{"id":8718,"name":"github.com/jackc/pgx/v5","ecosystem":"go","repository_url":"https://github.com/jackc/pgx","issues_count":1525,"created_at":"2025-06-06T22:25:52.821Z","updated_at":"2025-06-06T22:25:52.821Z","purl":"pkg:golang/github.com/jackc/pgx/v5","metadata":{"id":4189768,"name":"github.com/jackc/pgx/v5","ecosystem":"go","description":"Package pgx is a PostgreSQL database driver.\n\npgx provides a native PostgreSQL driver and can act as a database/sql driver. The native PostgreSQL interface is similar\nto the database/sql interface while providing better speed and access to PostgreSQL specific features. Use\ngithub.com/jackc/pgx/v5/stdlib to use pgx as a database/sql compatible driver. See that package's documentation for\ndetails.\n\nThe primary way of establishing a connection is with pgx.Connect:\n\nThe database connection string can be in URL or key/value format. Both PostgreSQL settings and pgx settings can be\nspecified here. In addition, a config struct can be created by ParseConfig and modified before establishing the\nconnection with ConnectConfig to configure settings such as tracing that cannot be configured with a connection\nstring.\n\n*pgx.Conn represents a single connection to the database and is not concurrency safe. Use package\ngithub.com/jackc/pgx/v5/pgxpool for a concurrency safe connection pool.\n\npgx implements Query in the familiar database/sql style. However, pgx provides generic functions such as CollectRows and\nForEachRow that are a simpler and safer way of processing rows than manually calling defer rows.Close(), rows.Next(),\nrows.Scan, and rows.Err().\n\nCollectRows can be used collect all returned rows into a slice.\n\nForEachRow can be used to execute a callback function for every row. This is often easier than iterating over rows\ndirectly.\n\npgx also implements QueryRow in the same style as database/sql.\n\nUse Exec to execute a query that does not return a result set.\n\npgx uses the pgtype package to converting Go values to and from PostgreSQL values. It supports many PostgreSQL types\ndirectly and is customizable and extendable. User defined data types such as enums, domains,  and composite types may\nrequire type registration. See that package's documentation for details.\n\nTransactions are started by calling Begin.\n\nThe Tx returned from Begin also implements the Begin method. This can be used to implement pseudo nested transactions.\nThese are internally implemented with savepoints.\n\nUse BeginTx to control the transaction mode. BeginTx also can be used to ensure a new transaction is created instead of\na pseudo nested transaction.\n\nBeginFunc and BeginTxFunc are functions that begin a transaction, execute a function, and commit or rollback the\ntransaction depending on the return value of the function. These can be simpler and less error prone to use.\n\nPrepared statements can be manually created with the Prepare method. However, this is rarely necessary because pgx\nincludes an automatic statement cache by default. Queries run through the normal Query, QueryRow, and Exec functions are\nautomatically prepared on first execution and the prepared statement is reused on subsequent executions. See ParseConfig\nfor information on how to customize or disable the statement cache.\n\nUse CopyFrom to efficiently insert multiple rows at a time using the PostgreSQL copy protocol. CopyFrom accepts a\nCopyFromSource interface. If the data is already in a [][]any use CopyFromRows to wrap it in a CopyFromSource interface.\nOr implement CopyFromSource to avoid buffering the entire data set in memory.\n\nWhen you already have a typed array using CopyFromSlice can be more convenient.\n\nCopyFrom can be faster than an insert with as few as 5 rows.\n\npgx can listen to the PostgreSQL notification system with the `Conn.WaitForNotification` method. It blocks until a\nnotification is received or the context is canceled.\n\npgx supports tracing by setting ConnConfig.Tracer. To combine several tracers you can use the multitracer.Tracer.\n\nIn addition, the tracelog package provides the TraceLog type which lets a traditional logger act as a Tracer.\n\nFor debug tracing of the actual PostgreSQL wire protocol messages see github.com/jackc/pgx/v5/pgproto3.\n\ngithub.com/jackc/pgx/v5/pgconn contains a lower level PostgreSQL driver roughly at the level of libpq. pgx.Conn is\nimplemented on top of pgconn. The Conn.PgConn() method can be used to access this lower layer.\n\nBy default pgx automatically uses prepared statements. Prepared statements are incompatible with PgBouncer. This can be\ndisabled by setting a different QueryExecMode in ConnConfig.DefaultQueryExecMode.","homepage":"https://github.com/jackc/pgx","licenses":"MIT","normalized_licenses":["MIT"],"repository_url":"https://github.com/jackc/pgx","keywords_array":[],"namespace":"github.com/jackc/pgx","versions_count":37,"first_release_published_at":"2022-03-19T22:01:12.000Z","latest_release_published_at":"2025-05-17T22:14:14.000Z","latest_release_number":"v5.7.5","last_synced_at":"2025-06-06T09:30:46.902Z","created_at":"2022-04-12T19:50:42.221Z","updated_at":"2025-06-06T09:30:46.902Z","registry_url":"https://pkg.go.dev/github.com/jackc/pgx/v5","install_command":"go get github.com/jackc/pgx/v5","documentation_url":"https://pkg.go.dev/github.com/jackc/pgx/v5#section-documentation","metadata":{},"repo_metadata":{"id":7752997,"uuid":"9120526","full_name":"jackc/pgx","owner":"jackc","description":"PostgreSQL driver and toolkit for Go","archived":false,"fork":false,"pushed_at":"2025-05-10T16:30:57.000Z","size":5525,"stargazers_count":11770,"open_issues_count":222,"forks_count":905,"subscribers_count":103,"default_branch":"master","last_synced_at":"2025-05-12T21:46:39.945Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://pkg.go.dev/github.com/jackc/pgx/v5","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jackc.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2013-03-30T19:06:26.000Z","updated_at":"2025-05-12T21:36:13.000Z","dependencies_parsed_at":"2024-01-13T04:56:14.197Z","dependency_job_id":"a92c4626-e572-4a14-89d2-9506f56d3327","html_url":"https://github.com/jackc/pgx","commit_stats":{"total_commits":3453,"total_committers":338,"mean_commits":"10.215976331360947","dds":0.2479003764842166,"last_synced_commit":"c76a650f75781d7114612d848922868ab190e868"},"previous_names":[],"tags_count":101,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jackc","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":256062740,"owners_count":22330987,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"},"owner_record":{"login":"jackc","name":"Jack Christensen","uuid":"94130","kind":"user","description":"","email":"","website":"http://www.jackchristensen.com/","location":null,"twitter":null,"company":null,"icon_url":"https://avatars.githubusercontent.com/u/94130?v=4","repositories_count":101,"last_synced_at":"2023-03-10T19:06:53.876Z","metadata":{"has_sponsors_listing":false},"html_url":"https://github.com/jackc","funding_links":[],"total_stars":null,"followers":null,"following":null,"created_at":"2022-11-02T19:00:58.283Z","updated_at":"2023-03-10T19:06:53.889Z","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jackc","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jackc/repositories"},"tags":[{"name":"v5.7.4","sha":"04bcc0219dc3acf67f27e68decd6dffe97334779","kind":"commit","published_at":"2025-03-25T01:04:45.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.7.4","html_url":"https://github.com/jackc/pgx/releases/tag/v5.7.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.4/manifests"},{"name":"v5.7.3","sha":"5c1fbf4806cb7fc61f88e0808fb6bdabbac6df3f","kind":"commit","published_at":"2025-03-22T02:02:03.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.7.3","html_url":"https://github.com/jackc/pgx/releases/tag/v5.7.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.3/manifests"},{"name":"v5.7.2","sha":"24fbe353ed5c3f53d379b3ae370229a5638a2868","kind":"commit","published_at":"2024-12-21T15:25:36.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.7.2","html_url":"https://github.com/jackc/pgx/releases/tag/v5.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.2/manifests"},{"name":"v5.7.1","sha":"672c4a3a24849b1f34857817e6ed76f6581bbe90","kind":"commit","published_at":"2024-09-10T12:25:07.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.7.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.1/manifests"},{"name":"v5.7.0","sha":"d1205a6dbccfcf0e53cc3c39741b4a0f60f209ae","kind":"commit","published_at":"2024-09-07T15:23:34.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.7.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.7.0/manifests"},{"name":"v5.6.0","sha":"572d7fff326f1befdbf9f36a0c0a2b6661432079","kind":"commit","published_at":"2024-05-25T16:35:25.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.6.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.6.0/manifests"},{"name":"v5.5.5","sha":"78a0a2bf410b28c08359fc8c7550c1200589521c","kind":"commit","published_at":"2024-03-09T18:16:20.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.5.5","html_url":"https://github.com/jackc/pgx/releases/tag/v5.5.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.5/manifests"},{"name":"v4.18.3","sha":"8f05c4741a1f381d845d07f3b6fe01dbf6d67d43","kind":"commit","published_at":"2024-03-09T18:15:53.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.18.3","html_url":"https://github.com/jackc/pgx/releases/tag/v4.18.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.3/manifests"},{"name":"v5.5.4","sha":"da6f2c98f2664b215b40b1606551fdfcc7f3ea5c","kind":"commit","published_at":"2024-03-04T15:12:06.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.5.4","html_url":"https://github.com/jackc/pgx/releases/tag/v5.5.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.4/manifests"},{"name":"v4.18.2","sha":"14690df4c533758df97f7cc561cb9062155045c6","kind":"commit","published_at":"2024-03-04T14:59:37.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.18.2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.18.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.2/manifests"},{"name":"v5.5.3","sha":"6f8f6ede6c67ce6b755feafe5c44f93577545147","kind":"commit","published_at":"2024-02-03T18:52:29.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.5.3","html_url":"https://github.com/jackc/pgx/releases/tag/v5.5.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.3/manifests"},{"name":"v5.5.2","sha":"b7de418d46878f65f91c377297d98b8b1a9c406d","kind":"commit","published_at":"2024-01-13T17:08:35.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.5.2","html_url":"https://github.com/jackc/pgx/releases/tag/v5.5.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.2/manifests"},{"name":"v5.5.1","sha":"ba05097642a802eb5a76343f27a9a3515ed86498","kind":"commit","published_at":"2023-12-09T18:59:44.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.5.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.5.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.1/manifests"},{"name":"v5.5.0","sha":"96f5f9cd952eccb28ce575089953c8ba7d99d77b","kind":"commit","published_at":"2023-11-04T15:27:32.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.5.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.5.0/manifests"},{"name":"v5.4.3","sha":"d17440d5c7e24c6e7cfbf5fe2ce66aabf310fadf","kind":"commit","published_at":"2023-08-05T13:36:48.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.4.3","html_url":"https://github.com/jackc/pgx/releases/tag/v5.4.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.3/manifests"},{"name":"v5.4.2","sha":"038fc448c1cc91b9372a6a0d151789f41536f033","kind":"commit","published_at":"2023-07-12T02:29:54.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.4.2","html_url":"https://github.com/jackc/pgx/releases/tag/v5.4.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.2/manifests"},{"name":"v5.4.1","sha":"74ab538d2a75e2fbf29d807e5698ba1102880313","kind":"commit","published_at":"2023-06-18T13:27:21.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.4.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.1/manifests"},{"name":"v5.4.0","sha":"461b9fa36eaca55a1d2fcd46871cbd1dc2bbac89","kind":"commit","published_at":"2023-06-14T14:41:17.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.4.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.4.0/manifests"},{"name":"v4.18.1","sha":"13468eb321a0bacbb0cbdfddb1ea1d62e68e0652","kind":"commit","published_at":"2023-02-28T01:58:50.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.18.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.18.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.1/manifests"},{"name":"v5.3.1","sha":"7ec6ee7b0ad9ecb4cf885b6630fd36b022e89755","kind":"commit","published_at":"2023-02-28T01:57:26.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.3.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.3.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.3.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.3.1/manifests"},{"name":"v5.3.0","sha":"c5daa3a814b9ddda1d8ed7e685d467d4210cbc45","kind":"commit","published_at":"2023-02-11T15:15:31.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.3.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.3.0/manifests"},{"name":"v4.18.0","sha":"dfaa30d68cff197700f4c4bd2909af56570ce040","kind":"commit","published_at":"2023-02-11T14:44:18.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.18.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.18.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.18.0/manifests"},{"name":"v5.2.0","sha":"17f8f7af630362aaff74534a899bf2b0953f40c0","kind":"commit","published_at":"2022-12-06T02:41:55.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.2.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.2.0/manifests"},{"name":"v5.1.1","sha":"8ad1394f4c8aa044ddcade4064d421ee3688f7fc","kind":"commit","published_at":"2022-11-18T01:47:09.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.1.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.1.1/manifests"},{"name":"v5.1.0","sha":"b4d2eae7771495a344d7fa1bf24d2dcff3b76c35","kind":"commit","published_at":"2022-11-12T17:02:55.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.1.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.1.0/manifests"},{"name":"v5.0.4","sha":"987de3874e0fc18b8c468d27cb9de9b2cd67540c","kind":"commit","published_at":"2022-10-25T00:11:50.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.4","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.4/manifests"},{"name":"v5.0.3","sha":"11e5f68ff643f317048fb5a26ce0aa208776b845","kind":"commit","published_at":"2022-10-15T00:11:11.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.3","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.3/manifests"},{"name":"v5.0.2","sha":"094ad9c9d830a33089b85d8dfca538c4de1dcdba","kind":"commit","published_at":"2022-10-08T23:58:17.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.2","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.2/manifests"},{"name":"v5.0.1","sha":"0aa681f3a3f2809e650cfc0475c8db4c8da05a8c","kind":"commit","published_at":"2022-09-24T16:15:31.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.1/manifests"},{"name":"v5.0.0","sha":"4fc4f9a60337af3bd7c6abdf6c71460712d112fc","kind":"commit","published_at":"2022-09-17T15:36:36.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0/manifests"},{"name":"v5.0.0-beta.5","sha":"ee2622a8e699a7b052f272b08a6354bfdb90dbcd","kind":"commit","published_at":"2022-09-06T23:32:10.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-beta.5","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-beta.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.5/manifests"},{"name":"v4.17.2","sha":"d42b399be3ec4153ccd7e8b84ee50e60751a6936","kind":"commit","published_at":"2022-09-03T18:42:36.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.17.2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.17.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.17.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.17.2/manifests"},{"name":"v5.0.0-beta.4","sha":"f015ced1bf367cb1f28613dfbfd729157a2de342","kind":"commit","published_at":"2022-09-03T18:20:19.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-beta.4","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-beta.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.4/manifests"},{"name":"v4.17.1","sha":"f5cdf0d3830993734c77e3c998dcd74d84c2b9f7","kind":"commit","published_at":"2022-08-27T23:18:41.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.17.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.17.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.17.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.17.1/manifests"},{"name":"v5.0.0-beta.3","sha":"fe3a4f31503fd23b9e560ed372bd365368b7f880","kind":"commit","published_at":"2022-08-23T02:01:18.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-beta.3","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-beta.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.3/manifests"},{"name":"v5.0.0-beta.2","sha":"8eae4a2a3e9ab5ab6b39185c4dc8f25a743a29be","kind":"commit","published_at":"2022-08-13T15:19:49.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-beta.2","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-beta.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.2/manifests"},{"name":"v5.0.0-beta.1","sha":"1819959d079a607f53fa6fa7659cbaa73894a679","kind":"commit","published_at":"2022-08-06T11:41:33.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-beta.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-beta.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-beta.1/manifests"},{"name":"v4.17.0","sha":"5768a0c0bddfdefad0596d8a3da61fc7dccac32a","kind":"commit","published_at":"2022-08-06T11:24:41.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.17.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.17.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.17.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.17.0/manifests"},{"name":"v5.0.0-alpha.5","sha":"a5b4f888c221566c3034bda659afa460701a256e","kind":"commit","published_at":"2022-07-16T23:16:19.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-alpha.5","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-alpha.5","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.5","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.5/manifests"},{"name":"v5.0.0-alpha.4","sha":"585022440b6f015d2c54f80cd46b55e1499472d7","kind":"commit","published_at":"2022-06-25T23:11:39.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-alpha.4","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-alpha.4","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.4","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.4/manifests"},{"name":"v4.16.1","sha":"8b9b4055f3b679999adde4a0ab44eb6e1ea536c7","kind":"commit","published_at":"2022-05-07T12:14:53.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.16.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.16.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.16.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.16.1/manifests"},{"name":"v5.0.0-alpha.3","sha":"107196ab0c90528a41a9c2910e158763ac320cd4","kind":"commit","published_at":"2022-04-23T23:45:38.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-alpha.3","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-alpha.3","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.3","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.3/manifests"},{"name":"v4.16.0","sha":"8c1815e02e2f584ef74f868fa8f0efd469e8980b","kind":"commit","published_at":"2022-04-22T01:15:18.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.16.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.16.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.16.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.16.0/manifests"},{"name":"v5.0.0-alpha.2","sha":"8cf6721d66722439e94f939a4dee58895a071f40","kind":"commit","published_at":"2022-04-02T21:55:05.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-alpha.2","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-alpha.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.2/manifests"},{"name":"v5.0.0-alpha.1","sha":"8c18d7808bdf0ccad2887914c78f7b71d0e66e5e","kind":"commit","published_at":"2022-03-19T22:01:12.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v5.0.0-alpha.1","html_url":"https://github.com/jackc/pgx/releases/tag/v5.0.0-alpha.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v5.0.0-alpha.1/manifests"},{"name":"v4.15.0","sha":"2b7de82ef43e637b3ef444f9d8162e50f1cab3ee","kind":"commit","published_at":"2022-02-07T17:03:06.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.15.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.15.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.15.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.15.0/manifests"},{"name":"v4.14.1","sha":"9fdaf7da810405df8360184341085defbcf79446","kind":"commit","published_at":"2021-11-29T03:46:52.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.14.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.14.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.14.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.14.1/manifests"},{"name":"v4.14.0","sha":"9da0a7aef7ade9d2f722d641fc8d203486d8be55","kind":"commit","published_at":"2021-11-20T16:48:31.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.14.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.14.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.14.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.14.0/manifests"},{"name":"v4.13.0","sha":"8f33ed07cd0381609da01a602d311f321aaa9e10","kind":"commit","published_at":"2021-07-24T15:59:24.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.13.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.13.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.13.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.13.0/manifests"},{"name":"v4.12.0","sha":"9ee04e87e3b61738ebc9b27e7f2ca794cb8ae5fe","kind":"commit","published_at":"2021-07-10T15:06:00.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.12.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.12.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.12.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.12.0/manifests"},{"name":"v4.11.0","sha":"909b81a16372d7e2574b2b11e8993895bdd5a065","kind":"commit","published_at":"2021-03-25T14:21:28.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.11.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.11.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.11.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.11.0/manifests"},{"name":"v4.10.1","sha":"fc4d50f6c2a089099c0b63a8373cc1827d65b2ea","kind":"commit","published_at":"2020-12-19T16:18:49.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.10.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.10.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.10.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.10.1/manifests"},{"name":"v4.10.0","sha":"e14638e1251942ee8ce1397c5f834c988fec897e","kind":"commit","published_at":"2020-12-04T01:50:07.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.10.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.10.0/manifests"},{"name":"v4.9.2","sha":"eeaa26abee918c4afe6437ac4ab75c32d36609df","kind":"commit","published_at":"2020-11-04T01:24:54.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.9.2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.9.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.9.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.9.2/manifests"},{"name":"v4.9.1","sha":"9898beaa2d43f18c6a37e03841c1aae8705415b1","kind":"commit","published_at":"2020-10-31T22:36:36.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.9.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.9.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.9.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.9.1/manifests"},{"name":"v4.9.0","sha":"2a8ae6f269e17c44d25cd0f713eaa6356547206e","kind":"commit","published_at":"2020-09-26T16:58:01.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.9.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.9.0/manifests"},{"name":"v4.8.1","sha":"e9579e6249e256e49cf95154c38d45367e22179e","kind":"commit","published_at":"2020-07-30T03:19:49.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.8.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.8.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.8.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.8.1/manifests"},{"name":"v4.8.0","sha":"b8c58578800a761503418bda703cc31b02b5957c","kind":"commit","published_at":"2020-07-22T11:49:50.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.8.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.8.0/manifests"},{"name":"v4.7.2","sha":"42cbd0fa462082363eb2fa3302c69a9d2bb2fabc","kind":"commit","published_at":"2020-07-14T17:07:51.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.7.2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.7.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.7.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.7.2/manifests"},{"name":"v4.7.1","sha":"3568b908c03beaf0846015658ca9fd3123c51823","kind":"commit","published_at":"2020-06-29T15:43:18.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.7.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.7.1/manifests"},{"name":"v4.7.0","sha":"34cbb611383a339852ea9fc6e5d5aa6e1e4d5091","kind":"commit","published_at":"2020-06-27T17:31:13.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.7.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.7.0/manifests"},{"name":"v4.6.0","sha":"0446492fe9dc68afff5926b15ec74412ac9c390b","kind":"commit","published_at":"2020-03-30T16:35:02.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.6.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.6.0/manifests"},{"name":"v4.5.0","sha":"576f99a35e6fbaee12c601d0c09ab0f1eac46836","kind":"commit","published_at":"2020-03-07T19:32:17.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.5.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.5.0/manifests"},{"name":"v4.4.1","sha":"542c9a97f13892c0c57f95e04426208f72dabe4c","kind":"commit","published_at":"2020-02-14T23:59:33.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.4.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.4.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.4.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.4.1/manifests"},{"name":"v4.4.0","sha":"ea0eacc0b65e7cc7e1dbe77322778eeec1bde323","kind":"commit","published_at":"2020-02-05T17:31:22.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.4.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.4.0/manifests"},{"name":"v3.6.2","sha":"a413de981978e4100d5736af7aaa2b392511612f","kind":"commit","published_at":"2020-01-24T22:16:15.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.6.2","html_url":"https://github.com/jackc/pgx/releases/tag/v3.6.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.6.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.6.2/manifests"},{"name":"v4.3.0","sha":"105928875106502d318f47396f6f370dc59945de","kind":"commit","published_at":"2020-01-24T03:05:53.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.3.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.3.0/manifests"},{"name":"v4.2.1","sha":"69048c281c7cc134b9dd4ed3883e1c639c211d75","kind":"commit","published_at":"2020-01-13T14:51:08.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.2.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.2.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.2.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.2.1/manifests"},{"name":"v4.2.0","sha":"7a394d5c78aad33fd88a4c3d847ad21093e62f62","kind":"commit","published_at":"2020-01-12T01:25:23.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.2.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.2.0/manifests"},{"name":"v3.6.1","sha":"621a7ed1b809be7eb2773275d44cf288a37c9153","kind":"commit","published_at":"2020-01-12T00:51:46.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.6.1","html_url":"https://github.com/jackc/pgx/releases/tag/v3.6.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.6.