","update_type":"minor","path":"/tools","pr_created_at":"2026-05-14T00:10:56.000Z","version_change":"5.6.0 → 5.9.0","issue":{"uuid":"4442032166","node_id":"PR_kwDODXC7ic7bU7cc","number":1410,"state":"closed","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.6.0 to 5.9.0 in /tools","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-24T11:27:59.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T00:10:56.000Z","updated_at":"2026-05-24T11:28:00.000Z","time_to_close":904623,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"/tools","ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.6.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.6.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/newrelic/newrelic-client-go/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/newrelic/newrelic-client-go/pull/1410","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/newrelic%2Fnewrelic-client-go/issues/1410","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1410/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T00:09:31.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442026090","node_id":"PR_kwDOCrwMCc7bU6Wc","number":8121,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:09:31.000Z","updated_at":"2026-05-14T01:10:30.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/GoogleCloudPlatform/k8s-config-connector/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/k8s-config-connector/pull/8121","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fk8s-config-connector/issues/8121","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8121/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T00:06:44.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4442014707","node_id":"PR_kwDOP_aDGM7bU4FP","number":336,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:06:44.000Z","updated_at":"2026-05-14T00:06:51.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aspect-build/aspect-cli-legacy/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/aspect-build/aspect-cli-legacy/pull/336","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aspect-build%2Faspect-cli-legacy/issues/336","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/336/packages"}},{"old_version":"5.0.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-14T00:03:58.000Z","version_change":"5.0.0 → 5.9.0","issue":{"uuid":"4442001797","node_id":"PR_kwDORGlKUs7bU1bE","number":7,"state":"open","title":"Bump github.com/go-git/go-billy/v5 from 5.0.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T00:03:58.000Z","updated_at":"2026-05-14T03:10:26.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.0.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.0.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.26.11 to 3.27.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/88\"\u003ego-git/go-billy#88\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.0 to 3.27.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/89\"\u003ego-git/go-billy#89\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.1 to 3.27.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/90\"\u003ego-git/go-billy#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: bump github/codeql-action from 3.27.4 to 3.27.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/91\"\u003ego-git/go-billy#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dependencies and build housekeeping by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/95\"\u003ego-git/go-billy#95\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.0...v5.6.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.0.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.0.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Dustin4444/community-1/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- Reviewable:start --\u003e\n- - -\nThis change is [\u003cimg src=\"https://reviewable.io/review_button.svg\" height=\"34\" align=\"absmiddle\" alt=\"Reviewable\"/\u003e](https://reviewable.io/reviews/Dustin4444/community-1/7)\n\u003c!-- Reviewable:end --\u003e\n","html_url":"https://github.com/Dustin4444/community-1/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Dustin4444%2Fcommunity-1/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":"/tools","pr_created_at":"2026-05-13T23:36:22.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4441886325","node_id":"PR_kwDOPCnuX87bUdrB","number":37,"state":"closed","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0 in /tools","user":"dependabot[bot]","labels":["dependencies","go","Stale"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-06-13T02:21:34.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T23:36:22.000Z","updated_at":"2026-06-13T02:21:43.000Z","time_to_close":2601912,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":"/tools","ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/harekrishnarai/scorecard/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/harekrishnarai/scorecard/pull/37","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/harekrishnarai%2Fscorecard/issues/37","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/37/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-13T23:31:31.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4441865873","node_id":"PR_kwDOHMmHms7bUZcM","number":744,"state":"open","title":"chore(deps): bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-13T23:31:31.000Z","updated_at":"2026-05-13T23:33:33.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aviator-co/av/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/aviator-co/av/pull/744","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aviator-co%2Fav/issues/744","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/744/packages"}},{"old_version":"5.8.0","new_version":"5.9.0","update_type":"minor","path":null,"pr_created_at":"2026-05-13T22:11:11.000Z","version_change":"5.8.0 → 5.9.0","issue":{"uuid":"4441526154","node_id":"PR_kwDOQu0O8c7bTUqJ","number":42,"state":"closed","title":"Bump github.com/go-git/go-billy/v5 from 5.8.0 to 5.9.0","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-31T01:20:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T22:11:11.000Z","updated_at":"2026-05-31T01:20:50.000Z","time_to_close":1480178,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/go-git/go-billy/v5","old_version":"5.8.0","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) from 5.8.0 to 5.9.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/go-git/go-billy/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jh125486/gradebot/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/jh125486/gradebot/pull/42","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/jh125486%2Fgradebot/issues/42","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/42/packages"}}]}