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.6.1/manifests"},{"name":"v4.1.2","sha":"f3a3ee1a0e5c8fc8991928bcd06fdbcd1ee9d05c","kind":"commit","published_at":"2019-10-23T01:51:52.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.1.2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.1.2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.1.2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.1.2/manifests"},{"name":"v4.1.1","sha":"3da4ea1a978845440c59b7a6bd42294dd32a5d7c","kind":"commit","published_at":"2019-10-21T18:57:39.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.1.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.1.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.1.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.1.1/manifests"},{"name":"v4.1.0","sha":"e8a20809ddb90c39a1d281d15f40bd47b5e2f4db","kind":"commit","published_at":"2019-10-12T16:28:39.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.1.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.1.0/manifests"},{"name":"v4.0.1","sha":"0a50ae89beb7a0d95177e798161b3262dcd26a55","kind":"commit","published_at":"2019-09-20T04:03:52.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.0.1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.1/manifests"},{"name":"v4.0.0","sha":"28ad4873d3817802074177603ff9cefbb4dc9449","kind":"commit","published_at":"2019-09-15T01:45:50.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.0.0","html_url":"https://github.com/jackc/pgx/releases/tag/v4.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0/manifests"},{"name":"v3.6.0","sha":"c73e7d75061bb42b0282945710f344cfe1113d10","kind":"commit","published_at":"2019-09-15T01:14:24.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.6.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.6.0/manifests"},{"name":"v4.0.0-rc2","sha":"7d053e4d5cfb0c299119174447cc8a6bcc3baa5c","kind":"commit","published_at":"2019-09-10T23:38:10.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.0.0-rc2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.0.0-rc2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-rc2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-rc2/manifests"},{"name":"v4.0.0-rc1","sha":"be8ed87408efbb35444fd660d51265c5047d2786","kind":"commit","published_at":"2019-09-02T17:27:02.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.0.0-rc1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.0.0-rc1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-rc1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-rc1/manifests"},{"name":"v4.0.0-pre2","sha":"486d64daed097e108284f9781ec0a1b56f01f2b5","kind":"commit","published_at":"2019-08-28T02:18:25.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.0.0-pre2","html_url":"https://github.com/jackc/pgx/releases/tag/v4.0.0-pre2","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-pre2","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-pre2/manifests"},{"name":"v4.0.0-pre1","sha":"da16226e0a70277d394b5d4285bbc343bc84f202","kind":"commit","published_at":"2019-06-29T18:59:11.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v4.0.0-pre1","html_url":"https://github.com/jackc/pgx/releases/tag/v4.0.0-pre1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-pre1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v4.0.0-pre1/manifests"},{"name":"v3.5.0","sha":"a1d6202434aa40c3624688f6c2cacbc27eef5472","kind":"commit","published_at":"2019-06-29T16:19:29.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.5.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.5.0/manifests"},{"name":"v3.4.0","sha":"8faa4453fc7051d1076053f8854077753ab912f2","kind":"commit","published_at":"2019-05-03T20:52:30.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.4.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.4.0/manifests"},{"name":"v3.3.0","sha":"c59c9cac59ab95eceb0c12ff338923c62f411ea2","kind":"commit","published_at":"2018-12-01T17:13:13.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.3.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.3.0/manifests"},{"name":"v3.2.0","sha":"89f1e6ac7276b61d885db5e5aed6fcbedd1c7e31","kind":"commit","published_at":"2018-08-07T14:28:28.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.2.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.2.0/manifests"},{"name":"v3.1.0","sha":"da3231b0b66e2e74cdb779f1d46c5e958ba8be27","kind":"commit","published_at":"2018-01-15T17:48:07.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.1.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.1.0/manifests"},{"name":"v3.0.1","sha":"66918e80dfde8d5cb09af9aebf40e2cce2eb0cc0","kind":"commit","published_at":"2017-08-12T22:45:57.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.0.1","html_url":"https://github.com/jackc/pgx/releases/tag/v3.0.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.0.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.0.1/manifests"},{"name":"v3.0.0","sha":"69494780a8906839b5d2e9a72640846e96fe183b","kind":"commit","published_at":"2017-07-24T13:53:57.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v3.0.0","html_url":"https://github.com/jackc/pgx/releases/tag/v3.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v3.0.0/manifests"},{"name":"v2.11.0","sha":"9bd22f689ac9f0f5445fb5dad24569d5cadf1773","kind":"commit","published_at":"2017-06-05T13:57:30.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.11.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.11.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.11.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.11.0/manifests"},{"name":"v2.10.0","sha":"97c01fb52451c10e686fb847ad390338bf1799ae","kind":"commit","published_at":"2017-03-17T13:06:00.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.10.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.10.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.10.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.10.0/manifests"},{"name":"v2.9.0","sha":"2508faa9ced29f4bbb3a39483e4b5ac2627a7c48","kind":"commit","published_at":"2016-08-26T12:39:15.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.9.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.9.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.9.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.9.0/manifests"},{"name":"v2.8.1","sha":"9edd770c70e274b7ef67fa9f4039c824be0f8bda","kind":"commit","published_at":"2016-03-24T20:38:55.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.8.1","html_url":"https://github.com/jackc/pgx/releases/tag/v2.8.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.8.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.8.1/manifests"},{"name":"v2.8.0","sha":"410a7646bcf03a1ad5fc98709b10d1f50b231c19","kind":"commit","published_at":"2016-03-18T20:22:35.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.8.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.8.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.8.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.8.0/manifests"},{"name":"v2.7.1","sha":"3262ee23f3cab228cd306668e256fa8c0f01bbc5","kind":"commit","published_at":"2015-10-26T17:09:46.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.7.1","html_url":"https://github.com/jackc/pgx/releases/tag/v2.7.1","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.7.1","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.7.1/manifests"},{"name":"v2.7.0","sha":"1e9206fc6c7edfffa344525aa1cf8c24b62699b0","kind":"commit","published_at":"2015-10-16T21:37:45.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.7.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.7.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.7.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.7.0/manifests"},{"name":"v2.6.0","sha":"e69d2bba264e32495e6eb35e138ad54065123b2a","kind":"commit","published_at":"2015-09-03T18:03:52.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.6.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.6.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.6.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.6.0/manifests"},{"name":"v2.5.0","sha":"d46a762159f7b7c97b24c9dfacc0b985e48fa3e1","kind":"commit","published_at":"2015-04-15T13:12:17.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.5.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.5.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.5.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.5.0/manifests"},{"name":"v2.4.0","sha":"3beff78461024ef68c99923573d77fe393a82217","kind":"commit","published_at":"2014-10-03T20:00:20.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.4.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.4.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.4.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.4.0/manifests"},{"name":"v2.3.0","sha":"68034af72120a228e13f59571b7c2ab077092770","kind":"commit","published_at":"2014-09-16T21:59:13.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.3.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.3.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.3.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.3.0/manifests"},{"name":"v2.2.0","sha":"5dbc03602d6490439492efbefaa04774d18e4226","kind":"commit","published_at":"2014-09-05T16:14:11.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.2.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.2.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.2.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.2.0/manifests"},{"name":"v2.1.0","sha":"61bf7d841afd37d86d6fb92a4788813eb1b79027","kind":"commit","published_at":"2014-07-18T21:51:11.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.1.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.1.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.1.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.1.0/manifests"},{"name":"v2.0.0","sha":"f7171f34e71a2d63d59f721bdb1cc158e3f53624","kind":"commit","published_at":"2014-07-14T13:16:03.000Z","download_url":"https://codeload.github.com/jackc/pgx/tar.gz/v2.0.0","html_url":"https://github.com/jackc/pgx/releases/tag/v2.0.0","dependencies_parsed_at":null,"dependency_job_id":null,"tag_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.0.0","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jackc%2Fpgx/tags/v2.0.0/manifests"}]},"repo_metadata_updated_at":"2025-05-24T10:03:34.719Z","dependent_packages_count":3079,"downloads":null,"downloads_period":null,"dependent_repos_count":4965,"rankings":{"downloads":null,"dependent_repos_count":0.11766023628641688,"dependent_packages_count":0.11406363517722509,"stargazers_count":0.7502509913774057,"forks_count":1.0875094153879037,"docker_downloads_count":0.19082537885054685,"average":0.4520619314158997},"purl":"pkg:golang/github.com/jackc/pgx/v5","advisories":[{"uuid":"GSA_kwCzR0hTQS1tcnd3LTI3dmMtZ2dods4AA5wA","url":"https://github.com/advisories/GHSA-mrww-27vc-gghv","title":"pgx SQL Injection via Protocol Message Size Overflow","description":"### Impact\n\nSQL injection can occur if an attacker can cause a single query or bind message to exceed 4 GB in size. An integer overflow in the calculated message size can cause the one large message to be sent as multiple messages under the attacker's control.\n\n### Patches\n\nThe problem is resolved in v4.18.2 and v5.5.4.\n\n### Workarounds\n\nReject user input large enough to cause a single query or bind message to exceed 4 GB in size.\n","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2024-03-04T20:43:24.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":9.8,"cvss_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","references":["https://github.com/jackc/pgproto3/security/advisories/GHSA-7jwh-3vrq-q3m8","https://github.com/jackc/pgx/security/advisories/GHSA-mrww-27vc-gghv","https://github.com/jackc/pgproto3/commit/945c2126f6db8f3bea7eeebe307c01fe92bca007","https://github.com/jackc/pgx/commit/adbb38f298c76e283ffc7c7a3f571036fea47fd4","https://github.com/jackc/pgx/commit/c543134753a0c5d22881c12404025724cb05ffd8","https://github.com/jackc/pgx/commit/f94eb0e2f96782042c96801b5ac448f44f0a81df","https://nvd.nist.gov/vuln/detail/CVE-2024-27304","https://www.youtube.com/watch?v=Tfg1B8u1yvE","https://github.com/advisories/GHSA-mrww-27vc-gghv"],"source_kind":"github","identifiers":["GHSA-mrww-27vc-gghv","CVE-2024-27304"],"repository_url":"https://github.com/jackc/pgproto3","blast_radius":41.766202379173,"packages":[{"versions":[{"first_patched_version":"5.5.4","vulnerable_version_range":"\u003e= 5.0.0, \u003c 5.5.4"}],"ecosystem":"go","package_name":"github.com/jackc/pgx/v5"},{"versions":[{"first_patched_version":"4.18.2","vulnerable_version_range":"\u003c 4.18.2"}],"ecosystem":"go","package_name":"github.com/jackc/pgx/v4"},{"versions":[{"first_patched_version":"5.5.4","vulnerable_version_range":"\u003e= 5.0.0, \u003c 5.5.4"},{"first_patched_version":"4.18.2","vulnerable_version_range":"\u003c 4.18.2"}],"ecosystem":"go","package_name":"github.com/jackc/pgx"}],"created_at":"2024-03-04T21:04:41.847Z","updated_at":"2024-12-12T22:30:36.000Z","epss_percentage":0.00044,"epss_percentile":0.11522},{"uuid":"GSA_kwCzR0hTQS1mcXBnLXJxNzYtOTlwcc4AA9m6","url":"https://github.com/advisories/GHSA-fqpg-rq76-99pq","title":"Panic in Pipeline when PgConn is busy or closed in github.com/jackc/pgx","description":"Pipeline can panic when PgConn is busy or closed.","origin":"UNSPECIFIED","severity":"MODERATE","published_at":"2024-07-05T20:08:26.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/jackc/pgx/commit/dfd198003a03dbb96e4607b0d3a0bb9a7398ccb7","https://github.com/advisories/GHSA-fqpg-rq76-99pq"],"source_kind":"github","identifiers":["GHSA-fqpg-rq76-99pq"],"repository_url":"https://github.com/jackc/pgx","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"5.5.2","vulnerable_version_range":"\u003c 5.5.2"}],"ecosystem":"go","package_name":"github.com/jackc/pgx/v5"}],"created_at":"2024-07-05T21:05:25.580Z","updated_at":"2024-07-05T20:08:27.000Z","epss_percentage":null,"epss_percentile":null}],"docker_usage_url":"https://docker.ecosyste.ms/usage/go/github.com/jackc/pgx/v5","docker_dependents_count":855,"docker_downloads_count":1070278118,"usage_url":"https://repos.ecosyste.ms/usage/go/github.com/jackc/pgx/v5","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/go/github.com/jackc/pgx/v5/dependencies","status":null,"funding_links":[],"critical":null,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fjackc%2Fpgx%2Fv5/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fjackc%2Fpgx%2Fv5/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fjackc%2Fpgx%2Fv5/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fjackc%2Fpgx%2Fv5/related_packages","maintainers":[],"registry":{"name":"proxy.golang.org","url":"https://proxy.golang.org","ecosystem":"go","default":true,"packages_count":1882895,"maintainers_count":0,"namespaces_count":723926,"keywords_count":97872,"github":"golang","metadata":{"funded_packages_count":39346},"icon_url":"https://github.com/golang.png","created_at":"2022-04-04T15:19:22.939Z","updated_at":"2025-06-06T05:22:27.920Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/namespaces"}},"unique_repositories_count":830,"unique_repositories_count_past_30_days":36,"recent_issues":[{"uuid":"4559282246","node_id":"PR_kwDOSM_Ni87hK1ry","number":42,"state":"open","title":"fix(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.2","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T22:53:07.000Z","updated_at":"2026-05-31T22:55:19.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.8.0 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pgvillage-tools/orion/pull/42","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pgvillage-tools%2Forion/issues/42","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/42/packages"},{"uuid":"4558810958","node_id":"PR_kwDODerqlM7hJaL7","number":178,"state":"open","title":"Bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.2","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T20:01:14.000Z","updated_at":"2026-05-31T20:45:10.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.8.0 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/neufeldtech/secretmessage-go/pull/178","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/neufeldtech%2Fsecretmessage-go/issues/178","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/178/packages"},{"uuid":"4555926942","node_id":"PR_kwDOSre5mc7hA3wh","number":9,"state":"open","title":"Bump github.com/jackc/pgx/v5 from 5.5.5 to 5.9.2","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T22:49:15.000Z","updated_at":"2026-05-30T22:49:16.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.5.5","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.5.5 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.5...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.5.5\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/tmuhammet36-cmd/roundpenny/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/tmuhammet36-cmd%2Froundpenny/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"},{"uuid":"4551866990","node_id":"PR_kwDOPrYSMc7g0ZQ3","number":38,"state":"open","title":"chore(deps): bump the go_modules group across 5 directories with 28 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T21:53:39.000Z","updated_at":"2026-05-30T00:01:27.864Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":28,"packages":[{"name":"github.com/distribution/distribution/v3","old_version":"3.0.0-20220128175647-b60926597a1b","new_version":"3.1.1","repository_url":"https://github.com/distribution/distribution"},{"name":"github.com/go-git/go-git/v5","old_version":"5.11.0","new_version":"5.19.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/moby/buildkit","old_version":"0.12.5","new_version":"0.28.1","repository_url":"https://github.com/moby/buildkit"},{"name":"github.com/russellhaering/gosaml2","old_version":"0.9.1","new_version":"0.11.0","repository_url":"https://github.com/russellhaering/gosaml2"},{"name":"github.com/slack-go/slack","old_version":"0.10.1","new_version":"0.23.1","repository_url":"https://github.com/slack-go/slack"},{"name":"chainguard.dev/apko","old_version":"0.14.0","new_version":"1.2.7","repository_url":"https://github.com/chainguard-dev/apko"},{"name":"github.com/jackc/pgx/v5","old_version":"5.5.5","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/go-chi/chi/v5","old_version":"5.0.10","new_version":"5.2.2","repository_url":"https://github.com/go-chi/chi"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/distribution/distribution/v3](https://github.com/distribution/distribution) | `3.0.0-20220128175647-b60926597a1b` | `3.1.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.11.0` | `5.19.1` |\n| [github.com/moby/buildkit](https://github.com/moby/buildkit) | `0.12.5` | `0.28.1` |\n| [github.com/russellhaering/gosaml2](https://github.com/russellhaering/gosaml2) | `0.9.1` | `0.11.0` |\n| [github.com/slack-go/slack](https://github.com/slack-go/slack) | `0.10.1` | `0.23.1` |\n| [chainguard.dev/apko](https://github.com/chainguard-dev/apko) | `0.14.0` | `1.2.7` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.5` | `5.9.2` |\n| [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) | `5.0.10` | `5.2.2` |\n\nBumps the go_modules group with 4 updates in the /internal/cmd/progress-bot directory: [github.com/slack-go/slack](https://github.com/slack-go/slack), [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/oauth2](https://github.com/golang/oauth2) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 4 updates in the /lib directory: [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/oauth2](https://github.com/golang/oauth2), [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 6 updates in the /lib/managedservicesplatform directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.25.0` | `1.43.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.21.0` | `0.27.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.5` | `5.9.2` |\n| [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) | `9.5.3` | `9.5.5` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.65.0` | `1.79.3` |\n\nBumps the go_modules group with 3 updates in the /monitoring directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) and [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp).\n\nUpdates `github.com/distribution/distribution/v3` from 3.0.0-20220128175647-b60926597a1b to 3.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/distribution/distribution/releases\"\u003egithub.com/distribution/distribution/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the \u003ccode\u003ev3.1.1\u003c/code\u003e release of registry!\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eThis is a stable release\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/distribution/distribution/issues\"\u003ehttps://github.com/distribution/distribution/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-41888\"\u003eCVE-2026-41888\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBounds-check the file basename in PurgeUploads Walk callback\u003c/li\u003e\n\u003cli\u003eAdd S3 Express One Zone support to the S3 storage driver (\u003ca href=\"https://redirect.github.com/distribution/distribution/issues/4858\"\u003e#4858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix tag list endpoint in proxy mode (\u003ca href=\"https://redirect.github.com/distribution/distribution/issues/4846\"\u003e#4846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eClamp oversized \u003ccode\u003en\u003c/code\u003e query parameter in proxy mode instead of returning 400 (\u003ca href=\"https://redirect.github.com/distribution/distribution/issues/4856\"\u003e#4856\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the full changelog below for the full list of changes.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal/client/auth/challenge: cleanups and minor refactor by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4832\"\u003edistribution/distribution#4832\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp from 0.18.0 to 0.19.0 in the go_modules group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4843\"\u003edistribution/distribution#4843\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in the go_modules group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4850\"\u003edistribution/distribution#4850\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.34.1 to 4.35.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4840\"\u003edistribution/distribution#4840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(build): Bump go version to latest by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4851\"\u003edistribution/distribution#4851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use slices.Backward to simplify the code by \u003ca href=\"https://github.com/chuanshanjida\"\u003e\u003ccode\u003e@​chuanshanjida\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4848\"\u003edistribution/distribution#4848\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(proxy): fix tag list endpoint in proxy mode by \u003ca href=\"https://github.com/njucjc\"\u003e\u003ccode\u003e@​njucjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4846\"\u003edistribution/distribution#4846\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docker-compose structure in deploying.md by \u003ca href=\"https://github.com/jdg71nl\"\u003e\u003ccode\u003e@​jdg71nl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4855\"\u003edistribution/distribution#4855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4854\"\u003edistribution/distribution#4854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4852\"\u003edistribution/distribution#4852\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/login-action from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4847\"\u003edistribution/distribution#4847\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/bake-action from 7.0.0 to 7.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4853\"\u003edistribution/distribution#4853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(proxy): clamp oversized n query param instead of returning 400 by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4856\"\u003edistribution/distribution#4856\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(s3): add express zone one support to S3 driver by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4858\"\u003edistribution/distribution#4858\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(storage): bounds-check the file basename in PurgeUploads Walk callback by \u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4860\"\u003edistribution/distribution#4860\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): prepare for v3.1.1 release by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4864\"\u003edistribution/distribution#4864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chuanshanjida\"\u003e\u003ccode\u003e@​chuanshanjida\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4848\"\u003edistribution/distribution#4848\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jdg71nl\"\u003e\u003ccode\u003e@​jdg71nl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4855\"\u003edistribution/distribution#4855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4860\"\u003edistribution/distribution#4860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/distribution/distribution/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/distribution/distribution/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003cp\u003eWelcome to the \u003ccode\u003ev3.1.0\u003c/code\u003e release of registry!\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eThis is a stable release\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/distribution/distribution/issues\"\u003ehttps://github.com/distribution/distribution/issues\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/distribution/distribution/commits/v3.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.11.0 to 5.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ev5: plumbing: transport/ssh, Shell-quote path by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2068\"\u003ego-git/go-git#2068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, Fix relative URL resolution by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2070\"\u003ego-git/go-git#2070\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, canonical remote for relative URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2074\"\u003ego-git/go-git#2074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, error on remote without URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2078\"\u003ego-git/go-git#2078\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/idxfile, Validate offset64 indices by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2084\"\u003ego-git/go-git#2084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: *: Reject malformed variable-length integers by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2092\"\u003ego-git/go-git#2092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/packfile, Tighten delta validation by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2091\"\u003ego-git/go-git#2091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Add \u003ccode\u003eworktreeFilesystem\u003c/code\u003e wrapper for worktree and hardening by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2100\"\u003ego-git/go-git#2100\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: config: validate submodule names by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2082\"\u003ego-git/go-git#2082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.19.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2111\"\u003ego-git/go-git#2111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Allow MkdirAll on worktree-root paths by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2117\"\u003ego-git/go-git#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Stop validating symlink target paths by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2116\"\u003ego-git/go-git#2116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format decoder input bounds and contracts by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2125\"\u003ego-git/go-git#2125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: format/packfile, cap delta chain depth in parser by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2137\"\u003ego-git/go-git#2137\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3c3be601aa6c0fd0d536c0d1e4f898b4c60e65fe\"\u003e\u003ccode\u003e3c3be60\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2137\"\u003e#2137\u003c/a\u003e from go-git/validate-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3fba897bd9e84b1aec170fa708b80e297b7d6cf6\"\u003e\u003ccode\u003e3fba897\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, cap delta chain depth in parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a97d6601c85e017bb64c2b0f2e3169f6ef6a6709\"\u003e\u003ccode\u003ea97d660\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2125\"\u003e#2125\u003c/a\u003e from hiddeco/v5/format-input-bounds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/aeaa125c8af8e4c4c95b574c22c5633e97fc436e\"\u003e\u003ccode\u003eaeaa125\u003c/code\u003e\u003c/a\u003e plumbing: format/objfile, require Header before Read\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1f38e171218526ea254a73187a52f0648253c1b8\"\u003e\u003ccode\u003e1f38e17\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, bound inflate size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f7545a02529e03998d6a7219140dc0e6644ad337\"\u003e\u003ccode\u003ef7545a0\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, bound nr by file size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/170b88181f385913a457a08b68c88956fb3f8e4f\"\u003e\u003ccode\u003e170b881\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2116\"\u003e#2116\u003c/a\u003e from pjbgf/symlink-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/7b6d994467f06630268904aa3c441b6de7248b31\"\u003e\u003ccode\u003e7b6d994\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2117\"\u003e#2117\u003c/a\u003e from hiddeco/v5/worktree-fs-mkdirall-root-noop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f0709b32f8fbb87c16cd63c6762d2cd515f36541\"\u003e\u003ccode\u003ef0709b3\u003c/code\u003e\u003c/a\u003e git: Stop validating symlink target paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/776d00f11d336f26862d0f2bab987b217f3a7844\"\u003e\u003ccode\u003e776d00f\u003c/code\u003e\u003c/a\u003e git: Allow MkdirAll on worktree-root paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.11.0...v5.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/moby/buildkit` from 0.12.5 to 0.28.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/moby/buildkit/releases\"\u003egithub.com/moby/buildkit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.28.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v0.28.1 release of buildkit!\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/moby/buildkit/issues\"\u003ehttps://github.com/moby/buildkit/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix insufficient validation of Git URL \u003ccode\u003e#ref:subdir\u003c/code\u003e fragments that could allow access to restricted files outside the checked-out repository root. \u003ca href=\"https://github.com/moby/buildkit/security/advisories/GHSA-4vrq-3vrq-g6gg\"\u003eGHSA-4vrq-3vrq-g6gg\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a vulnerability where an untrusted custom frontend could cause files to be written outside the BuildKit state directory. \u003ca href=\"https://github.com/moby/buildkit/security/advisories/GHSA-4c29-8rgm-jvjj\"\u003eGHSA-4c29-8rgm-jvjj\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a panic when processing invalid \u003ccode\u003e.dockerignore\u003c/code\u003e patterns during \u003ccode\u003eCOPY\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/moby/buildkit/issues/6610\"\u003e#6610\u003c/a\u003e \u003ca href=\"https://redirect.github.com/moby/patternmatcher/issues/9\"\u003emoby/patternmatcher#9\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003egithub.com/moby/patternmatcher\u003c/strong\u003e  v0.6.0 -\u0026gt; v0.6.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePrevious release can be found at \u003ca href=\"https://github.com/moby/buildkit/releases/tag/v0.28.0\"\u003ev0.28.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.28.0\u003c/h2\u003e\n\u003cp\u003ebuildkit 0.28.0\u003c/p\u003e\n\u003cp\u003eWelcome to the v0.28.0 release of buildkit!\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/moby/buildkit/issues\"\u003ehttps://github.com/moby/buildkit/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eJonathan A. Sternberg\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eAmr Mahdi\u003c/li\u003e\n\u003cli\u003eDan Duvall\u003c/li\u003e\n\u003cli\u003eDavid Karlsson\u003c/li\u003e\n\u003cli\u003eJonas Geiler\u003c/li\u003e\n\u003cli\u003eKevin L.\u003c/li\u003e\n\u003cli\u003ersteube\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/45b038cd0b2ec2d34013ce0f085522276f7ee0d8\"\u003e\u003ccode\u003e45b038c\u003c/code\u003e\u003c/a\u003e git: normalize and validate subdir paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/f5462c216098af766f97ea4cb328e65c6d8f7256\"\u003e\u003ccode\u003ef5462c2\u003c/code\u003e\u003c/a\u003e git: harden ref arg handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/71577a5da7a2b3ab75a90c2cfedfda0c27d1ef40\"\u003e\u003ccode\u003e71577a5\u003c/code\u003e\u003c/a\u003e source: extract SafeFileName into shared pathutil package\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/df4378316f3b000403d097551a8139a700bd823d\"\u003e\u003ccode\u003edf43783\u003c/code\u003e\u003c/a\u003e source/http: use os.Root for saved file operations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/9ce6f62aca0653657047ee613cdef22f38b31244\"\u003e\u003ccode\u003e9ce6f62\u003c/code\u003e\u003c/a\u003e source/http: sanitize downloaded filenames\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/099cf80f5ebc935c48d2925499bffe703a54cff4\"\u003e\u003ccode\u003e099cf80\u003c/code\u003e\u003c/a\u003e executor: validate container IDs centrally\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/2642113bbc9d969d223c37aaabca4b50613fddf9\"\u003e\u003ccode\u003e2642113\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/moby/buildkit/issues/6610\"\u003e#6610\u003c/a\u003e from thaJeztah/0.28_backport_bump_patternmatcher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/802da78332d9f2c6c9d856c1648ab52c701076fa\"\u003e\u003ccode\u003e802da78\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/patternmatcher v0.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/5245d869d85d9c98f986b600584c332a3b001986\"\u003e\u003ccode\u003e5245d86\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/moby/buildkit/issues/6551\"\u003e#6551\u003c/a\u003e from tonistiigi/v0.28-cherry-picks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/90ee5deef6c6efcb82358eb48d76235191196db1\"\u003e\u003ccode\u003e90ee5de\u003c/code\u003e\u003c/a\u003e vendor: update x/net to v0.51.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/moby/buildkit/compare/v0.12.5...v0.28.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/russellhaering/gosaml2` from 0.9.1 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/russellhaering/gosaml2/releases\"\u003egithub.com/russellhaering/gosaml2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject unsigned SAML \u003ccode\u003eLogoutRequest\u003c/code\u003e when signature validation is enabled. Previously, \u003ccode\u003eValidateEncodedLogoutRequestPOST\u003c/code\u003e silently accepted unsigned requests even when \u003ccode\u003eSkipSignatureValidation\u003c/code\u003e was \u003ccode\u003efalse\u003c/code\u003e. (GHSA-pcgw-qcv5-h8ch)\u003c/li\u003e\n\u003cli\u003eSecurity hardening: CBC bounds check to prevent panics from crafted ciphertext, replaced \u003ccode\u003epanic()\u003c/code\u003e calls with error returns, and assertion signatures within a signed Response envelope are now verified when present (previously they were skipped entirely, which could allow XML wrapping attacks)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd oss-fuzz integration\u003c/li\u003e\n\u003cli\u003eBump minimum Go version to 1.25\u003c/li\u003e\n\u003cli\u003eUpdate dependencies: goxmldsig v1.6.0, etree v1.6.0, testify v1.11.1\u003c/li\u003e\n\u003cli\u003eBump all GitHub Actions to latest versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/gosaml2/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/russellhaering/gosaml2/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport encryption and signing keys that implement crypto.Signer by \u003ca href=\"https://github.com/nicksnyder\"\u003e\u003ccode\u003e@​nicksnyder\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/131\"\u003erussellhaering/gosaml2#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic when the encrypted data has wrong size for CBC by \u003ca href=\"https://github.com/fformica\"\u003e\u003ccode\u003e@​fformica\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/195\"\u003erussellhaering/gosaml2#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity hardening by \u003ca href=\"https://github.com/ahacker1-securesaml\"\u003e\u003ccode\u003e@​ahacker1-securesaml\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency and CI updates\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nicksnyder\"\u003e\u003ccode\u003e@​nicksnyder\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/131\"\u003erussellhaering/gosaml2#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fformica\"\u003e\u003ccode\u003e@​fformica\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/195\"\u003erussellhaering/gosaml2#195\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/gosaml2/compare/v0.9.1...v0.10.0\"\u003ehttps://github.com/russellhaering/gosaml2/compare/v0.9.1...v0.10.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/636e7dda202a4d669644e72404a82616ffcbe004\"\u003e\u003ccode\u003e636e7dd\u003c/code\u003e\u003c/a\u003e Bump all GitHub Actions to latest versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/1e9cc447527b4031ffd8e7a2cb64b99289ffde29\"\u003e\u003ccode\u003e1e9cc44\u003c/code\u003e\u003c/a\u003e Bump minimum Go version to 1.25 and update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/7159bbee574ae311e3c995df506c2e61cf2c232a\"\u003e\u003ccode\u003e7159bbe\u003c/code\u003e\u003c/a\u003e Reject unsigned LogoutRequest when signature validation is enabled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/4ddcc822c3c2bb6676221cbf2259e141b2f2e315\"\u003e\u003ccode\u003e4ddcc82\u003c/code\u003e\u003c/a\u003e Security hardening: CBC bounds check, panic removal, assertion signature veri...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/d57d10562c0a9243d5a6d86fff5067d34c7f045f\"\u003e\u003ccode\u003ed57d105\u003c/code\u003e\u003c/a\u003e Add oss-fuzz integration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/e8596e7457e1657e90dd2fb18da03e03fc4ae1a4\"\u003e\u003ccode\u003ee8596e7\u003c/code\u003e\u003c/a\u003e Fix tests broken by expired IDP test certificate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/5d20d420e18a8e08e870d145be26bc8110073d90\"\u003e\u003ccode\u003e5d20d42\u003c/code\u003e\u003c/a\u003e Bump github.com/beevik/etree from 1.5.0 to 1.5.1 (\u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/issues/212\"\u003e#212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/115aa21abac634a1c9b68c2a30505b60b148f8cc\"\u003e\u003ccode\u003e115aa21\u003c/code\u003e\u003c/a\u003e Bump github/codeql-action from 3.28.12 to 3.28.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/cdd66bccd151b682fe99fec82a1c8c4ecdba8ff0\"\u003e\u003ccode\u003ecdd66bc\u003c/code\u003e\u003c/a\u003e Tidy dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/3418f9ae09063ff8df0ce1bd93f24e538e614def\"\u003e\u003ccode\u003e3418f9a\u003c/code\u003e\u003c/a\u003e Avoid panic when the encrypted data has wrong size for CBC\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/russellhaering/gosaml2/compare/v0.9.1...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/russellhaering/goxmldsig` from 1.4.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/russellhaering/goxmldsig/releases\"\u003egithub.com/russellhaering/goxmldsig's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fix possible signature validation bypass caused by loop variable capture in \u003ccode\u003evalidateSignature\u003c/code\u003e (GHSA-479m-364c-43vc)\u003c/li\u003e\n\u003cli\u003eBump minimum Go version to 1.23\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003egithub.com/beevik/etree\u003c/code\u003e to v1.6.0\u003c/li\u003e\n\u003cli\u003eAdd fuzz tests for XML signature validation and canonicalization\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/goxmldsig/compare/v1.5.0...v1.6.0\"\u003ehttps://github.com/russellhaering/goxmldsig/compare/v1.5.0...v1.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump dependencies\u003c/li\u003e\n\u003cli\u003eUpdate GitHub workflows\u003c/li\u003e\n\u003cli\u003eSecurity hardening by \u003ca href=\"https://github.com/ahacker1-securesaml\"\u003e\u003ccode\u003e@​ahacker1-securesaml\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/goxmldsig/compare/v1.4.0...v1.5.0\"\u003ehttps://github.com/russellhaering/goxmldsig/compare/v1.4.0...v1.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/878c8c615feb628064040115d00e105a137fcfa7\"\u003e\u003ccode\u003e878c8c6\u003c/code\u003e\u003c/a\u003e Apply go fix ./...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/db3d1e31f7535d7f5debb49851b9e9a2ff08b936\"\u003e\u003ccode\u003edb3d1e3\u003c/code\u003e\u003c/a\u003e Fix loop variable capture bug in validateSignature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/4f576b89acf01f68983ca5cb9dcebd0b460234bc\"\u003e\u003ccode\u003e4f576b8\u003c/code\u003e\u003c/a\u003e Bump dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/79c29ee3ed2da54553a4132b372ced83185fcf12\"\u003e\u003ccode\u003e79c29ee\u003c/code\u003e\u003c/a\u003e Rename FuzzValidate to FuzzValidateXML to avoid name collision\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/ac7bf745b9fd3d92460ad9be3459a97b0e3bf89f\"\u003e\u003ccode\u003eac7bf74\u003c/code\u003e\u003c/a\u003e Add fuzz tests for XML signature validation and canonicalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/a5805dfad93fc67a2106a1dc6d881df83769e3eb\"\u003e\u003ccode\u003ea5805df\u003c/code\u003e\u003c/a\u003e Bump github/codeql-action from 2.13.4 to 3.28.17 (\u003ca href=\"https://redirect.github.com/russellhaering/goxmldsig/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/7dac9ec3b2a1a336d73ff091fba4131d186dfec6\"\u003e\u003ccode\u003e7dac9ec\u003c/code\u003e\u003c/a\u003e Update GitHub Workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/1bf54ca740682fac1149814344c24c722fde8238\"\u003e\u003ccode\u003e1bf54ca\u003c/code\u003e\u003c/a\u003e Bump dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/e1c8a5b89d1d03089aa1a0ec546b33aaf80ee02f\"\u003e\u003ccode\u003ee1c8a5b\u003c/code\u003e\u003c/a\u003e Refactor to help eliminate potential vulnerabilities:\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/2ac5490a2441a3484e030c5cfeb02ce62886c01a\"\u003e\u003ccode\u003e2ac5490\u003c/code\u003e\u003c/a\u003e Refactor .verifyCertificate to obtain the certificate from an identifier from...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/russellhaering/goxmldsig/compare/v1.4.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/slack-go/slack` from 0.10.1 to 0.23.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/slack-go/slack/releases\"\u003egithub.com/slack-go/slack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.23.1\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nEven though this is a [security] patch release, if you were using an empty secret, this is a breaking change due to a change in behaviour. That's on purpose, to ensure you fix your approach so that there are no footguns.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eNewSecretsVerifier\u003c/code\u003e now rejects empty signing secrets to avoid accepting forged request\nsignatures when applications are misconfigured.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/slack-go/slack/compare/v0.23.0...v0.23.1\"\u003ehttps://github.com/slack-go/slack/compare/v0.23.0...v0.23.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.0\u003c/h2\u003e\n\u003ch2\u003eAdded\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(socketmode): expose socketmode handler \u003ccode\u003edispatcher\u003c/code\u003e method by \u003ca href=\"https://github.com/nlopes\"\u003e\u003ccode\u003e@​nlopes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1550\"\u003eslack-go/slack#1550\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(block): add card and carousel blocks by \u003ca href=\"https://github.com/nlopes\"\u003e\u003ccode\u003e@​nlopes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1551\"\u003eslack-go/slack#1551\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(assistant): add username and icon to status update by \u003ca href=\"https://github.com/charleenwang\"\u003e\u003ccode\u003e@​charleenwang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1553\"\u003eslack-go/slack#1553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(block): add alert block by \u003ca href=\"https://github.com/nlopes\"\u003e\u003ccode\u003e@​nlopes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1552\"\u003eslack-go/slack#1552\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charleenwang\"\u003e\u003ccode\u003e@​charleenwang\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1553\"\u003eslack-go/slack#1553\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/slack-go/slack/compare/v0.22.0...v0.23.0\"\u003ehttps://github.com/slack-go/slack/compare/v0.22.0...v0.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.22.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eOAuth PKCE support\u003c/strong\u003e - \u003ccode\u003eOAuthOptionCodeVerifier\u003c/code\u003e option for \u003ccode\u003eGetOAuthV2Response\u003c/code\u003e, plus \u003ccode\u003eGenerateCodeVerifier()\u003c/code\u003e and \u003ccode\u003eGenerateCodeChallenge()\u003c/code\u003e helpers (RFC 7636). \u003ccode\u003eclient_secret\u003c/code\u003e is now conditionally omitted when empty in both \u003ccode\u003eGetOAuthV2ResponseContext\u003c/code\u003e and \u003ccode\u003eRefreshOAuthV2TokenContext\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eManifest scope fields\u003c/strong\u003e - \u003ccode\u003eBotOptional\u003c/code\u003e and \u003ccode\u003eUserOptional\u003c/code\u003e on \u003ccode\u003eOAuthScopes\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRich text styles\u003c/strong\u003e - \u003ccode\u003eUnderline\u003c/code\u003e, \u003ccode\u003eHighlight\u003c/code\u003e, \u003ccode\u003eClientHighlight\u003c/code\u003e, and \u003ccode\u003eUnlink\u003c/code\u003e on \u003ccode\u003eRichTextSectionTextStyle\u003c/code\u003e. \u003ccode\u003eStyle\u003c/code\u003e field on \u003ccode\u003eRichTextSectionUserGroupElement\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAssistant search context\u003c/strong\u003e - \u003ccode\u003eSort\u003c/code\u003e, \u003ccode\u003eSortDir\u003c/code\u003e, \u003ccode\u003eBefore\u003c/code\u003e, \u003ccode\u003eAfter\u003c/code\u003e, \u003ccode\u003eHighlight\u003c/code\u003e, \u003ccode\u003eIncludeContextMessages\u003c/code\u003e, \u003ccode\u003eIncludeDeletedUsers\u003c/code\u003e, \u003ccode\u003eIncludeMessageBlocks\u003c/code\u003e, \u003ccode\u003eIncludeArchivedChannels\u003c/code\u003e, \u003ccode\u003eDisableSemanticSearch\u003c/code\u003e, \u003ccode\u003eModifiers\u003c/code\u003e, \u003ccode\u003eTermClauses\u003c/code\u003e parameters and new response types (\u003ccode\u003eAssistantSearchContextFile\u003c/code\u003e, \u003ccode\u003eAssistantSearchContextChannel\u003c/code\u003e, \u003ccode\u003eAssistantSearchContextMessageContext\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esocketmode: malformed JSON no longer forces reconnect\u003c/strong\u003e - \u003ccode\u003ejson.SyntaxError\u003c/code\u003e and \u003ccode\u003ejson.UnmarshalTypeError\u003c/code\u003e now emit an \u003ccode\u003eEventTypeIncomingError\u003c/code\u003e event and continue reading instead of killing the WebSocket connection.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esocketmode: \u003ccode\u003edebug_reconnects\u003c/code\u003e query param applied correctly\u003c/strong\u003e - the parameter was silently discarded due to a missing \u003ccode\u003eurl.RawQuery\u003c/code\u003e assignment.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChannelTypes\u003c/code\u003e and \u003ccode\u003eContentTypes\u003c/code\u003e now send comma-separated values instead of repeated form keys, matching the convention used by every other method in the library.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eassistant:write\u003c/code\u003e scope marked as deprecated in favour of \u003ccode\u003echat:write\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ccode\u003ev0.21.1...v0.22.0\u003c/code\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.1\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eMessageEvent\u003c/code\u003e channel type helpers\u003c/strong\u003e — New \u003ccode\u003eChannelTypeChannel\u003c/code\u003e, \u003ccode\u003eChannelTypeGroup\u003c/code\u003e,\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/slack-go/slack/blob/master/CHANGELOG.md\"\u003egithub.com/slack-go/slack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.23.1] - 2026-05-10\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eNewSecretsVerifier\u003c/code\u003e now rejects empty signing secrets to avoid accepting forged request\nsignatures when applications are misconfigured.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.23.0] - 2026-04-22\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBlock Kit: \u003ccode\u003eCardBlock\u003c/code\u003e and \u003ccode\u003eCarouselBlock\u003c/code\u003e\u003c/strong\u003e — Support for two of the new\nagent-UI blocks announced in the\n\u003ca href=\"https://docs.slack.dev/changelog/2026/04/16/block-kit-new-blocks\"\u003eApril 16 Slack changelog\u003c/a\u003e.\n\u003ccode\u003eCardBlock\u003c/code\u003e is constructed via \u003ccode\u003eNewCardBlock\u003c/code\u003e with a functional-options\npattern and fluent \u003ccode\u003eWith*\u003c/code\u003e builders (\u003ccode\u003eWithTitle\u003c/code\u003e, \u003ccode\u003eWithSubtitle\u003c/code\u003e, \u003ccode\u003eWithBody\u003c/code\u003e,\n\u003ccode\u003eWithIcon\u003c/code\u003e, \u003ccode\u003eWithHeroImage\u003c/code\u003e, \u003ccode\u003eWithActions\u003c/code\u003e). \u003ccode\u003eCarouselBlock\u003c/code\u003e is constructed\nvia \u003ccode\u003eNewCarouselBlock\u003c/code\u003e with a variadic \u003ccode\u003e*CardBlock\u003c/code\u003e list plus \u003ccode\u003eWithBlockID\u003c/code\u003e\nand \u003ccode\u003eAddCard\u003c/code\u003e helpers. Both blocks wire into \u003ccode\u003eBlocks.UnmarshalJSON\u003c/code\u003e for\nround-trip fidelity, and reuse existing \u003ccode\u003eImageBlockElement\u003c/code\u003e /\n\u003ccode\u003eButtonBlockElement\u003c/code\u003e / \u003ccode\u003eBlockElements\u003c/code\u003e types rather than introducing new\ncomposition objects.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBlock Kit: \u003ccode\u003eAlertBlock\u003c/code\u003e\u003c/strong\u003e — Support for the third of the new agent-UI\nblocks from the\n\u003ca href=\"https://docs.slack.dev/changelog/2026/04/16/block-kit-new-blocks\"\u003eApril 16 Slack changelog\u003c/a\u003e.\n\u003ccode\u003eAlertBlock\u003c/code\u003e is constructed via \u003ccode\u003eNewAlertBlock\u003c/code\u003e with a \u003ccode\u003e*TextBlockObject\u003c/code\u003e\nbody and a functional-options pattern. Severity is set via\n\u003ccode\u003eAlertBlockOptionLevel\u003c/code\u003e (\u003ccode\u003eAlertLevelDefault\u003c/code\u003e, \u003ccode\u003eAlertLevelInfo\u003c/code\u003e,\n\u003ccode\u003eAlertLevelWarning\u003c/code\u003e, \u003ccode\u003eAlertLevelError\u003c/code\u003e, \u003ccode\u003eAlertLevelSuccess\u003c/code\u003e) and the block\nID via \u003ccode\u003eAlertBlockOptionBlockID\u003c/code\u003e. Wires into \u003ccode\u003eBlocks.UnmarshalJSON\u003c/code\u003e for\nround-trip fidelity. Must be delivered via the streaming chunks API —\n\u003ccode\u003echat.postMessage\u003c/code\u003e rejects it as an unsupported block type.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eStreaming-message chunks API\u003c/strong\u003e — \u003ccode\u003echat.startStream\u003c/code\u003e / \u003ccode\u003echat.appendStream\u003c/code\u003e /\n\u003ccode\u003echat.stopStream\u003c/code\u003e now accept a \u003ccode\u003echunks\u003c/code\u003e parameter. Added \u003ccode\u003eMsgOptionChunks\u003c/code\u003e\nalong with a \u003ccode\u003eStreamChunk\u003c/code\u003e interface and four chunk types:\n\u003ccode\u003eMarkdownTextChunk\u003c/code\u003e, \u003ccode\u003eTaskUpdateChunk\u003c/code\u003e, \u003ccode\u003ePlanUpdateChunk\u003c/code\u003e, and \u003ccode\u003eBlocksChunk\u003c/code\u003e\n(each with a \u003ccode\u003eNew*Chunk\u003c/code\u003e constructor). This is the supported transport for\nstreaming Block Kit content and the new agent-UI blocks in particular\n(which \u003ccode\u003echat.postMessage\u003c/code\u003e rejects as \u003ccode\u003eUnsupported block type\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eMsgOptionTaskDisplayMode\u003c/code\u003e\u003c/strong\u003e — New option for \u003ccode\u003echat.startStream\u003c/code\u003e controlling\nwhether task chunks render as a sequential timeline or a grouped plan.\nAccepts \u003ccode\u003eTaskDisplayModeTimeline\u003c/code\u003e or \u003ccode\u003eTaskDisplayModePlan\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eUsername\u003c/code\u003e, \u003ccode\u003eIconURL\u003c/code\u003e, and \u003ccode\u003eIconEmoji\u003c/code\u003e fields to\n\u003ccode\u003eAssistantThreadsSetStatusParameters\u003c/code\u003e, forwarded by\n\u003ccode\u003eSetAssistantThreadsStatusContext\u003c/code\u003e, matching the new optional parameters on\n\u003ca href=\"https://docs.slack.dev/reference/methods/assistant.threads.setStatus\"\u003e\u003ccode\u003eassistant.threads.setStatus\u003c/code\u003e\u003c/a\u003e\nfor customising the status-update presentation.\u003c/li\u003e\n\u003cli\u003eExposed \u003ccode\u003eSocketmodeHandler.DispatchEvent\u003c/code\u003e (previously the unexported\n\u003ccode\u003edispatcher\u003c/code\u003e), enabling integration tests to exercise registered handlers\nwithout a live WebSocket connection. The unexported \u003ccode\u003edispatcher\u003c/code\u003e is kept as\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/34ad5c052e446f58505ae8d81a2a72821de107cc\"\u003e\u003ccode\u003e34ad5c0\u003c/code\u003e\u003c/a\u003e security: reject empty signing secret for NewSecretsVerifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/c6edc2762f59b0fcd2af7f2d8eab36e2f29bad7d\"\u003e\u003ccode\u003ec6edc27\u003c/code\u003e\u003c/a\u003e chore: bump go to 1.25.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/35d8f31a076f73db88bf08304a8418846ed7b865\"\u003e\u003ccode\u003e35d8f31\u003c/code\u003e\u003c/a\u003e chore: bump to v0.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/ae59061d9e69253ce76fa676a2a91db238d363cf\"\u003e\u003ccode\u003eae59061\u003c/code\u003e\u003c/a\u003e feat(block): add alert block (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1552\"\u003e#1552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/2df5cfa0b974d57fc8077ecd030be22e42a2e4a1\"\u003e\u003ccode\u003e2df5cfa\u003c/code\u003e\u003c/a\u003e feat(assistant): add username and icon to status update (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1553\"\u003e#1553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/e3c0e8b15630749da93cd18168a26e78a74fecd0\"\u003e\u003ccode\u003ee3c0e8b\u003c/code\u003e\u003c/a\u003e feat(block): add card and carousel blocks (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1551\"\u003e#1551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/4c472cd10a45bd81ef26db9510a317a674293c78\"\u003e\u003ccode\u003e4c472cd\u003c/code\u003e\u003c/a\u003e feat(socketmode): expose socketmode handler \u003ccode\u003edispatcher\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1550\"\u003e#1550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/f482b199d4e33975c13e65e075bcf87173ad902f\"\u003e\u003ccode\u003ef482b19\u003c/code\u003e\u003c/a\u003e chore: v0.22.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/3a5db9ddb81e7c9e5379efa510ba826b1e5d935c\"\u003e\u003ccode\u003e3a5db9d\u003c/code\u003e\u003c/a\u003e chore: fix staticcheck errors (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1548\"\u003e#1548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/19e0416c15851aa3f28d41e2b92dbb2fb541ad96\"\u003e\u003ccode\u003e19e0416\u003c/code\u003e\u003c/a\u003e ci: add staticcheck\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/slack-go/slack/compare/v0.10.1...v0.23.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp` from 1.27.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.27.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.27.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.25.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.24.0 to 0.50.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnos...\n\n_Description has been truncated_\n\n---\n\n🔄 This PR performs a comprehensive dependency update across 5 directories, bumping 28 Go modules to their latest versions including major updates to security-critical packages like go-git, gRPC, and OpenTelemetry components.\n\n\u003cdetails\u003e\n\u003csummary\u003e🔍 \u003cstrong\u003eDetailed Analysis\u003c/strong\u003e\u003c/summary\u003e\n\n### Key Changes\n- **Go Version Updates**: Upgraded Go toolchain versions across modules (1.21→1.25, 1.22→1.24.0, etc.)\n- **Security Updates**: Critical security fixes in go-git (5.11.0→5.19.1), gosaml2 (0.9.1→0.11.0), and buildkit (0.12.5→0.28.1)\n- **Core Dependencies**: Major version bumps for gRPC (1.63.2→1.79.3), OpenTelemetry SDK (1.25.0→1.43.0), and Slack SDK (0.10.1→0.23.1)\n- **Infrastructure Libraries**: Updates to crypto, oauth2, Redis client, and PostgreSQL driver packages\n\n### Technical Implementation\n```mermaid\nflowchart TD\n    A[Dependabot Scan] --\u003e B[5 Directory Analysis]\n    B --\u003e C[progress-bot/]\n    B --\u003e D[lib/]\n    B --\u003e E[lib/managedservicesplatform/]\n    B --\u003e F[monitoring/]\n    B --\u003e G[Root Directory]\n    \n    C --\u003e H[4 Updates: Slack, crypto, oauth2, gRPC]\n    D --\u003e I[4 Updates: crypto, oauth2, Redis, gRPC]\n    E --\u003e J[6 Updates: OpenTelemetry, oauth2, pgx, Redis, edwards25519, gRPC]\n    F --\u003e K[3 Updates: crypto, logrus, retryablehttp]\n    G --\u003e L[8 Major Updates: distribution, go-git, buildkit, gosaml2, etc.]\n    \n    H --\u003e M[Security \u0026 Compatibility Improvements]\n    I --\u003e M\n    J --\u003e M\n    K --\u003e M\n    L --\u003e M\n```\n\n### Impact\n- **Security Enhancement**: Addresses multiple CVEs and security vulnerabilities in go-git, buildkit, and SAML libraries\n- **Performance Improvements**: Updated OpenTelemetry SDK includes performance optimizations and new features like W3C Trace Context Level 2 support\n- **Compatibility**: Maintains backward compatibility while providing access to latest features and bug fixes across the dependency tree\n- **Maintenance**: Reduces technical debt by keeping dependencies current and aligned with latest Go ecosystem standards\n\n\u003c/details\u003e\n\n_Created with [Palmier](https://www.palmier.io)_","html_url":"https://github.com/GlacierEQ/sourcegraph-public-snapshot/pull/38","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GlacierEQ%2Fsourcegraph-public-snapshot/issues/38","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38/packages"},{"uuid":"4514285821","node_id":"PR_kwDORfzOlc7e59ya","number":22,"state":"closed","title":"chore(deps): bump the gomod-minor-patch group with 5 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T05:13:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-25T04:32:56.000Z","updated_at":"2026-05-25T05:13:57.000Z","time_to_close":2459,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"gomod-minor-patch","update_count":5,"packages":[{"name":"github.com/caarlos0/env/v11","old_version":"11.3.1","new_version":"11.4.1","repository_url":"https://github.com/caarlos0/env"},{"name":"github.com/fsnotify/fsnotify","old_version":"1.9.0","new_version":"1.10.1","repository_url":"https://github.com/fsnotify/fsnotify"},{"name":"github.com/jackc/pgx/v5","old_version":"5.7.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/mark3labs/mcp-go","old_version":"0.30.0","new_version":"0.54.0","repository_url":"https://github.com/mark3labs/mcp-go"},{"name":"github.com/stretchr/testify","old_version":"1.10.0","new_version":"1.11.1","repository_url":"https://github.com/stretchr/testify"}],"path":null,"ecosystem":"go"},"body":"Bumps the gomod-minor-patch group with 5 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/caarlos0/env/v11](https://github.com/caarlos0/env) | `11.3.1` | `11.4.1` |\n| [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) | `1.9.0` | `1.10.1` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.7.4` | `5.9.2` |\n| [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go) | `0.30.0` | `0.54.0` |\n| [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.10.0` | `1.11.1` |\n\nUpdates `github.com/caarlos0/env/v11` from 11.3.1 to 11.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/caarlos0/env/releases\"\u003egithub.com/caarlos0/env/v11's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.4.1\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6daeb06ac7e3c9532a7eaa5768d45917393b7480: fix: use Key instead of OwnKey in rawEnvVars to properly reference existing defaults in complex structs (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/412\"\u003e#412\u003c/a\u003e) (\u003ca href=\"https://github.com/AndrewChubatiuk\"\u003e\u003ccode\u003e@​AndrewChubatiuk\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e1ff55e6c9733833ce75d62b345916a407dbe4158: docs: adaptive starchart (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/416\"\u003e#416\u003c/a\u003e) (\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecf4a9682420b025e44b4773fd7ee0be48bb68b2f: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/411\"\u003e#411\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e33faf6f333c2c3dacef2991825f8e03960a2c0cb: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/417\"\u003e#417\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e0cb635b62488f4d310809a82a8832cedc9aa94eb: ci(deps): bump the actions group with 6 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/415\"\u003e#415\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea72d89a8930fc800372a6a338a1acf33e5cc3a56: ci: update release config (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003cem\u003eReleased with \u003ca href=\"https://goreleaser.com/pro\"\u003eGoReleaser Pro\u003c/a\u003e!\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev11.4.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2be9960e75cc5f053dcb89c64e43de19765fd154: feat: option to set defaults for zero values only (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/325\"\u003e#325\u003c/a\u003e) (\u003ca href=\"https://github.com/dnovikoff\"\u003e\u003ccode\u003e@​dnovikoff\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed3505f14213c309f8ca3b0b1e468284749456dde: fix: all new lint issues, update golangci-lint (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaaa45113e5eb50e2a243959041452bbab40ae3cc: fix: lint issues (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8917d78b4247be8a3f555ccee03305c7763471e4: docs: clarify example a bit (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7b10cf56e20fe41042b7a7148555990b64b85f95: ci(deps): bump github/codeql-action in the actions group (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/400\"\u003e#400\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ec98ad844e1e479526ef6b4069e0b0f1ced5c953d: ci(deps): bump github/codeql-action in the actions group (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/410\"\u003e#410\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e2ca9b08cafe0bc271636c15fa34d156733631123: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/393\"\u003e#393\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ecd5c220dbceb1d1353263a5d6fe3f6816aa1217f: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/396\"\u003e#396\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4d25a4659f428119ce5eaf3ea579176b9161c6e0: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/402\"\u003e#402\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ec660cc91db76b02de72e8ab7e9ad348edef3f891: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/403\"\u003e#403\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3a3ea05453bd16685c807ba089b20a82033a02f1: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/405\"\u003e#405\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed28373e3a047e93ad21676ea9878e5dd1ca157f7: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/408\"\u003e#408\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7b5005693b54a0014e4d3a2ee6192c7bce336af7: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/397\"\u003e#397\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e6b2db30d1977183eb8a9732c01ff4e6788565a6e: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/399\"\u003e#399\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef33230e8e7e0377c9cdb65d43940db1666061766: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/404\"\u003e#404\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e2dc7aec137983c972c29779e951011ddb496fc8b: ci(sec): add codeql, govulncheck, grype (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e82412ce6900082095e9e4b66f5024c0e67ff3fb8: ci: build perms (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e02495c42107d77c9365aef6a031b7089f734af3b: ci: build perms (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee5b3c2c879e43e458e060e2a61fb525e161b7715: ci: lint workflow perms (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e6690dfb3d314535320f3a30365c52f6fb40c8992: ci: pin github actions versions (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e548a7a66c9d5504d8f9c0488ee47a05ae453c7e2: ci: update dependabot (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/a72d89a8930fc800372a6a338a1acf33e5cc3a56\"\u003e\u003ccode\u003ea72d89a\u003c/code\u003e\u003c/a\u003e ci: update release config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/6daeb06ac7e3c9532a7eaa5768d45917393b7480\"\u003e\u003ccode\u003e6daeb06\u003c/code\u003e\u003c/a\u003e fix: use Key instead of OwnKey in rawEnvVars to properly reference existing d...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/33faf6f333c2c3dacef2991825f8e03960a2c0cb\"\u003e\u003ccode\u003e33faf6f\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/1ff55e6c9733833ce75d62b345916a407dbe4158\"\u003e\u003ccode\u003e1ff55e6\u003c/code\u003e\u003c/a\u003e docs: adaptive starchart (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/0cb635b62488f4d310809a82a8832cedc9aa94eb\"\u003e\u003ccode\u003e0cb635b\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 6 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/415\"\u003e#415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/cf4a9682420b025e44b4773fd7ee0be48bb68b2f\"\u003e\u003ccode\u003ecf4a968\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/411\"\u003e#411\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/aaa45113e5eb50e2a243959041452bbab40ae3cc\"\u003e\u003ccode\u003eaaa4511\u003c/code\u003e\u003c/a\u003e fix: lint issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/4fe3f702002c48f73b892f12d128c215aa7731ee\"\u003e\u003ccode\u003e4fe3f70\u003c/code\u003e\u003c/a\u003e chore: dependabot update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/c98ad844e1e479526ef6b4069e0b0f1ced5c953d\"\u003e\u003ccode\u003ec98ad84\u003c/code\u003e\u003c/a\u003e ci(deps): bump github/codeql-action in the actions group (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/410\"\u003e#410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/d28373e3a047e93ad21676ea9878e5dd1ca157f7\"\u003e\u003ccode\u003ed28373e\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/408\"\u003e#408\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/caarlos0/env/compare/v11.3.1...v11.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fsnotify/fsnotify` from 1.9.0 to 1.10.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/releases\"\u003egithub.com/fsnotify/fsnotify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a bad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak when recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix a race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md\"\u003egithub.com/fsnotify/fsnotify's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.10.1 2026-05-04\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0 2026-04-30\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a\nbad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak\nwhen recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix\na race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/76b01a6e8f502187fecedea8b025e79e5a86085c\"\u003e\u003ccode\u003e76b01a6\u003c/code\u003e\u003c/a\u003e Release 1.10.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/fec150b807510e54e5b25def4b6e5fb001b4898c\"\u003e\u003ccode\u003efec150b\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/162b4216ab8f92ecd26425530bee198972c9b3cb\"\u003e\u003ccode\u003e162b421\u003c/code\u003e\u003c/a\u003e inotify, windows: don't rename sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/224257f23b2f3a96509b316c5cead71dd4a9099a\"\u003e\u003ccode\u003e224257f\u003c/code\u003e\u003c/a\u003e inotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/e0c956c0ccaf51562fee30ef5c055c74e6ae2104\"\u003e\u003ccode\u003ee0c956c\u003c/code\u003e\u003c/a\u003e windows: document directory Write events and stabilize tests (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/8d01d7b9cbe0199e4a1e60fbd965fb05dbb42123\"\u003e\u003ccode\u003e8d01d7b\u003c/code\u003e\u003c/a\u003e Release 1.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/602284e4a8cadd488d7a5fa07c48462dfac25108\"\u003e\u003ccode\u003e602284e\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/7f03e59f9659552d8a084e03024cb9b983748ed7\"\u003e\u003ccode\u003e7f03e59\u003c/code\u003e\u003c/a\u003e kqueue: skip ENOENT entries in watchDirectoryFiles (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/dab9dde2fc9ba4d0c1076318f81cabcc8fdb2ec9\"\u003e\u003ccode\u003edab9dde\u003c/code\u003e\u003c/a\u003e windows: lock watch field updates against concurrent WatchList (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/eadf267ce152b5e62d48cc2c13bb08bd4062b6c7\"\u003e\u003ccode\u003eeadf267\u003c/code\u003e\u003c/a\u003e kqueue: drop watches directly in Close() instead of going through remove() (#...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fsnotify/fsnotify/compare/v1.9.0...v1.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/mark3labs/mcp-go` from 0.30.0 to 0.54.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mark3labs/mcp-go/releases\"\u003egithub.com/mark3labs/mcp-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v0.54.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): handle resources/subscribe and resources/unsubscribe (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/865\"\u003e#865\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/873\"\u003emark3labs/mcp-go#873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(oauth): use LATEST_PROTOCOL_VERSION in metadata discovery (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/868\"\u003e#868\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/874\"\u003emark3labs/mcp-go#874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(oauth): don't hold metadataMu across HTTP discovery (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/871\"\u003e#871\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/875\"\u003emark3labs/mcp-go#875\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(mcp): add 2025-11-25 sampling-with-tools and capability sub-fields (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/867\"\u003e#867\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/876\"\u003emark3labs/mcp-go#876\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use MCP method constants by \u003ca href=\"https://github.com/nanookclaw\"\u003e\u003ccode\u003e@​nanookclaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/878\"\u003emark3labs/mcp-go#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add missing godoc comments by \u003ca href=\"https://github.com/aqilaziz\"\u003e\u003ccode\u003e@​aqilaziz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/877\"\u003emark3labs/mcp-go#877\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to SSE message handler and stdio tool call worker by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/882\"\u003emark3labs/mcp-go#882\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to task goroutines, fix cleanup goroutine leak by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/880\"\u003emark3labs/mcp-go#880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add OpenTelemetry tracing hooks to server and client by \u003ca href=\"https://github.com/QuentinBisson\"\u003e\u003ccode\u003e@​QuentinBisson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/856\"\u003emark3labs/mcp-go#856\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to session hook goroutines by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/883\"\u003emark3labs/mcp-go#883\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(mcp): add BaseMetadata.title, Icon.theme, Resource.size (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/870\"\u003e#870\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/885\"\u003emark3labs/mcp-go#885\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nanookclaw\"\u003e\u003ccode\u003e@​nanookclaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/878\"\u003emark3labs/mcp-go#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aqilaziz\"\u003e\u003ccode\u003e@​aqilaziz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/877\"\u003emark3labs/mcp-go#877\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.53.0...v0.54.0\"\u003ehttps://github.com/mark3labs/mcp-go/compare/v0.53.0...v0.54.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.53.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(server): add WithStrictInputSchemaDefault by \u003ca href=\"https://github.com/QuentinBisson\"\u003e\u003ccode\u003e@​QuentinBisson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/853\"\u003emark3labs/mcp-go#853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(server): add CloseSessions and prevent double-close panic on SSE sessions by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/852\"\u003emark3labs/mcp-go#852\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(transport): suppress closed-pipe shutdown noise by \u003ca href=\"https://github.com/Gujiassh\"\u003e\u003ccode\u003e@​Gujiassh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/863\"\u003emark3labs/mcp-go#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to transport goroutines by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/861\"\u003emark3labs/mcp-go#861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: ToolInputSchema inherits MarshalJSON (fixes \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/694\"\u003e#694\u003c/a\u003e) by \u003ca href=\"https://github.com/tamish-max\"\u003e\u003ccode\u003e@​tamish-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/858\"\u003emark3labs/mcp-go#858\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ewe should use pointers on returns for ListPrompts and ListResources by \u003ca href=\"https://github.com/Patryk-Stefanski\"\u003e\u003ccode\u003e@​Patryk-Stefanski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/855\"\u003emark3labs/mcp-go#855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mcp): allow _meta on paginated requests by \u003ca href=\"https://github.com/curbol\"\u003e\u003ccode\u003e@​curbol\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/854\"\u003emark3labs/mcp-go#854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(server): use explicit struct literal in ListTools by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/864\"\u003emark3labs/mcp-go#864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/QuentinBisson\"\u003e\u003ccode\u003e@​QuentinBisson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/853\"\u003emark3labs/mcp-go#853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tamish-max\"\u003e\u003ccode\u003e@​tamish-max\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/858\"\u003emark3labs/mcp-go#858\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/curbol\"\u003e\u003ccode\u003e@​curbol\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/854\"\u003emark3labs/mcp-go#854\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.52.0...v0.53.0\"\u003ehttps://github.com/mark3labs/mcp-go/compare/v0.52.0...v0.53.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.52.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(transport): close response body on 404 in sendHTTP by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/849\"\u003emark3labs/mcp-go#849\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): add transport-agnostic Handle entry point by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/851\"\u003emark3labs/mcp-go#851\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.51.0...v0.52.0\"\u003ehttps://github.com/mark3labs/mcp-go/compare/v0.51.0...v0.52.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.51.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(examples): return isError for input validation instead of internal error by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/838\"\u003emark3labs/mcp-go#838\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: issue-829: setTools may resulted in an empty tools. by \u003ca href=\"https://github.com/ycqqq\"\u003e\u003ccode\u003e@​ycqqq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/830\"\u003emark3labs/mcp-go#830\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/fac90b64b0dfe25b84acd6797a89d2215cf6b480\"\u003e\u003ccode\u003efac90b6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/b817eff0c8d5555741b7af126e0bd9c1c8937150\"\u003e\u003ccode\u003eb817eff\u003c/code\u003e\u003c/a\u003e feat(mcp): add BaseMetadata.title, Icon.theme, Resource.size (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/870\"\u003e#870\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/885\"\u003e#885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/602478c1db3d8a90bfc23e9b92af04e920d7a772\"\u003e\u003ccode\u003e602478c\u003c/code\u003e\u003c/a\u003e fix: add panic recovery to session hook goroutines (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/14ddeb3018e97ee21dee8b8297aa7838ab711c9b\"\u003e\u003ccode\u003e14ddeb3\u003c/code\u003e\u003c/a\u003e feat: add OpenTelemetry tracing hooks to server and client (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/856\"\u003e#856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/3f8fc8e8b059c8af76cf2cd2be68c2fc63be5863\"\u003e\u003ccode\u003e3f8fc8e\u003c/code\u003e\u003c/a\u003e fix: add panic recovery to task goroutines, fix cleanup goroutine leak (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/880\"\u003e#880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/e8fac2b918e8c124c3b6502013ce3748129efae0\"\u003e\u003ccode\u003ee8fac2b\u003c/code\u003e\u003c/a\u003e fix: add panic recovery to SSE message handler and stdio tool call worker (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/882\"\u003e#882\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/f789da6c451313df490a53ff4dab246d20585216\"\u003e\u003ccode\u003ef789da6\u003c/code\u003e\u003c/a\u003e docs: add missing godoc comments (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/877\"\u003e#877\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/af75fdaa247c706785e1c1913eb11182c3009bc6\"\u003e\u003ccode\u003eaf75fda\u003c/code\u003e\u003c/a\u003e refactor: use MCP method constants (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/878\"\u003e#878\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/5b982295cd0d58832f2534ca221fde9634b546cf\"\u003e\u003ccode\u003e5b98229\u003c/code\u003e\u003c/a\u003e feat(mcp): add 2025-11-25 sampling-with-tools and capability sub-fields (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/867\"\u003e#867\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/5ef1dbca29b6da252b5f28be8baefc194eea8958\"\u003e\u003ccode\u003e5ef1dbc\u003c/code\u003e\u003c/a\u003e fix(oauth): don't hold metadataMu across HTTP discovery (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/871\"\u003e#871\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/875\"\u003e#875\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.30.0...v0.54.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/stretchr/testify` from 1.10.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stretchr/testify/releases\"\u003egithub.com/stretchr/testify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1785\"\u003e#1785\u003c/a\u003e introduced in v1.11.0 where expected argument values implementing the stringer interface (\u003ccode\u003eString() string\u003c/code\u003e) with a method which mutates their value, when passed to mock.Mock.On (\u003ccode\u003em.On(\u0026quot;Method\u0026quot;, \u0026lt;expected\u0026gt;).Return()\u003c/code\u003e) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1788\"\u003estretchr/testify#1788\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\"\u003ehttps://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFunctional Changes\u003c/h3\u003e\n\u003cp\u003ev1.11.0 Includes a number of performance improvements.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCall stack perf change for CallerInfo by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1614\"\u003estretchr/testify#1614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLazily render mock diff output on successful match by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1615\"\u003estretchr/testify#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check early in Eventually, EventuallyWithT, and Never by \u003ca href=\"https://github.com/cszczepaniak\"\u003e\u003ccode\u003e@​cszczepaniak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1427\"\u003estretchr/testify#1427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: add IsNotType by \u003ca href=\"https://github.com/bartventer\"\u003e\u003ccode\u003e@​bartventer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1730\"\u003estretchr/testify#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.JSONEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1754\"\u003estretchr/testify#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.YAMLEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1755\"\u003estretchr/testify#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: faster and simpler isEmpty using reflect.Value.IsZero by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1761\"\u003estretchr/testify#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: faster methods filtering (internal refactor) by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1758\"\u003estretchr/testify#1758\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eassert.ErrorAs: log target type by \u003ca href=\"https://github.com/craig65535\"\u003e\u003ccode\u003e@​craig65535\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1345\"\u003estretchr/testify#1345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix failure message formatting for Positive and Negative asserts in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1062\"\u003estretchr/testify#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorIs message when error is nil but an error was expected by \u003ca href=\"https://github.com/tsioftas\"\u003e\u003ccode\u003e@​tsioftas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1681\"\u003estretchr/testify#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix Subset/NotSubset when calling with mixed input types by \u003ca href=\"https://github.com/siliconbrain\"\u003e\u003ccode\u003e@​siliconbrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1729\"\u003estretchr/testify#1729\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorAs failure message when error is nil by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1734\"\u003estretchr/testify#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock.AssertNumberOfCalls: improve error msg by \u003ca href=\"https://github.com/3scalation\"\u003e\u003ccode\u003e@​3scalation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1743\"\u003estretchr/testify#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation, Build \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Fix typo in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1688\"\u003estretchr/testify#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace deprecated io/ioutil with io and os by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1684\"\u003estretchr/testify#1684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument consequences of calling t.FailNow() by \u003ca href=\"https://github.com/greg0ire\"\u003e\u003ccode\u003e@​greg0ire\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1710\"\u003estretchr/testify#1710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update docs for Unset \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1621\"\u003e#1621\u003c/a\u003e by \u003ca href=\"https://github.com/techfg\"\u003e\u003ccode\u003e@​techfg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1709\"\u003estretchr/testify#1709\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: apply gofmt to examples by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1687\"\u003estretchr/testify#1687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use %q and %T to simplify fmt.Sprintf by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1674\"\u003estretchr/testify#1674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePropose Christophe Colombier (ccoVeille) as approver by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1716\"\u003estretchr/testify#1716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documentation for the Error function in assert or require package by \u003ca href=\"https://github.com/architagr\"\u003e\u003ccode\u003e@​architagr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1675\"\u003estretchr/testify#1675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: remove deprecated build constraints by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1671\"\u003estretchr/testify#1671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: apply gofumpt to internal test suite by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1739\"\u003estretchr/testify#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: fix shebang in .ci.*.sh scripts by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1746\"\u003estretchr/testify#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert,require: enable parallel testing on (almost) all top tests by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1747\"\u003estretchr/testify#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite.Passed: add one more status test report by \u003ca href=\"https://github.com/Ararsa-Derese\"\u003e\u003ccode\u003e@​Ararsa-Derese\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1706\"\u003estretchr/testify#1706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Helper() method in internal mocks and assert.CollectT by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1423\"\u003estretchr/testify#1423\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.Same/NotSame: improve usage of Sprintf by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1742\"\u003estretchr/testify#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock: enable parallel testing on internal testsuite by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1756\"\u003estretchr/testify#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: cleanup use of 'testing' internals at runtime by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1751\"\u003estretchr/testify#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check test failure message for Empty and NotEmpty  by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1745\"\u003estretchr/testify#1745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/2a57335dc9cd6833daa820bc94d9b40c26a7917d\"\u003e\u003ccode\u003e2a57335\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1788\"\u003e#1788\u003c/a\u003e from brackendawson/1785-backport-1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/af8c91234f184009f57ef29027b39ca89cb00100\"\u003e\u003ccode\u003eaf8c912\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/b7801fbf5cd58d201296d5d0e132d1849966dbd4\"\u003e\u003ccode\u003eb7801fb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1778\"\u003e#1778\u003c/a\u003e from stretchr/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/69831f3b08c40d56a09d0be93e9d5ae034f1590b\"\u003e\u003ccode\u003e69831f3\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/a53be35c3b0cfcd5189cffcfd75df60ea581104c\"\u003e\u003ccode\u003ea53be35\u003c/code\u003e\u003c/a\u003e Improve captureTestingT helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/aafb604176db7e1f2c9810bc90d644291d057687\"\u003e\u003ccode\u003eaafb604\u003c/code\u003e\u003c/a\u003e mock: improve formatting of error message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7218e0390acd2aea3edb18574110ec2753c0aeef\"\u003e\u003ccode\u003e7218e03\u003c/code\u003e\u003c/a\u003e improve error msg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/929a2126c2702df436312656a0304580b526c6e9\"\u003e\u003ccode\u003e929a212\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1758\"\u003e#1758\u003c/a\u003e from stretchr/dolmen/suite-faster-method-filtering\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/bc7459ec38128532ff32f23cfab4ea0b725210f2\"\u003e\u003ccode\u003ebc7459e\u003c/code\u003e\u003c/a\u003e suite: faster filtering of methods (-testify.m)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7d37b5c962954410bcd7a71ff3a77c79514056d1\"\u003e\u003ccode\u003e7d37b5c\u003c/code\u003e\u003c/a\u003e suite: refactor methodFilter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/stretchr/testify/compare/v1.10.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/windingriverholdings/openbrain/pull/22","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/windingriverholdings%2Fopenbrain/issues/22","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/22/packages"},{"uuid":"4513651470","node_id":"PR_kwDOQcyi6c7e3-V2","number":40,"state":"open","title":"deps(go): bump github.com/jackc/pgx/v5 from 5.6.0 to 5.9.2 in the go-minor group","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T01:28:33.000Z","updated_at":"2026-05-25T01:28:34.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(go)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.6.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"the go-minor group","ecosystem":"go"},"body":"Bumps the go-minor group with 1 update: [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/jackc/pgx/v5` from 5.6.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.6.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.6.0\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/Prejudice-Studio/Twilight/pull/40","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Prejudice-Studio%2FTwilight/issues/40","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/40/packages"},{"uuid":"4513519725","node_id":"PR_kwDOSm1-jM7e3keh","number":2,"state":"closed","title":"Bump the go_modules group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T00:59:44.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-25T00:51:32.000Z","updated_at":"2026-05-25T00:59:52.000Z","time_to_close":492,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":2,"packages":[{"name":"github.com/go-chi/chi/v5","old_version":"5.1.0","new_version":"5.2.2","repository_url":"https://github.com/go-chi/chi"},{"name":"github.com/jackc/pgx/v5","old_version":"5.6.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 2 updates in the / directory: [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/go-chi/chi/v5` from 5.1.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-chi/chi/releases\"\u003egithub.com/go-chi/chi/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse strings.Cut in a few places by \u003ca href=\"https://github.com/JRaspass\"\u003e\u003ccode\u003e@​JRaspass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/971\"\u003ego-chi/chi#971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix non-constant format strings in t.Fatalf by \u003ca href=\"https://github.com/JRaspass\"\u003e\u003ccode\u003e@​JRaspass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/972\"\u003ego-chi/chi#972\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply fieldalignment fixes to optimize struct memory layout by \u003ca href=\"https://github.com/pixel365\"\u003e\u003ccode\u003e@​pixel365\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/974\"\u003ego-chi/chi#974\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego 1.24 by \u003ca href=\"https://github.com/pkieltyka\"\u003e\u003ccode\u003e@​pkieltyka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/977\"\u003ego-chi/chi#977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: delint ioutil usage by \u003ca href=\"https://github.com/costela\"\u003e\u003ccode\u003e@​costela\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/962\"\u003ego-chi/chi#962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed typo in Router interface definition by \u003ca href=\"https://github.com/mithileshgupta12\"\u003e\u003ccode\u003e@​mithileshgupta12\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/958\"\u003ego-chi/chi#958\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for TinyGo by \u003ca href=\"https://github.com/efraimbart\"\u003e\u003ccode\u003e@​efraimbart\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/978\"\u003ego-chi/chi#978\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExclude middleware/profiler.go in TinyGo, as there's no net/http/pprof pkg by \u003ca href=\"https://github.com/cxjava\"\u003e\u003ccode\u003e@​cxjava\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/982\"\u003ego-chi/chi#982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake use of strings.Cut by \u003ca href=\"https://github.com/scop\"\u003e\u003ccode\u003e@​scop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/1005\"\u003ego-chi/chi#1005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange install command format to code block by \u003ca href=\"https://github.com/sglkc\"\u003e\u003ccode\u003e@​sglkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/1001\"\u003ego-chi/chi#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect documentation by \u003ca href=\"https://github.com/mrdomino\"\u003e\u003ccode\u003e@​mrdomino\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/992\"\u003ego-chi/chi#992\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSecurity fix\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/go-chi/chi/security/advisories/GHSA-vrw8-fxc6-2r93\"\u003eGHSA-vrw8-fxc6-2r93\u003c/a\u003e - \u0026quot;Host Header Injection Leads to Open Redirect in RedirectSlashes\u0026quot; \u003ca href=\"https://github.com/go-chi/chi/commit/1be7ad938cc9c5b39a9dea01a5c518848928ab65\"\u003ecommit\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003ea lower-severity Open Redirect that can't be exploited in browser or email client, as it requires manipulation of a Host header\u003c/li\u003e\n\u003cli\u003ereported by Anuraag Baishya, \u003ca href=\"https://github.com/anuraagbaishya\"\u003e\u003ccode\u003e@​anuraagbaishya\u003c/code\u003e\u003c/a\u003e. Thank you!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pixel365\"\u003e\u003ccode\u003e@​pixel365\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/974\"\u003ego-chi/chi#974\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mithileshgupta12\"\u003e\u003ccode\u003e@​mithileshgupta12\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/958\"\u003ego-chi/chi#958\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/efraimbart\"\u003e\u003ccode\u003e@​efraimbart\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/978\"\u003ego-chi/chi#978\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cxjava\"\u003e\u003ccode\u003e@​cxjava\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/982\"\u003ego-chi/chi#982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sglkc\"\u003e\u003ccode\u003e@​sglkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/1001\"\u003ego-chi/chi#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mrdomino\"\u003e\u003ccode\u003e@​mrdomino\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/992\"\u003ego-chi/chi#992\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-chi/chi/compare/v5.2.1...v5.2.2\"\u003ehttps://github.com/go-chi/chi/compare/v5.2.1...v5.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.1\u003c/h2\u003e\n\u003ch2\u003e⚠️  Chi supports Go 1.20+\u003c/h2\u003e\n\u003cp\u003eStarting this release, we will now support the four most recent major versions of Go. See \u003ca href=\"https://redirect.github.com/go-chi/chi/issues/963\"\u003ego-chi/chi#963\u003c/a\u003e for related discussion.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport the four most recent major versions of Go by \u003ca href=\"https://github.com/VojtechVitek\"\u003e\u003ccode\u003e@​VojtechVitek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/969\"\u003ego-chi/chi#969\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-chi/chi/compare/v5.2.0...v5.2.1\"\u003ehttps://github.com/go-chi/chi/compare/v5.2.0...v5.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate credits section to link to goji license by \u003ca href=\"https://github.com/pkieltyka\"\u003e\u003ccode\u003e@​pkieltyka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/944\"\u003ego-chi/chi#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego 1.23 by \u003ca href=\"https://github.com/pkieltyka\"\u003e\u003ccode\u003e@​pkieltyka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/945\"\u003ego-chi/chi#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake Context.RoutePattern() nil-safe by \u003ca href=\"https://github.com/gaiaz-iusipov\"\u003e\u003ccode\u003e@​gaiaz-iusipov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/927\"\u003ego-chi/chi#927\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egovet: Fix non-constant format string by \u003ca href=\"https://github.com/marcofranssen\"\u003e\u003ccode\u003e@​marcofranssen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/952\"\u003ego-chi/chi#952\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFind\u003c/code\u003e to \u003ccode\u003eRoutes\u003c/code\u003e interface by \u003ca href=\"https://github.com/joeriddles\"\u003e\u003ccode\u003e@​joeriddles\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/872\"\u003ego-chi/chi#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix grammar error by \u003ca href=\"https://github.com/AntonC9018\"\u003e\u003ccode\u003e@​AntonC9018\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/917\"\u003ego-chi/chi#917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cdel\u003efeat(): add CF-Connecting-IP by \u003ca href=\"https://github.com/n33pm\"\u003e\u003ccode\u003e@​n33pm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/908\"\u003ego-chi/chi#908\u003c/a\u003e\u003c/del\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cdel\u003eRevert \u0026quot;feat(): add CF-Connecting-IP\u0026quot; by \u003ca href=\"https://github.com/VojtechVitek\"\u003e\u003ccode\u003e@​VojtechVitek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/966\"\u003ego-chi/chi#966\u003c/a\u003e\u003c/del\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/23c395f8524a30334126ca16fb4d37b88745b9b9\"\u003e\u003ccode\u003e23c395f\u003c/code\u003e\u003c/a\u003e Correct documentation (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/992\"\u003e#992\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/5516d147c14a2b03824be7076fc6200bed906901\"\u003e\u003ccode\u003e5516d14\u003c/code\u003e\u003c/a\u003e docs: change install code to code block (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/1001\"\u003e#1001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/e235052c10146fb724439442fc9d9a23e19fe931\"\u003e\u003ccode\u003ee235052\u003c/code\u003e\u003c/a\u003e Make use of strings.Cut (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/1be7ad938cc9c5b39a9dea01a5c518848928ab65\"\u003e\u003ccode\u003e1be7ad9\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/d7034fdfdaefd10f1bc1a7b813bc979f2eda3a36\"\u003e\u003ccode\u003ed7034fd\u003c/code\u003e\u003c/a\u003e Exclude profiler when use tinygo (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/982\"\u003e#982\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/d04703412f631922c8dd1527c6500627174828c1\"\u003e\u003ccode\u003ed047034\u003c/code\u003e\u003c/a\u003e support tinygo (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/978\"\u003e#978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/fe2c065bc046056aecfa141022509a1e25bdd04b\"\u003e\u003ccode\u003efe2c065\u003c/code\u003e\u003c/a\u003e Fixed the typo (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/958\"\u003e#958\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/1aae5b2d2dc8f9e8ea1f68a7462693aaaa5f368c\"\u003e\u003ccode\u003e1aae5b2\u003c/code\u003e\u003c/a\u003e chore: delint ioutil usage (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/962\"\u003e#962\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/c6225e35a4880a9a884c135b5f847a74e1e3a01e\"\u003e\u003ccode\u003ec6225e3\u003c/code\u003e\u003c/a\u003e go 1.24 (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/977\"\u003e#977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/e846b8304c769c4f1a51c9de06bebfaa4576bd88\"\u003e\u003ccode\u003ee846b83\u003c/code\u003e\u003c/a\u003e Apply fieldalignment fixes to optimize struct memory layout (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/974\"\u003e#974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-chi/chi/compare/v5.1.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.6.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.6.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Hardonian/EvidenceVault/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Hardonian/EvidenceVault/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hardonian%2FEvidenceVault/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4512446883","node_id":"PR_kwDORlTy7c7e0VPC","number":35,"state":"open","title":"build(deps): bump the go-minor-and-patch group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-24T17:50:29.000Z","updated_at":"2026-05-31T14:35:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"go-minor-and-patch","update_count":2,"packages":[{"name":"github.com/gin-gonic/gin","old_version":"1.10.0","new_version":"1.12.0","repository_url":"https://github.com/gin-gonic/gin"},{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-minor-and-patch group with 2 updates in the / directory: [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/gin-gonic/gin` from 1.10.0 to 1.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/releases\"\u003egithub.com/gin-gonic/gin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e192ac89eefc1c30f7c97ae48a9ffb1c6f1c8c8bc: feat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4203\"\u003e#4203\u003c/a\u003e) (\u003ca href=\"https://github.com/takanuva15\"\u003e\u003ccode\u003e@​takanuva15\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e53410d2e07054369e0960fbe2eed97e1b9966f12: feat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4502\"\u003e#4502\u003c/a\u003e) (\u003ca href=\"https://github.com/raju-mechatronics\"\u003e\u003ccode\u003e@​raju-mechatronics\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eacc55e049e33b401e810dbd8c0d6dcb6b3ba2b05: feat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4423\"\u003e#4423\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e38e765119241d990705169bedb5002a29ae0cbd1: feat(context): implemented Delete method (\u003ca href=\"https://github.com/Spyder01\"\u003e\u003ccode\u003e@​Spyder01\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e771dcc6476d7bc6abb9ec0235ecefa4d38fe6fb0: feat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4420\"\u003e#4420\u003c/a\u003e) (\u003ca href=\"https://github.com/ldesauw\"\u003e\u003ccode\u003e@​ldesauw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4dec17afdff48e8018c83618fbbe69fceeb2b41d: feat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4146\"\u003e#4146\u003c/a\u003e) (\u003ca href=\"https://github.com/wsyqn6\"\u003e\u003ccode\u003e@​wsyqn6\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed7776de7d444935ea4385999711bd6331a98fecb: feat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4145\"\u003e#4145\u003c/a\u003e) (\u003ca href=\"https://github.com/laurentcau\"\u003e\u003ccode\u003e@​laurentcau\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb917b14ff9d189f16a7492be79d123a47806ee19: fix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/2169\"\u003e#2169\u003c/a\u003e) (\u003ca href=\"https://github.com/guonaihong\"\u003e\u003ccode\u003e@​guonaihong\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d1092b3b48addf6f9cd00fe274ec3bd14650eb: fix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4380\"\u003e#4380\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9914178584e42458ff7d23891463a880f58c9d86: fix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4472\"\u003e#4472\u003c/a\u003e) (\u003ca href=\"https://github.com/Nurysso\"\u003e\u003ccode\u003e@​Nurysso\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e2a794cd0b0faa7d829291375b27a3467ea972b0d: fix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4403\"\u003e#4403\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d5a28ed6d3849da820195b6774d212bcc038a9: fix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4422\"\u003e#4422\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5fad976b372e381312f8de69f0969f1284d229d3: fix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4415\"\u003e#4415\u003c/a\u003e) (\u003ca href=\"https://github.com/pawannn\"\u003e\u003ccode\u003e@​pawannn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e63dd3e60cab89c27fb66bce1423bd268d52abad1: fix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4336\"\u003e#4336\u003c/a\u003e) (\u003ca href=\"https://github.com/MondayCha\"\u003e\u003ccode\u003e@​MondayCha\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a: fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e) (\u003ca href=\"https://github.com/dengaleev\"\u003e\u003ccode\u003e@​dengaleev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e234a6d4c00cb77af9852aca0b8289745d5529b4b: fix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4373\"\u003e#4373\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e472d086af2acd924cb4b9d7be0525f7d790f69bc: fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8e07d37c63e5536eb25f4af4c91eabeee4011fba: fix: Correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4511\"\u003e#4511\u003c/a\u003e) (\u003ca href=\"https://github.com/mahanadh\"\u003e\u003ccode\u003e@​mahanadh\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eba093d19477b896ac89a7fc3246af23d290b8e26: chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e) (\u003ca href=\"https://github.com/BobDu\"\u003e\u003ccode\u003e@​BobDu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb2b489dbf4826c2c630717a77fd5e42774625410: chore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/3359\"\u003e#3359\u003c/a\u003e) (\u003ca href=\"https://github.com/WeidiDeng\"\u003e\u003ccode\u003e@​WeidiDeng\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eecb3f7b5e2f3915bf1db240ed5eee572f8dbea36: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4449\"\u003e#4449\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaf6e8b70b8261bb0c99ad094fe552ab92991620a: chore(deps): upgrade quic-go to v0.57.1 (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb309081bc5c137b2aa15701ef53f7f19788da25: chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e) (\u003ca href=\"https://github.com/USA-RedDragon\"\u003e\u003ccode\u003e@​USA-RedDragon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e26c3a628655cad2388380cb8102d6ce7d4875f3b: chore(response): prevent Flush() panic when \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4479\"\u003e#4479\u003c/a\u003e) (\u003ca href=\"https://github.com/Twacqwq\"\u003e\u003ccode\u003e@​Twacqwq\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5dd833f1f26de0eb30eae47b17e05ced2482dc41: chore: bump minimum Go version to 1.24 and update workflows (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4388\"\u003e#4388\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39858a0859c914bd26948fa950477e11bd8d3823: refactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4352\"\u003e#4352\u003c/a\u003e) (\u003ca href=\"https://github.com/russcoss\"\u003e\u003ccode\u003e@​russcoss\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0048f645ee945c4db30593afdea10123e2c30a6: refactor(context): omit the return value names (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4395\"\u003e#4395\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e915e4c90d28ec4cffc6eb146e208ab5a65eac772: refactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4481\"\u003e#4481\u003c/a\u003e) (\u003ca href=\"https://github.com/pauloappbr\"\u003e\u003ccode\u003e@​pauloappbr\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e414de60574449457f3192a7a1d5528940db2836d: refactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4333\"\u003e#4333\u003c/a\u003e) (\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59e9d4a794f12c4f9a6c7bed441b9644e5f6d99b: refactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4314\"\u003e#4314\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ab698dc5110af1977d57226e4995c57dd34c233: refactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4142\"\u003e#4142\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed1a15347b1e45a8ee816193d3578a93bfd73b70f: refactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4467\"\u003e#4467\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee3118cc378d263454098924ebbde7e8d1dd2e904: refactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4392\"\u003e#4392\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e488f8c3ffa579a8d19beb2bae95ff8ef36b3d53f: refactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4529\"\u003e#4529\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9968c4bf9d5a99edc3eee2c068a4c9160ece8915: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4389\"\u003e#4389\u003c/a\u003e) (\u003ca href=\"https://github.com/reddaisyy\"\u003e\u003ccode\u003e@​reddaisyy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea85ef5ce4d0cda8834c59c855068ed48b51192d1: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4432\"\u003e#4432\u003c/a\u003e) (\u003ca href=\"https://github.com/efcking\"\u003e\u003ccode\u003e@​efcking\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e61b67de522a189b568aced4c5c16917c558e3387: ci(bot): increase frequency and group updates for dependencies (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4367\"\u003e#4367\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efb27ef26c2fdfe25344b4c039d8a53551f9e912c: ci(lint): refactor test assertions and linter configuration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4436\"\u003e#4436\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e93ff771e6dbf10e432864b30f3719ac5c84a4d4a: ci(sec): improve type safety and server organization in HTTP middleware (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4437\"\u003e#4437\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee88fc8927a52b74f55bec0351604a56ac0aa1c51: ci(sec): schedule Trivy security scans to run daily at midnight UTC (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4439\"\u003e#4439\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e5ff3ace496a31b138b0820136a146bfb5de0ef: ci: replace vulnerability scanning workflow with Trivy integration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4421\"\u003e#4421\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e00900fb3e1ea9dde33985a0e4f6afec793d5e786: ci: update CI workflows and standardize Trivy config quotes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4531\"\u003e#4531\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eae3f524974fc4f55d18c9e7fae4614503c015226: ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md\"\u003egithub.com/gin-gonic/gin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGin v1.12.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4145\"\u003e#4145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4502\"\u003e#4502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4203\"\u003e#4203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4420\"\u003e#4420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4423\"\u003e#4423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): implemented Delete method (\u003ca href=\"https://github.com/gin-gonic/gin/commit/38e7651\"\u003e#38e7651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4146\"\u003e#4146\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eperf(tree): reduce allocations in findCaseInsensitivePath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4417\"\u003e#4417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(recovery): optimize line reading in stack function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4466\"\u003e#4466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(path): replace regex with custom functions in redirectTrailingSlash (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4414\"\u003e#4414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(tree): optimize path parsing using strings.Count (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4246\"\u003e#4246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/3359\"\u003e#3359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(response): prevent Flush() panic when the underlying ResponseWriter does not implement \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4479\"\u003e#4479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4142\"\u003e#4142\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4481\"\u003e#4481\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4467\"\u003e#4467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4352\"\u003e#4352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4333\"\u003e#4333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4314\"\u003e#4314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4529\"\u003e#4529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4392\"\u003e#4392\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4472\"\u003e#4472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/2169\"\u003e#2169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4336\"\u003e#4336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4415\"\u003e#4415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4422\"\u003e#4422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4373\"\u003e#4373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4380\"\u003e#4380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4403\"\u003e#4403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4511\"\u003e#4511\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates / CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eGin v1.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/73726dc606796a025971fe451f0aa6f1b9b847f6\"\u003e\u003ccode\u003e73726dc\u003c/code\u003e\u003c/a\u003e docs: update documentation to reflect Go version changes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4552\"\u003e#4552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/e292e5caa777bce70b66fe08c94cbe9cef3e2ec9\"\u003e\u003ccode\u003ee292e5c\u003c/code\u003e\u003c/a\u003e docs: document and finalize Gin v1.12.0 release (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4551\"\u003e#4551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ae3f524974fc4f55d18c9e7fae4614503c015226\"\u003e\u003ccode\u003eae3f524\u003c/code\u003e\u003c/a\u003e ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/38534e2bf98a06e1f62d6b24384e90b5f78699bf\"\u003e\u003ccode\u003e38534e2\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4548\"\u003e#4548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/472d086af2acd924cb4b9d7be0525f7d790f69bc\"\u003e\u003ccode\u003e472d086\u003c/code\u003e\u003c/a\u003e fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/fb2583442c4d9bccb75e6d26f1aa6e7c01950db6\"\u003e\u003ccode\u003efb25834\u003c/code\u003e\u003c/a\u003e test(context): use http.StatusContinue constant instead of magic number 100 (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/6f1d5fe3cdb171a08928c3c9dd3fbcfc9ee1b521\"\u003e\u003ccode\u003e6f1d5fe\u003c/code\u003e\u003c/a\u003e test(render): add comprehensive error handling tests (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4541\"\u003e#4541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a\"\u003e\u003ccode\u003e5c00df8\u003c/code\u003e\u003c/a\u003e fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/db309081bc5c137b2aa15701ef53f7f19788da25\"\u003e\u003ccode\u003edb30908\u003c/code\u003e\u003c/a\u003e chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ba093d19477b896ac89a7fc3246af23d290b8e26\"\u003e\u003ccode\u003eba093d1\u003c/code\u003e\u003c/a\u003e chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gin-gonic/gin/compare/v1.10.0...v1.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/isw2-unileon/hypermotionleague/pull/35","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/isw2-unileon%2Fhypermotionleague/issues/35","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/35/packages"},{"uuid":"4482460971","node_id":"PR_kwDOSfAg387dUtGa","number":43,"state":"open","title":"chore(deps): bump github.com/jackc/pgx/v5 from 5.7.1 to 5.9.2 in /services/submissions-go","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-20T01:49:27.000Z","updated_at":"2026-05-20T01:49:27.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.7.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"/services/submissions-go","ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.7.1 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.7.1\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/JasonTM17/Leetrank_Project/pull/43","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JasonTM17%2FLeetrank_Project/issues/43","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/43/packages"},{"uuid":"4473997408","node_id":"PR_kwDORUciPM7c5V8N","number":87,"state":"closed","title":"chore(deps): Bump the minor-and-patch group across 1 directory with 4 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-25T23:05:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-19T02:43:10.000Z","updated_at":"2026-05-25T23:05:52.000Z","time_to_close":591760,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"minor-and-patch","update_count":4,"packages":[{"name":"firebase.google.com/go/v4","old_version":"4.19.0","new_version":"4.20.0","repository_url":"https://github.com/firebase/firebase-admin-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.9.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"golang.org/x/crypto","old_version":"0.49.0","new_version":"0.51.0"},{"name":"google.golang.org/api","old_version":"0.276.0","new_version":"0.279.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the minor-and-patch group with 2 updates in the /backend directory: [firebase.google.com/go/v4](https://github.com/firebase/firebase-admin-go) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `firebase.google.com/go/v4` from 4.19.0 to 4.20.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/firebase/firebase-admin-go/releases\"\u003efirebase.google.com/go/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eFirebase Admin Go SDK v4.20.0\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(pnv): Add Firebase Phone Number Verification support (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(fcm): Add support for bandwidth constrained and restricted satellite APIs (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/750\"\u003e#750\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] Release v4.20.0 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: Upgrade Go versions to 1.25, 1.26 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: Revert release workflow changes to use merge commit (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/751\"\u003e#751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: Update to Go 1.25 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/743\"\u003e#743\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/e853b36e21643f8401d237a883b2b5e04f6ccfa5\"\u003e\u003ccode\u003ee853b36\u003c/code\u003e\u003c/a\u003e Merge remote-tracking branch 'origin/dev'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/aa29809a9728bb91f2836efd971bdb56213f1217\"\u003e\u003ccode\u003eaa29809\u003c/code\u003e\u003c/a\u003e Merge dev into master to resolve release divergence\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/460da858c96ce20dc5296abf71f69c062d2414a8\"\u003e\u003ccode\u003e460da85\u003c/code\u003e\u003c/a\u003e [chore] Release v4.20.0 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/646489a899911dd5b61b9c1ec587c8d0ee6b98f5\"\u003e\u003ccode\u003e646489a\u003c/code\u003e\u003c/a\u003e feat(pnv): Add Firebase Phone Number Verification support (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/f595f98427db15eb8a71d76d74fb0559b8bb32a6\"\u003e\u003ccode\u003ef595f98\u003c/code\u003e\u003c/a\u003e chore: Upgrade Go versions to 1.25, 1.26 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/c96d946777f260a1a4ac8395baccfd2e3fad64dd\"\u003e\u003ccode\u003ec96d946\u003c/code\u003e\u003c/a\u003e feat(fcm): Add support for bandwidth constrained and restricted satellite API...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/e1d2b468a900a52e719f67cb74797be0d5699231\"\u003e\u003ccode\u003ee1d2b46\u003c/code\u003e\u003c/a\u003e chore: Revert release workflow changes to use merge commit (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/751\"\u003e#751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/128f8f425f0a72725e2f39832de6189a92a649db\"\u003e\u003ccode\u003e128f8f4\u003c/code\u003e\u003c/a\u003e chore: Update to Go 1.25 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/743\"\u003e#743\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/c06a67424bde05401339b9698be4d67adf0a36f2\"\u003e\u003ccode\u003ec06a674\u003c/code\u003e\u003c/a\u003e [chore] Release 4.19.0 Take 2 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/746\"\u003e#746\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/6e297d467f6014c1756ba304f326c498d9a91e7c\"\u003e\u003ccode\u003e6e297d4\u003c/code\u003e\u003c/a\u003e chore: Update Release Workflows for Push triggers (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/firebase/firebase-admin-go/compare/v4.19.0...v4.20.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.9.1 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.49.0 to 0.51.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b8a14a8d65f88c0c79c139171f1354c69a6cdb8a\"\u003e\u003ccode\u003eb8a14a8\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/9d9d5078968ddb8a279092c665a24e7de4178778\"\u003e\u003ccode\u003e9d9d507\u003c/code\u003e\u003c/a\u003e x509roots/fallback/bundle: fix bundle test with Go 1.27+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/fd0b90d21f9ab4b5dd398e9526b570bfea86e370\"\u003e\u003ccode\u003efd0b90d\u003c/code\u003e\u003c/a\u003e acme: include Problem in OrderError.Error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b9e53593a6073e6a786c49e9ad27956a9b77e54e\"\u003e\u003ccode\u003eb9e5359\u003c/code\u003e\u003c/a\u003e pbkdf2: turn into a wrapper for crypto/pbkdf2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/cc0e4fc1d49127130b0d00612a2eeed2ab745d40\"\u003e\u003ccode\u003ecc0e4fc\u003c/code\u003e\u003c/a\u003e hkdf: forward Extract to the standard library\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a8e9237a216b050e1b11e041863825104a6811db\"\u003e\u003ccode\u003ea8e9237\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/03ca0dcccbd37ba6be80adf74dde8d78a4d72817\"\u003e\u003ccode\u003e03ca0dc\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8400f4a938077a7a7817ab7d163d148e371b320b\"\u003e\u003ccode\u003e8400f4a\u003c/code\u003e\u003c/a\u003e ssh: respect signer's algorithm preference in pickSignatureAlgorithm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/81c6cb34a8fc386ed53293cd79e3c0c232ee7366\"\u003e\u003ccode\u003e81c6cb3\u003c/code\u003e\u003c/a\u003e ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/crypto/compare/v0.49.0...v0.51.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/api` from 0.276.0 to 0.279.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/google-api-go-client/releases\"\u003egoogle.golang.org/api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.279.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.278.0...v0.279.0\"\u003e0.279.0\u003c/a\u003e (2026-05-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3585\"\u003e#3585\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/09db0e346a6b567747dceee3872229a62c95124c\"\u003e09db0e3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3587\"\u003e#3587\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e87e376dbd590cffb3632c378e1ade4a9dacf3ce\"\u003ee87e376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3590\"\u003e#3590\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/d4241eaef9ab3daad4fd4aaeccc118795cfc58a7\"\u003ed4241ea\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.278.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.277.0...v0.278.0\"\u003e0.278.0\u003c/a\u003e (2026-05-05)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3582\"\u003e#3582\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/76b1187e506ac0f48caac67907dd0805b253f74c\"\u003e76b1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3584\"\u003e#3584\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e36c88361d11545583325c3ac6bdbd9cf1f1a7d0\"\u003ee36c883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.277.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.277.0\"\u003e0.277.0\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3567\"\u003e#3567\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/39582952e4eac1b744499f8a8063a4a5f1ce7d6b\"\u003e3958295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3571\"\u003e#3571\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ca9851efc573231ca1ed9c6fea4bc77d6052d0bb\"\u003eca9851e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3574\"\u003e#3574\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8efb1afa0e5d9cc454f721124bba3881f3935e3c\"\u003e8efb1af\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3575\"\u003e#3575\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/de49bb519cab881f74e5b9ba11e263a2b9a4ad2e\"\u003ede49bb5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3577\"\u003e#3577\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ce68c87d9dc6c144b6df578df725470b30cf83d6\"\u003ece68c87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3578\"\u003e#3578\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8be033e24e0c6ddb08a3df72c0a8997d21623a22\"\u003e8be033e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3579\"\u003e#3579\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/bc6990e20803f2ff2fd1b77995f6e9180ab2302b\"\u003ebc6990e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3580\"\u003e#3580\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/2de1a5aff3f3b6e53dff00da297c5d249ac8d791\"\u003e2de1a5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3581\"\u003e#3581\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/0c219d90e90899c93215558f3ea309c9732bf7ea\"\u003e0c219d9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eidtoken:\u003c/strong\u003e Avoid double impersonation in tokenSourceFromBytes (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3576\"\u003e#3576\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/75172cf5cb7bfc260c22e481323355306f684a09\"\u003e75172cf\u003c/a\u003e), refs \u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/2301\"\u003e#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md\"\u003egoogle.golang.org/api's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.278.0...v0.279.0\"\u003e0.279.0\u003c/a\u003e (2026-05-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3585\"\u003e#3585\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/09db0e346a6b567747dceee3872229a62c95124c\"\u003e09db0e3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3587\"\u003e#3587\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e87e376dbd590cffb3632c378e1ade4a9dacf3ce\"\u003ee87e376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3590\"\u003e#3590\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/d4241eaef9ab3daad4fd4aaeccc118795cfc58a7\"\u003ed4241ea\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.277.0...v0.278.0\"\u003e0.278.0\u003c/a\u003e (2026-05-05)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3582\"\u003e#3582\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/76b1187e506ac0f48caac67907dd0805b253f74c\"\u003e76b1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3584\"\u003e#3584\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e36c88361d11545583325c3ac6bdbd9cf1f1a7d0\"\u003ee36c883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.277.0\"\u003e0.277.0\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3567\"\u003e#3567\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/39582952e4eac1b744499f8a8063a4a5f1ce7d6b\"\u003e3958295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3571\"\u003e#3571\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ca9851efc573231ca1ed9c6fea4bc77d6052d0bb\"\u003eca9851e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3574\"\u003e#3574\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8efb1afa0e5d9cc454f721124bba3881f3935e3c\"\u003e8efb1af\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3575\"\u003e#3575\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/de49bb519cab881f74e5b9ba11e263a2b9a4ad2e\"\u003ede49bb5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3577\"\u003e#3577\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ce68c87d9dc6c144b6df578df725470b30cf83d6\"\u003ece68c87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3578\"\u003e#3578\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8be033e24e0c6ddb08a3df72c0a8997d21623a22\"\u003e8be033e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3579\"\u003e#3579\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/bc6990e20803f2ff2fd1b77995f6e9180ab2302b\"\u003ebc6990e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3580\"\u003e#3580\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/2de1a5aff3f3b6e53dff00da297c5d249ac8d791\"\u003e2de1a5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3581\"\u003e#3581\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/0c219d90e90899c93215558f3ea309c9732bf7ea\"\u003e0c219d9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eidtoken:\u003c/strong\u003e Avoid double impersonation in tokenSourceFromBytes (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3576\"\u003e#3576\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/75172cf5cb7bfc260c22e481323355306f684a09\"\u003e75172cf\u003c/a\u003e), refs \u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/2301\"\u003e#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e446d4cdeb5e63cd6916051edd2c56588eede309\"\u003e\u003ccode\u003ee446d4c\u003c/code\u003e\u003c/a\u003e chore(main): release 0.279.0 (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3586\"\u003e#3586\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/d4241eaef9ab3daad4fd4aaeccc118795cfc58a7\"\u003e\u003ccode\u003ed4241ea\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3590\"\u003e#3590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8452ed1936bd40ed8a3e2dd8b06832a853ea45c7\"\u003e\u003ccode\u003e8452ed1\u003c/code\u003e\u003c/a\u003e chore(all): update module github.com/go-git/go-git/v5 to v5.19.0 [SECURITY] (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e87e376dbd590cffb3632c378e1ade4a9dacf3ce\"\u003e\u003ccode\u003ee87e376\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3587\"\u003e#3587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/09db0e346a6b567747dceee3872229a62c95124c\"\u003e\u003ccode\u003e09db0e3\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3585\"\u003e#3585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/07c758daacbc24e32753c3f1b537c7f6cce626f0\"\u003e\u003ccode\u003e07c758d\u003c/code\u003e\u003c/a\u003e chore(main): release 0.278.0 (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3583\"\u003e#3583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e36c88361d11545583325c3ac6bdbd9cf1f1a7d0\"\u003e\u003ccode\u003ee36c883\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3584\"\u003e#3584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/76b1187e506ac0f48caac67907dd0805b253f74c\"\u003e\u003ccode\u003e76b1187\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3582\"\u003e#3582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/dd598a60e19f836bb7ad709311b21d303bbab6c8\"\u003e\u003ccode\u003edd598a6\u003c/code\u003e\u003c/a\u003e chore(main): release 0.277.0 (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/b208a86db380e5e517451daa4e5f63fae1f723be\"\u003e\u003ccode\u003eb208a86\u003c/code\u003e\u003c/a\u003e chore(all): update all (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3573\"\u003e#3573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.279.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/karimiku/job-hunting-saas/pull/87","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/karimiku%2Fjob-hunting-saas/issues/87","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/87/packages"},{"uuid":"4459030060","node_id":"PR_kwDOSc6DT87cK4EB","number":2,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-20T05:29:07.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-16T07:02:55.000Z","updated_at":"2026-05-20T05:29:09.000Z","time_to_close":339972,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":2,"packages":[{"name":"github.com/in-toto/in-toto-golang","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 2 updates in the / directory: [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump the all group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/453\"\u003ein-toto/in-toto-golang#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump the all group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/452\"\u003ein-toto/in-toto-golang#452\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/457\"\u003ein-toto/in-toto-golang#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/459\"\u003ein-toto/in-toto-golang#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ematch: Replace ^ with ! for negation in character classes by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/462\"\u003ein-toto/in-toto-golang#462\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/36d782ffb2ca3adbffcdce1fd971c23319dd4469\"\u003e\u003ccode\u003e36d782f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/462\"\u003e#462\u003c/a\u003e from in-toto/fix-negation-character\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/4a09e3bbc44bc687577b6532e57e8a4abfa5ddf4\"\u003e\u003ccode\u003e4a09e3b\u003c/code\u003e\u003c/a\u003e match: Replace ^ with ! for negation in character classes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c3302e8bc36e46119f7ae17c07eb879ff3507caa\"\u003e\u003ccode\u003ec3302e8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/459\"\u003e#459\u003c/a\u003e from in-toto/dependabot/go_modules/github.com/go-jose...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/016e87efbb55c6dd8772ce227002eeb1b6e3f593\"\u003e\u003ccode\u003e016e87e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/5b9df76e685eaa0a950ea9ba3f4a5561e87e13ad\"\u003e\u003ccode\u003e5b9df76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/457\"\u003e#457\u003c/a\u003e from in-toto/dependabot/go_modules/google.golang.org/...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/595b3fe0a13f481eb0ef898ccaff5e345e492a2f\"\u003e\u003ccode\u003e595b3fe\u003c/code\u003e\u003c/a\u003e chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/e396d248c9cf19f9e144f4e90c476af88742bf35\"\u003e\u003ccode\u003ee396d24\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/452\"\u003e#452\u003c/a\u003e from in-toto/dependabot/github_actions/all-502588e1ca\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/142b779059713332fe5c7856e98f1c564c6d6a09\"\u003e\u003ccode\u003e142b779\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/453\"\u003e#453\u003c/a\u003e from in-toto/dependabot/go_modules/all-d8ef5820aa\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/f741bcc43330554606b813fa0f8fe0c284fcdaea\"\u003e\u003ccode\u003ef741bcc\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c374dc9808137651fe8754eed363ec816cd59d2a\"\u003e\u003ccode\u003ec374dc9\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group across 1 directory with 2 updates\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/p5hzehxa/cosign/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/p5hzehxa/cosign/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/p5hzehxa%2Fcosign/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"},{"uuid":"4458946693","node_id":"PR_kwDORdVxCc7cKocV","number":155,"state":"closed","title":"chore(shared): bump the gomod group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-16T20:08:42.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-16T06:33:58.000Z","updated_at":"2026-05-16T20:08:44.000Z","time_to_close":48884,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(shared): bump","group_name":"gomod","update_count":7,"packages":[{"name":"github.com/alicebob/miniredis/v2","old_version":"2.37.0","new_version":"2.38.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/jackc/pgx/v5","old_version":"5.9.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/redis/go-redis/extra/redisotel/v9","old_version":"9.18.0","new_version":"9.19.0","repository_url":"https://github.com/redis/go-redis"},{"name":"github.com/testcontainers/testcontainers-go","old_version":"0.29.1","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"github.com/testcontainers/testcontainers-go/modules/postgres","old_version":"0.29.1","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"google.golang.org/grpc","old_version":"1.80.0","new_version":"1.81.1","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the gomod group with 6 updates in the /shared directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.37.0` | `2.38.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.9.1` | `5.9.2` |\n| [github.com/redis/go-redis/extra/redisotel/v9](https://github.com/redis/go-redis) | `9.18.0` | `9.19.0` |\n| [github.com/testcontainers/testcontainers-go](https://github.com/testcontainers/testcontainers-go) | `0.29.1` | `0.42.0` |\n| [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) | `0.29.1` | `0.42.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.80.0` | `1.81.1` |\n\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.37.0 to 2.38.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDELEX and fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.38.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d67bfae4c370e8451561165eca6ddc50f056f083\"\u003e\u003ccode\u003ed67bfae\u003c/code\u003e\u003c/a\u003e update changelog for v2.38.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/2b1abd81e1c58fb6d440b4637287d3ee09f7f66a\"\u003e\u003ccode\u003e2b1abd8\u003c/code\u003e\u003c/a\u003e DELEX (partly) (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/452dd373d138f7ad858dd6e25e2a92753f83498e\"\u003e\u003ccode\u003e452dd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/440\"\u003e#440\u003c/a\u003e from infastin/server-alias\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b5b8ec2cfde407552ea028514409599dbd5e1600\"\u003e\u003ccode\u003eb5b8ec2\u003c/code\u003e\u003c/a\u003e feat: add 'server' alias to 'redis' in lua scripts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/ecc4af14f2444ea1a57d040185781fe197bdfc9d\"\u003e\u003ccode\u003eecc4af1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/439\"\u003e#439\u003c/a\u003e from TomBailey167/xinfo-stream-last-generated-id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/4a2a33e841b359a2569fe9a35d6d46414bf40aec\"\u003e\u003ccode\u003e4a2a33e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/435\"\u003e#435\u003c/a\u003e from evan-choi/fix/xadd-equals-trim-modifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d6261eff59117ccea7387f3a608caa1006b1adef\"\u003e\u003ccode\u003ed6261ef\u003c/code\u003e\u003c/a\u003e feat: add last-generated-id to XINFO STREAM response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/f4d8aa342425de1b740a6f22a7dd230f83e3712a\"\u003e\u003ccode\u003ef4d8aa3\u003c/code\u003e\u003c/a\u003e fix: accept = trim modifier in xadd\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.37.0...v2.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.9.1 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/redis/go-redis/extra/redisotel/v9` from 9.18.0 to 9.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/releases\"\u003egithub.com/redis/go-redis/extra/redisotel/v9's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.19.0\u003c/h2\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md\"\u003egithub.com/redis/go-redis/extra/redisotel/v9's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e9.19.0 (2026-04-27)\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/e7e9866e54f4423addca48ec804044cfca1b30d6\"\u003e\u003ccode\u003ee7e9866\u003c/code\u003e\u003c/a\u003e chore(release): v9.19.0 (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3796\"\u003e#3796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/22b26f4b3ea5c2ab58605092e0937b78a8673267\"\u003e\u003ccode\u003e22b26f4\u003c/code\u003e\u003c/a\u003e feat(ft.aggregate): Add Steps for query building (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3782\"\u003e#3782\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/d9d769491154d4da6d683b73e9dfff5c878c1890\"\u003e\u003ccode\u003ed9d7694\u003c/code\u003e\u003c/a\u003e fix(pool): two fixes for closed connection handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3764\"\u003e#3764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/44e8b7309cf547f620b9849a5a4dd9013cc3660a\"\u003e\u003ccode\u003e44e8b73\u003c/code\u003e\u003c/a\u003e fix(sch): auto hostname type detection (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3789\"\u003e#3789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/ad21622ce8dba26c4ac7dc0fbf74a0bd278d2c19\"\u003e\u003ccode\u003ead21622\u003c/code\u003e\u003c/a\u003e fix(hello): do not send maintnotifications handshake when hello fails (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/1a7ac744c3f98b415852b4c9842b97991e3e4d91\"\u003e\u003ccode\u003e1a7ac74\u003c/code\u003e\u003c/a\u003e fix(pool): suppress pool Close() errors for stale connections (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3778\"\u003e#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/903d6bd360af9ea53d4af4ca652d18b915398c7d\"\u003e\u003ccode\u003e903d6bd\u003c/code\u003e\u003c/a\u003e fix(retry): make dial tcp error redirectable (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3786\"\u003e#3786\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3787\"\u003e#3787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/00a551b3b468687e5e06b295b419292786bcdc99\"\u003e\u003ccode\u003e00a551b\u003c/code\u003e\u003c/a\u003e fix(credentials): leak in wrappedOnClose (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3785\"\u003e#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/b5a6f99b7a9d496bf2e3d68ad9c33e43c23c4df9\"\u003e\u003ccode\u003eb5a6f99\u003c/code\u003e\u003c/a\u003e refactor(pool): remove redundant Conn.closed atomic field (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3783\"\u003e#3783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/928f27aef850b3508b590e41a050f27d29fb14a2\"\u003e\u003ccode\u003e928f27a\u003c/code\u003e\u003c/a\u003e feat(hscan): add support for encoding.BinaryUnmarshaler (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/go-redis/compare/v9.18.0...v9.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/redis/go-redis/v9` from 9.18.0 to 9.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/releases\"\u003egithub.com/redis/go-redis/v9's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.19.0\u003c/h2\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md\"\u003egithub.com/redis/go-redis/v9's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e9.19.0 (2026-04-27)\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/e7e9866e54f4423addca48ec804044cfca1b30d6\"\u003e\u003ccode\u003ee7e9866\u003c/code\u003e\u003c/a\u003e chore(release): v9.19.0 (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3796\"\u003e#3796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/22b26f4b3ea5c2ab58605092e0937b78a8673267\"\u003e\u003ccode\u003e22b26f4\u003c/code\u003e\u003c/a\u003e feat(ft.aggregate): Add Steps for query building (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3782\"\u003e#3782\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/d9d769491154d4da6d683b73e9dfff5c878c1890\"\u003e\u003ccode\u003ed9d7694\u003c/code\u003e\u003c/a\u003e fix(pool): two fixes for closed connection handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3764\"\u003e#3764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/44e8b7309cf547f620b9849a5a4dd9013cc3660a\"\u003e\u003ccode\u003e44e8b73\u003c/code\u003e\u003c/a\u003e fix(sch): auto hostname type detection (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3789\"\u003e#3789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/ad21622ce8dba26c4ac7dc0fbf74a0bd278d2c19\"\u003e\u003ccode\u003ead21622\u003c/code\u003e\u003c/a\u003e fix(hello): do not send maintnotifications handshake when hello fails (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/1a7ac744c3f98b415852b4c9842b97991e3e4d91\"\u003e\u003ccode\u003e1a7ac74\u003c/code\u003e\u003c/a\u003e fix(pool): suppress pool Close() errors for stale connections (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3778\"\u003e#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/903d6bd360af9ea53d4af4ca652d18b915398c7d\"\u003e\u003ccode\u003e903d6bd\u003c/code\u003e\u003c/a\u003e fix(retry): make dial tcp error redirectable (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3786\"\u003e#3786\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3787\"\u003e#3787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/00a551b3b468687e5e06b295b419292786bcdc99\"\u003e\u003ccode\u003e00a551b\u003c/code\u003e\u003c/a\u003e fix(credentials): leak in wrappedOnClose (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3785\"\u003e#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/b5a6f99b7a9d496bf2e3d68ad9c33e43c23c4df9\"\u003e\u003ccode\u003eb5a6f99\u003c/code\u003e\u003c/a\u003e refactor(pool): remove redundant Conn.closed atomic field (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3783\"\u003e#3783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/928f27aef850b3508b590e41a050f27d29fb14a2\"\u003e\u003ccode\u003e928f27a\u003c/code\u003e\u003c/a\u003e feat(hscan): add support for encoding.BinaryUnmarshaler (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/go-redis/compare/v9.18.0...v9.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go` from 0.29.1 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71ff693f1fc\"\u003e\u003ccode\u003e75aa226\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/2f59938fb9ce365d974fe21a426ffffe7231caca\"\u003e\u003ccode\u003e2f59938\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/580abf68d44021bc7e54f8655a2fb66578205527\"\u003e\u003ccode\u003e580abf6\u003c/code\u003e\u003c/a\u003e chore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/testcontainers/testcontainers-go/compare/v0.29.1...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.29.1 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go/modules/postgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/depend...\n\n_Description has been truncated_","html_url":"https://github.com/BMogetta/recess/pull/155","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BMogetta%2Frecess/issues/155","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/155/packages"},{"uuid":"4451321929","node_id":"PR_kwDOSeAiFc7byNsj","number":4,"state":"open","title":"deps(deps): bump the production-dependencies group in /backend with 6 updates","user":"dependabot[bot]","labels":[],"assignees":["nelsonelagunar"],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T04:44:38.000Z","updated_at":"2026-05-15T04:44:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(deps): bump","group_name":"production-dependencies","update_count":6,"packages":[{"name":"github.com/gin-gonic/gin","old_version":"1.9.1","new_version":"1.12.0","repository_url":"https://github.com/gin-gonic/gin"},{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.2.0","new_version":"5.3.1","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/google/uuid","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/google/uuid"},{"name":"github.com/jackc/pgx/v5","old_version":"5.5.3","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/stretchr/testify","old_version":"1.8.4","new_version":"1.11.1","repository_url":"https://github.com/stretchr/testify"},{"name":"golang.org/x/crypto","old_version":"0.21.0","new_version":"0.48.0","repository_url":"https://github.com/golang/crypto"}],"path":"/backend","ecosystem":"go"},"body":"Bumps the production-dependencies group in /backend with 6 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) | `1.9.1` | `1.12.0` |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.2.0` | `5.3.1` |\n| [github.com/google/uuid](https://github.com/google/uuid) | `1.5.0` | `1.6.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.3` | `5.9.2` |\n| [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.8.4` | `1.11.1` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.21.0` | `0.48.0` |\n\nUpdates `github.com/gin-gonic/gin` from 1.9.1 to 1.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/releases\"\u003egithub.com/gin-gonic/gin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e192ac89eefc1c30f7c97ae48a9ffb1c6f1c8c8bc: feat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4203\"\u003e#4203\u003c/a\u003e) (\u003ca href=\"https://github.com/takanuva15\"\u003e\u003ccode\u003e@​takanuva15\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e53410d2e07054369e0960fbe2eed97e1b9966f12: feat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4502\"\u003e#4502\u003c/a\u003e) (\u003ca href=\"https://github.com/raju-mechatronics\"\u003e\u003ccode\u003e@​raju-mechatronics\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eacc55e049e33b401e810dbd8c0d6dcb6b3ba2b05: feat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4423\"\u003e#4423\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e38e765119241d990705169bedb5002a29ae0cbd1: feat(context): implemented Delete method (\u003ca href=\"https://github.com/Spyder01\"\u003e\u003ccode\u003e@​Spyder01\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e771dcc6476d7bc6abb9ec0235ecefa4d38fe6fb0: feat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4420\"\u003e#4420\u003c/a\u003e) (\u003ca href=\"https://github.com/ldesauw\"\u003e\u003ccode\u003e@​ldesauw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4dec17afdff48e8018c83618fbbe69fceeb2b41d: feat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4146\"\u003e#4146\u003c/a\u003e) (\u003ca href=\"https://github.com/wsyqn6\"\u003e\u003ccode\u003e@​wsyqn6\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed7776de7d444935ea4385999711bd6331a98fecb: feat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4145\"\u003e#4145\u003c/a\u003e) (\u003ca href=\"https://github.com/laurentcau\"\u003e\u003ccode\u003e@​laurentcau\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb917b14ff9d189f16a7492be79d123a47806ee19: fix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/2169\"\u003e#2169\u003c/a\u003e) (\u003ca href=\"https://github.com/guonaihong\"\u003e\u003ccode\u003e@​guonaihong\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d1092b3b48addf6f9cd00fe274ec3bd14650eb: fix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4380\"\u003e#4380\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9914178584e42458ff7d23891463a880f58c9d86: fix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4472\"\u003e#4472\u003c/a\u003e) (\u003ca href=\"https://github.com/Nurysso\"\u003e\u003ccode\u003e@​Nurysso\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e2a794cd0b0faa7d829291375b27a3467ea972b0d: fix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4403\"\u003e#4403\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d5a28ed6d3849da820195b6774d212bcc038a9: fix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4422\"\u003e#4422\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5fad976b372e381312f8de69f0969f1284d229d3: fix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4415\"\u003e#4415\u003c/a\u003e) (\u003ca href=\"https://github.com/pawannn\"\u003e\u003ccode\u003e@​pawannn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e63dd3e60cab89c27fb66bce1423bd268d52abad1: fix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4336\"\u003e#4336\u003c/a\u003e) (\u003ca href=\"https://github.com/MondayCha\"\u003e\u003ccode\u003e@​MondayCha\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a: fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e) (\u003ca href=\"https://github.com/dengaleev\"\u003e\u003ccode\u003e@​dengaleev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e234a6d4c00cb77af9852aca0b8289745d5529b4b: fix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4373\"\u003e#4373\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e472d086af2acd924cb4b9d7be0525f7d790f69bc: fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8e07d37c63e5536eb25f4af4c91eabeee4011fba: fix: Correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4511\"\u003e#4511\u003c/a\u003e) (\u003ca href=\"https://github.com/mahanadh\"\u003e\u003ccode\u003e@​mahanadh\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eba093d19477b896ac89a7fc3246af23d290b8e26: chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e) (\u003ca href=\"https://github.com/BobDu\"\u003e\u003ccode\u003e@​BobDu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb2b489dbf4826c2c630717a77fd5e42774625410: chore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/3359\"\u003e#3359\u003c/a\u003e) (\u003ca href=\"https://github.com/WeidiDeng\"\u003e\u003ccode\u003e@​WeidiDeng\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eecb3f7b5e2f3915bf1db240ed5eee572f8dbea36: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4449\"\u003e#4449\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaf6e8b70b8261bb0c99ad094fe552ab92991620a: chore(deps): upgrade quic-go to v0.57.1 (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb309081bc5c137b2aa15701ef53f7f19788da25: chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e) (\u003ca href=\"https://github.com/USA-RedDragon\"\u003e\u003ccode\u003e@​USA-RedDragon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e26c3a628655cad2388380cb8102d6ce7d4875f3b: chore(response): prevent Flush() panic when \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4479\"\u003e#4479\u003c/a\u003e) (\u003ca href=\"https://github.com/Twacqwq\"\u003e\u003ccode\u003e@​Twacqwq\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5dd833f1f26de0eb30eae47b17e05ced2482dc41: chore: bump minimum Go version to 1.24 and update workflows (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4388\"\u003e#4388\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39858a0859c914bd26948fa950477e11bd8d3823: refactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4352\"\u003e#4352\u003c/a\u003e) (\u003ca href=\"https://github.com/russcoss\"\u003e\u003ccode\u003e@​russcoss\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0048f645ee945c4db30593afdea10123e2c30a6: refactor(context): omit the return value names (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4395\"\u003e#4395\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e915e4c90d28ec4cffc6eb146e208ab5a65eac772: refactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4481\"\u003e#4481\u003c/a\u003e) (\u003ca href=\"https://github.com/pauloappbr\"\u003e\u003ccode\u003e@​pauloappbr\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e414de60574449457f3192a7a1d5528940db2836d: refactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4333\"\u003e#4333\u003c/a\u003e) (\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59e9d4a794f12c4f9a6c7bed441b9644e5f6d99b: refactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4314\"\u003e#4314\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ab698dc5110af1977d57226e4995c57dd34c233: refactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4142\"\u003e#4142\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed1a15347b1e45a8ee816193d3578a93bfd73b70f: refactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4467\"\u003e#4467\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee3118cc378d263454098924ebbde7e8d1dd2e904: refactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4392\"\u003e#4392\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e488f8c3ffa579a8d19beb2bae95ff8ef36b3d53f: refactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4529\"\u003e#4529\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9968c4bf9d5a99edc3eee2c068a4c9160ece8915: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4389\"\u003e#4389\u003c/a\u003e) (\u003ca href=\"https://github.com/reddaisyy\"\u003e\u003ccode\u003e@​reddaisyy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea85ef5ce4d0cda8834c59c855068ed48b51192d1: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4432\"\u003e#4432\u003c/a\u003e) (\u003ca href=\"https://github.com/efcking\"\u003e\u003ccode\u003e@​efcking\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e61b67de522a189b568aced4c5c16917c558e3387: ci(bot): increase frequency and group updates for dependencies (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4367\"\u003e#4367\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efb27ef26c2fdfe25344b4c039d8a53551f9e912c: ci(lint): refactor test assertions and linter configuration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4436\"\u003e#4436\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e93ff771e6dbf10e432864b30f3719ac5c84a4d4a: ci(sec): improve type safety and server organization in HTTP middleware (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4437\"\u003e#4437\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee88fc8927a52b74f55bec0351604a56ac0aa1c51: ci(sec): schedule Trivy security scans to run daily at midnight UTC (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4439\"\u003e#4439\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e5ff3ace496a31b138b0820136a146bfb5de0ef: ci: replace vulnerability scanning workflow with Trivy integration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4421\"\u003e#4421\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e00900fb3e1ea9dde33985a0e4f6afec793d5e786: ci: update CI workflows and standardize Trivy config quotes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4531\"\u003e#4531\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eae3f524974fc4f55d18c9e7fae4614503c015226: ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md\"\u003egithub.com/gin-gonic/gin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGin v1.12.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4145\"\u003e#4145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4502\"\u003e#4502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4203\"\u003e#4203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4420\"\u003e#4420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4423\"\u003e#4423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): implemented Delete method (\u003ca href=\"https://github.com/gin-gonic/gin/commit/38e7651\"\u003e#38e7651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4146\"\u003e#4146\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eperf(tree): reduce allocations in findCaseInsensitivePath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4417\"\u003e#4417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(recovery): optimize line reading in stack function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4466\"\u003e#4466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(path): replace regex with custom functions in redirectTrailingSlash (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4414\"\u003e#4414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(tree): optimize path parsing using strings.Count (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4246\"\u003e#4246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/3359\"\u003e#3359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(response): prevent Flush() panic when the underlying ResponseWriter does not implement \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4479\"\u003e#4479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4142\"\u003e#4142\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4481\"\u003e#4481\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4467\"\u003e#4467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4352\"\u003e#4352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4333\"\u003e#4333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4314\"\u003e#4314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4529\"\u003e#4529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4392\"\u003e#4392\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4472\"\u003e#4472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/2169\"\u003e#2169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4336\"\u003e#4336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4415\"\u003e#4415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4422\"\u003e#4422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4373\"\u003e#4373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4380\"\u003e#4380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4403\"\u003e#4403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4511\"\u003e#4511\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates / CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eGin v1.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/73726dc606796a025971fe451f0aa6f1b9b847f6\"\u003e\u003ccode\u003e73726dc\u003c/code\u003e\u003c/a\u003e docs: update documentation to reflect Go version changes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4552\"\u003e#4552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/e292e5caa777bce70b66fe08c94cbe9cef3e2ec9\"\u003e\u003ccode\u003ee292e5c\u003c/code\u003e\u003c/a\u003e docs: document and finalize Gin v1.12.0 release (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4551\"\u003e#4551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ae3f524974fc4f55d18c9e7fae4614503c015226\"\u003e\u003ccode\u003eae3f524\u003c/code\u003e\u003c/a\u003e ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/38534e2bf98a06e1f62d6b24384e90b5f78699bf\"\u003e\u003ccode\u003e38534e2\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4548\"\u003e#4548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/472d086af2acd924cb4b9d7be0525f7d790f69bc\"\u003e\u003ccode\u003e472d086\u003c/code\u003e\u003c/a\u003e fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/fb2583442c4d9bccb75e6d26f1aa6e7c01950db6\"\u003e\u003ccode\u003efb25834\u003c/code\u003e\u003c/a\u003e test(context): use http.StatusContinue constant instead of magic number 100 (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/6f1d5fe3cdb171a08928c3c9dd3fbcfc9ee1b521\"\u003e\u003ccode\u003e6f1d5fe\u003c/code\u003e\u003c/a\u003e test(render): add comprehensive error handling tests (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4541\"\u003e#4541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a\"\u003e\u003ccode\u003e5c00df8\u003c/code\u003e\u003c/a\u003e fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/db309081bc5c137b2aa15701ef53f7f19788da25\"\u003e\u003ccode\u003edb30908\u003c/code\u003e\u003c/a\u003e chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ba093d19477b896ac89a7fc3246af23d290b8e26\"\u003e\u003ccode\u003eba093d1\u003c/code\u003e\u003c/a\u003e chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gin-gonic/gin/compare/v1.9.1...v1.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔐 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd spellcheck Github action to catch common spelling mistakes by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithNotBeforeRequired\u003c/code\u003e parser option and add test coverage by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/456\"\u003egolang-jwt/jwt#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate godoc example func to properly refer to \u003ccode\u003eNewWithClaims()\u003c/code\u003e by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/459\"\u003egolang-jwt/jwt#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate github workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/462\"\u003egolang-jwt/jwt#462\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional test for CustomClaims that validates unmarshalling behaviour by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/457\"\u003egolang-jwt/jwt#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix early file close in jwt cli by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/472\"\u003egolang-jwt/jwt#472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TPM signature reference by \u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove misleading ParserOptions documentation in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/484\"\u003egolang-jwt/jwt#484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSave signature to Token struct after successful signing by \u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e by \u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e👒 Dependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump crate-ci/typos from 1.34.0 to 1.35.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/461\"\u003egolang-jwt/jwt#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.35.4 to 1.36.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/470\"\u003egolang-jwt/jwt#470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/478\"\u003egolang-jwt/jwt#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.36.2 to 1.39.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/480\"\u003egolang-jwt/jwt#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/481\"\u003egolang-jwt/jwt#481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/469\"\u003egolang-jwt/jwt#469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/488\"\u003egolang-jwt/jwt#488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/487\"\u003egolang-jwt/jwt#487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.40.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/490\"\u003egolang-jwt/jwt#490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.41.0 to 1.42.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/492\"\u003egolang-jwt/jwt#492\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump GitHub workflows and Go versions by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/438\"\u003egolang-jwt/jwt#438\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplementing validation of multiple audiences by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/433\"\u003egolang-jwt/jwt#433\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 7 to 8 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/440\"\u003egolang-jwt/jwt#440\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db\"\u003e\u003ccode\u003e7ceae61\u003c/code\u003e\u003c/a\u003e Add release.yml for changelog configuration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5\"\u003e\u003ccode\u003edce8e4d\u003c/code\u003e\u003c/a\u003e Set token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/414\"\u003e#414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e\"\u003e\u003ccode\u003e8889e20\u003c/code\u003e\u003c/a\u003e Save signature to Token struct after successful signing (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1\"\u003e\u003ccode\u003ed237f82\u003c/code\u003e\u003c/a\u003e ci: update github-actions schedule interval to monthly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116\"\u003e\u003ccode\u003ed8dce95\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.41.0 to 1.42.1 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290\"\u003e\u003ccode\u003ee931803\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.40.0 to 1.41.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/490\"\u003e#490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d\"\u003e\u003ccode\u003ee6a0afa\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/487\"\u003e#487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e\"\u003e\u003ccode\u003e9f85c9e\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.39.0 to 1.40.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/488\"\u003e#488\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd\"\u003e\u003ccode\u003e60a8669\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/469\"\u003e#469\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434\"\u003e\u003ccode\u003e76f5828\u003c/code\u003e\u003c/a\u003e Remove misleading ParserOptions documentation (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/484\"\u003e#484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/uuid` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/uuid/releases\"\u003egithub.com/google/uuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/google/uuid/compare/v1.5.0...v1.6.0\"\u003e1.6.0\u003c/a\u003e (2024-01-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd Max UUID constant (\u003ca href=\"https://redirect.github.com/google/uuid/issues/149\"\u003e#149\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3\"\u003ec58770e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in version 7 uuid documentation (\u003ca href=\"https://redirect.github.com/google/uuid/issues/153\"\u003e#153\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06\"\u003e016b199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMonotonicity in UUIDv7 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/150\"\u003e#150\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6\"\u003ea2b2b32\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/uuid/blob/master/CHANGELOG.md\"\u003egithub.com/google/uuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/google/uuid/compare/v1.5.0...v1.6.0\"\u003e1.6.0\u003c/a\u003e (2024-01-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd Max UUID constant (\u003ca href=\"https://redirect.github.com/google/uuid/issues/149\"\u003e#149\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3\"\u003ec58770e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in version 7 uuid documentation (\u003ca href=\"https://redirect.github.com/google/uuid/issues/153\"\u003e#153\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06\"\u003e016b199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMonotonicity in UUIDv7 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/150\"\u003e#150\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6\"\u003ea2b2b32\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/0f11ee6918f41a04c201eceeadf612a377bc7fbc\"\u003e\u003ccode\u003e0f11ee6\u003c/code\u003e\u003c/a\u003e chore(master): release 1.6.0 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/16939dafc37a38d2743810a8bdf60fdad6a0f3a3\"\u003e\u003ccode\u003e16939da\u003c/code\u003e\u003c/a\u003e chore(tests):  add strict monotonicity test case for uuid v7. (\u003ca href=\"https://redirect.github.com/google/uuid/issues/154\"\u003e#154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06\"\u003e\u003ccode\u003e016b199\u003c/code\u003e\u003c/a\u003e fix: fix typo in version 7 uuid documentation (\u003ca href=\"https://redirect.github.com/google/uuid/issues/153\"\u003e#153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/1d8b6ea0990d688105843a9a67b1d07222350502\"\u003e\u003ccode\u003e1d8b6ea\u003c/code\u003e\u003c/a\u003e ci: set token permissions to github workflows (\u003ca href=\"https://redirect.github.com/google/uuid/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6\"\u003e\u003ccode\u003ea2b2b32\u003c/code\u003e\u003c/a\u003e fix: Monotonicity in UUIDv7 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/150\"\u003e#150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3\"\u003e\u003ccode\u003ec58770e\u003c/code\u003e\u003c/a\u003e feat: add Max UUID constant (\u003ca href=\"https://redirect.github.com/google/uuid/issues/149\"\u003e#149\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/uuid/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.5.3 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.3...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/stretchr/testify` from 1.8.4 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stretchr/testify/releases\"\u003egithub.com/stretchr/testify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1785\"\u003e#1785\u003c/a\u003e introduced in v1.11.0 where expected argument values implementing the stringer interface (\u003ccode\u003eString() string\u003c/code\u003e) with a method which mutates their value, when passed to mock.Mock.On (\u003ccode\u003em.On(\u0026quot;Method\u0026quot;, \u0026lt;expected\u0026gt;).Return()\u003c/code\u003e) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1788\"\u003estretchr/testify#1788\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\"\u003ehttps://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFunctional Changes\u003c/h3\u003e\n\u003cp\u003ev1.11.0 Includes a number of performance improvements.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCall stack perf change for CallerInfo by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1614\"\u003estretchr/testify#1614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLazily render mock diff output on successful match by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1615\"\u003estretchr/testify#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check early in Eventually, EventuallyWithT, and Never by \u003ca href=\"https://github.com/cszczepaniak\"\u003e\u003ccode\u003e@​cszczepaniak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1427\"\u003estretchr/testify#1427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: add IsNotType by \u003ca href=\"https://github.com/bartventer\"\u003e\u003ccode\u003e@​bartventer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1730\"\u003estretchr/testify#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.JSONEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1754\"\u003estretchr/testify#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.YAMLEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1755\"\u003estretchr/testify#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: faster and simpler isEmpty using reflect.Value.IsZero by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1761\"\u003estretchr/testify#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: faster methods filtering (internal refactor) by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1758\"\u003estretchr/testify#1758\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eassert.ErrorAs: log target type by \u003ca href=\"https://github.com/craig65535\"\u003e\u003ccode\u003e@​craig65535\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1345\"\u003estretchr/testify#1345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix failure message formatting for Positive and Negative asserts in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1062\"\u003estretchr/testify#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorIs message when error is nil but an error was expected by \u003ca href=\"https://github.com/tsioftas\"\u003e\u003ccode\u003e@​tsioftas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1681\"\u003estretchr/testify#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix Subset/NotSubset when calling with mixed input types by \u003ca href=\"https://github.com/siliconbrain\"\u003e\u003ccode\u003e@​siliconbrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1729\"\u003estretchr/testify#1729\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorAs failure message when error is nil by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1734\"\u003estretchr/testify#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock.AssertNumberOfCalls: improve error msg by \u003ca href=\"https://github.com/3scalation\"\u003e\u003ccode\u003e@​3scalation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1743\"\u003estretchr/testify#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation, Build \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Fix typo in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1688\"\u003estretchr/testify#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace deprecated io/ioutil with io and os by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1684\"\u003estretchr/testify#1684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument consequences of calling t.FailNow() by \u003ca href=\"https://github.com/greg0ire\"\u003e\u003ccode\u003e@​greg0ire\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1710\"\u003estretchr/testify#1710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update docs for Unset \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1621\"\u003e#1621\u003c/a\u003e by \u003ca href=\"https://github.com/techfg\"\u003e\u003ccode\u003e@​techfg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1709\"\u003estretchr/testify#1709\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: apply gofmt to examples by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1687\"\u003estretchr/testify#1687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use %q and %T to simplify fmt.Sprintf by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1674\"\u003estretchr/testify#1674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePropose Christophe Colombier (ccoVeille) as approver by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1716\"\u003estretchr/testify#1716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documentation for the Error function in assert or require package by \u003ca href=\"https://github.com/architagr\"\u003e\u003ccode\u003e@​architagr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1675\"\u003estretchr/testify#1675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: remove deprecated build constraints by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1671\"\u003estretchr/testify#1671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: apply gofumpt to internal test suite by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1739\"\u003estretchr/testify#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: fix shebang in .ci.*.sh scripts by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1746\"\u003estretchr/testify#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert,require: enable parallel testing on (almost) all top tests by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1747\"\u003estretchr/testify#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite.Passed: add one more status test report by \u003ca href=\"https://github.com/Ararsa-Derese\"\u003e\u003ccode\u003e@​Ararsa-Derese\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1706\"\u003estretchr/testify#1706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Helper() method in internal mocks and assert.CollectT by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1423\"\u003estretchr/testify#1423\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.Same/NotSame: improve usage of Sprintf by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1742\"\u003estretchr/testify#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock: enable parallel testing on internal testsuite by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1756\"\u003estretchr/testify#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: cleanup use of 'testing' internals at runtime by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1751\"\u003estretchr/testify#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check test failure message for Empty and NotEmpty  by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1745\"\u003estretchr/testify#1745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/2a57335dc9cd6833daa820bc94d9b40c26a7917d\"\u003e\u003ccode\u003e2a57335\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1788\"\u003e#1788\u003c/a\u003e from brackendawson/1785-backport-1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/af8c91234f184009f57ef29027b39ca89cb00100\"\u003e\u003ccode\u003eaf8c912\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/b7801fbf5cd58d201296d5d0e132d1849966dbd4\"\u003e\u003ccode\u003eb7801fb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1778\"\u003e#1778\u003c/a\u003e from stretchr/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/69831f3b08c40d56a09d0be93e9d5ae034f1590b\"\u003e\u003ccode\u003e69831f3\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/a53be35c3b0cfcd5189cffcfd75df60ea581104c\"\u003e\u003ccode\u003ea53be35\u003c/code\u003e\u003c/a\u003e Improve captureTestingT helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/aafb604176db7e1f2c9810bc90d644291d057687\"\u003e\u003ccode\u003eaafb604\u003c/code\u003e\u003c/a\u003e mock: improve formatting of error message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7218e0390acd2aea3edb18574110ec2753c0aeef\"\u003e\u003ccode\u003e7218e03\u003c/code\u003e\u003c/a\u003e improve error msg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/929a2126c2702df436312656a0304580b526c6e9\"\u003e\u003ccode\u003e929a212\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1758\"\u003e#1758\u003c/a\u003e from stretchr/dolmen/suite-faster-method-filtering\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/bc7459ec38128532ff32f23cfab4ea0b725210f2\"\u003e\u003ccode\u003ebc7459e\u003c/code\u003e\u003c/a\u003e suite: faster filtering of methods (-testify.m)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7d37b5c962954410bcd7a71ff3a77c79514056d1\"\u003e\u003ccode\u003e7d37b5c\u003c/code\u003e\u003c/a\u003e suite: refactor methodFilter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/stretchr/testify/compare/v1.8.4...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.21.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e08b06753d6a72f1fe375b6e0fefefb39917c165\"\u003e\u003ccode\u003ee08b067\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7d0074ccc6f17acbf2ebb10db06d492e08f887dc\"\u003e\u003ccode\u003e7d0074c\u003c/code\u003e\u003c/a\u003e scrypt: fix panic on parameters \u0026lt;= 0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/506e022208b864bc3c9c4a416fe56be75d10ad24\"\u003e\u003ccode\u003e506e022\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7dacc380ba001e8fe7c3c7a46bf3cbdaa5064df9\"\u003e\u003ccode\u003e7dacc38\u003c/code\u003e\u003c/a\u003e chacha20poly1305: error out in fips140=only mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.21.0...v0.48.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/nelsonelagunar/rh-platform-active/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nelsonelagunar%2Frh-platform-active/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4450916153","node_id":"PR_kwDOSd7PR87bw5aP","number":7,"state":"open","title":"chore(deps)(deps): Bump the go-minor-and-patch group across 1 directory with 21 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":5,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T03:10:08.000Z","updated_at":"2026-05-15T03:52:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): Bump","group_name":"go-minor-and-patch","update_count":21,"packages":[{"name":"github.com/alicebob/miniredis/v2","old_version":"2.37.0","new_version":"2.38.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/jackc/pgx/v5","old_version":"5.7.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/onsi/ginkgo/v2","old_version":"2.27.2","new_version":"2.28.3","repository_url":"https://github.com/onsi/ginkgo"},{"name":"github.com/redis/go-redis/v9","old_version":"9.18.0","new_version":"9.19.0","repository_url":"https://github.com/redis/go-redis"},{"name":"github.com/spf13/cobra","old_version":"1.10.0","new_version":"1.10.2","repository_url":"https://github.com/spf13/cobra"},{"name":"go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc","old_version":"0.60.0","new_version":"0.68.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go-contrib"},{"name":"go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp","old_version":"0.61.0","new_version":"0.68.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go-contrib"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc","old_version":"1.34.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"golang.org/x/time","old_version":"0.9.0","new_version":"0.15.0","repository_url":"https://github.com/golang/time"},{"name":"k8s.io/api","old_version":"0.35.0","new_version":"0.36.1","repository_url":"https://github.com/kubernetes/api"},{"name":"k8s.io/client-go","old_version":"0.35.0","new_version":"0.36.1","repository_url":"https://github.com/kubernetes/client-go"},{"name":"modernc.org/sqlite","old_version":"1.46.1","new_version":"1.50.1"},{"name":"sigs.k8s.io/controller-runtime","old_version":"0.23.1","new_version":"0.24.1","repository_url":"https://github.com/kubernetes-sigs/controller-runtime"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-minor-and-patch group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.37.0` | `2.38.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.7.4` | `5.9.2` |\n| [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) | `2.27.2` | `2.28.3` |\n| [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) | `9.18.0` | `9.19.0` |\n| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.0` | `1.10.2` |\n| [go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc](https://github.com/open-telemetry/opentelemetry-go-contrib) | `0.60.0` | `0.68.0` |\n| [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib) | `0.61.0` | `0.68.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.34.0` | `1.43.0` |\n| [golang.org/x/time](https://github.com/golang/time) | `0.9.0` | `0.15.0` |\n| [k8s.io/api](https://github.com/kubernetes/api) | `0.35.0` | `0.36.1` |\n| [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.35.0` | `0.36.1` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.46.1` | `1.50.1` |\n| [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.23.1` | `0.24.1` |\n\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.37.0 to 2.38.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDELEX and fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.38.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d67bfae4c370e8451561165eca6ddc50f056f083\"\u003e\u003ccode\u003ed67bfae\u003c/code\u003e\u003c/a\u003e update changelog for v2.38.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/2b1abd81e1c58fb6d440b4637287d3ee09f7f66a\"\u003e\u003ccode\u003e2b1abd8\u003c/code\u003e\u003c/a\u003e DELEX (partly) (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/452dd373d138f7ad858dd6e25e2a92753f83498e\"\u003e\u003ccode\u003e452dd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/440\"\u003e#440\u003c/a\u003e from infastin/server-alias\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b5b8ec2cfde407552ea028514409599dbd5e1600\"\u003e\u003ccode\u003eb5b8ec2\u003c/code\u003e\u003c/a\u003e feat: add 'server' alias to 'redis' in lua scripts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/ecc4af14f2444ea1a57d040185781fe197bdfc9d\"\u003e\u003ccode\u003eecc4af1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/439\"\u003e#439\u003c/a\u003e from TomBailey167/xinfo-stream-last-generated-id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/4a2a33e841b359a2569fe9a35d6d46414bf40aec\"\u003e\u003ccode\u003e4a2a33e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/435\"\u003e#435\u003c/a\u003e from evan-choi/fix/xadd-equals-trim-modifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d6261eff59117ccea7387f3a608caa1006b1adef\"\u003e\u003ccode\u003ed6261ef\u003c/code\u003e\u003c/a\u003e feat: add last-generated-id to XINFO STREAM response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/f4d8aa342425de1b740a6f22a7dd230f83e3712a\"\u003e\u003ccode\u003ef4d8aa3\u003c/code\u003e\u003c/a\u003e fix: accept = trim modifier in xadd\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.37.0...v2.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/onsi/ginkgo/v2` from 2.27.2 to 2.28.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/ginkgo/releases\"\u003egithub.com/onsi/ginkgo/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.28.3\u003c/h2\u003e\n\u003ch2\u003e2.28.3\u003c/h2\u003e\n\u003ch3\u003eMaintenance\u003c/h3\u003e\n\u003cp\u003eBump all dependencies\u003c/p\u003e\n\u003ch2\u003ev2.28.2\u003c/h2\u003e\n\u003ch2\u003e2.28.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]\u003c/li\u003e\n\u003cli\u003eImplement shell completion [94151c8]\u003c/li\u003e\n\u003cli\u003eAdd asan CLI option mirroring msan implementation [4d21dbb]\u003c/li\u003e\n\u003cli\u003eBump uri from 1.0.3 to 1.0.4 in /docs (\u003ca href=\"https://redirect.github.com/onsi/ginkgo/issues/1630\"\u003e#1630\u003c/a\u003e) [c102161]\u003c/li\u003e\n\u003cli\u003efix aspect ratio [9619647]\u003c/li\u003e\n\u003cli\u003eupdate logos [5779304]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.28.1\u003c/h2\u003e\n\u003ch2\u003e2.28.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003ev2.28.0\u003c/h2\u003e\n\u003ch2\u003e2.28.0\u003c/h2\u003e\n\u003cp\u003eGinkgo's SemVer filter now supports filtering multiple components by SemVer version:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eIt(\u0026quot;should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)\u0026quot;, SemVerConstraint(\u0026quot;\u0026gt;= 3.2.0\u0026quot;), ComponentSemVerConstraint(\u0026quot;redis\u0026quot;, \u0026quot;\u0026gt;= 8.0.0\u0026quot;) func() {\n    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is \u0026gt;= 8.0.0\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003ecan be filtered in or out with an invocation like:\u003c/p\u003e\n\u003cpre lang=\"bash\"\u003e\u003ccode\u003eginkgo --sem-ver-filter=\u0026quot;2.1.1, redis=8.2.0\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eHuge thanks to \u003ca href=\"https://github.com/Icarus9913\"\u003e\u003ccode\u003e@​Icarus9913\u003c/code\u003e\u003c/a\u003e for working on this!\u003c/p\u003e\n\u003ch2\u003ev2.27.5\u003c/h2\u003e\n\u003ch2\u003e2.27.5\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003eDon't make a new formatter for each GinkgoT(); that's just silly and uses precious memory\u003c/p\u003e\n\u003ch2\u003ev2.27.4\u003c/h2\u003e\n\u003ch2\u003e2.27.4\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md\"\u003egithub.com/onsi/ginkgo/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.28.3\u003c/h2\u003e\n\u003ch3\u003eMaintenance\u003c/h3\u003e\n\u003cp\u003eBump all dependencies\u003c/p\u003e\n\u003ch2\u003e2.28.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]\u003c/li\u003e\n\u003cli\u003eImplement shell completion [94151c8]\u003c/li\u003e\n\u003cli\u003eAdd asan CLI option mirroring msan implementation [4d21dbb]\u003c/li\u003e\n\u003cli\u003eBump uri from 1.0.3 to 1.0.4 in /docs (\u003ca href=\"https://redirect.github.com/onsi/ginkgo/issues/1630\"\u003e#1630\u003c/a\u003e) [c102161]\u003c/li\u003e\n\u003cli\u003efix aspect ratio [9619647]\u003c/li\u003e\n\u003cli\u003eupdate logos [5779304]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.28.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003e2.28.0\u003c/h2\u003e\n\u003cp\u003eGinkgo's SemVer filter now supports filtering multiple components by SemVer version:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eIt(\u0026quot;should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)\u0026quot;, SemVerConstraint(\u0026quot;\u0026gt;= 3.2.0\u0026quot;), ComponentSemVerConstraint(\u0026quot;redis\u0026quot;, \u0026quot;\u0026gt;= 8.0.0\u0026quot;) func() {\n    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is \u0026gt;= 8.0.0\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003ecan be filtered in or out with an invocation like:\u003c/p\u003e\n\u003cpre lang=\"bash\"\u003e\u003ccode\u003eginkgo --sem-ver-filter=\u0026quot;2.1.1, redis=8.2.0\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eHuge thanks to \u003ca href=\"https://github.com/Icarus9913\"\u003e\u003ccode\u003e@​Icarus9913\u003c/code\u003e\u003c/a\u003e for working on this!\u003c/p\u003e\n\u003ch2\u003e2.27.5\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003eDon't make a new formatter for each GinkgoT(); that's just silly and uses precious memory\u003c/p\u003e\n\u003ch2\u003e2.27.4\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.27.3\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003ereport exit result in case of failure [1c9f356]\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/5de9c152e440036fef089e065449ecaae64264f9\"\u003e\u003ccode\u003e5de9c15\u003c/code\u003e\u003c/a\u003e v2.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/7e2fa191179736dde68165bc101e99c4980fe124\"\u003e\u003ccode\u003e7e2fa19\u003c/code\u003e\u003c/a\u003e bump dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/1a819128ddbbcc39f57ac8716943d82c4bd6ef6f\"\u003e\u003ccode\u003e1a81912\u003c/code\u003e\u003c/a\u003e v2.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/f3a36b6dfbb5576e0f29fff37944a0b5f9aca079\"\u003e\u003ccode\u003ef3a36b6\u003c/code\u003e\u003c/a\u003e Add ArtifactDir() to support Go 1.26 testing.TB interface\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/94151c8fa4ecd9240c78548dcedfb7791b9c4e7e\"\u003e\u003ccode\u003e94151c8\u003c/code\u003e\u003c/a\u003e Implement shell completion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/4d21dbbdf4285c1a76058f77aed1bb1adc4a77ed\"\u003e\u003ccode\u003e4d21dbb\u003c/code\u003e\u003c/a\u003e Add asan CLI option mirroring msan implementation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/c1021613df439a0d5d68fc04238c0fe06a201e89\"\u003e\u003ccode\u003ec102161\u003c/code\u003e\u003c/a\u003e Bump uri from 1.0.3 to 1.0.4 in /docs (\u003ca href=\"https://redirect.github.com/onsi/ginkgo/issues/1630\"\u003e#1630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/96196475f2d8b069fa8e6a4529d7938e015fc2bf\"\u003e\u003ccode\u003e9619647\u003c/code\u003e\u003c/a\u003e fix aspect ratio\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/5779304bdba168d5e65680aee7f8a8ef2795eb41\"\u003e\u003ccode\u003e5779304\u003c/code\u003e\u003c/a\u003e update logos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/5d1d628ac86668c8f944c8c491c3d1ab86b3bed4\"\u003e\u003ccode\u003e5d1d628\u003c/code\u003e\u003c/a\u003e v2.28.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/onsi/ginkgo/compare/v2.27.2...v2.28.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/onsi/gomega` from 1.38.2 to 1.40.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/gomega/releases\"\u003egithub.com/onsi/gomega's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.40.0\u003c/h2\u003e\n\u003ch2\u003e1.40.0\u003c/h2\u003e\n\u003cp\u003eWe're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega.  It is a limitation of the go mod toolchain that \u003cem\u003etest\u003c/em\u003e subdependencies of your project's direct dependencies get pulled in as \u003cem\u003eindirect\u003c/em\u003e dependencies.  In the case of Gomega, this ends up pulling in all of Ginkgo into your \u003ccode\u003ego.mod\u003c/code\u003e even if you are only using Gomega (Gomega uses Ginkgo for its own tests).\u003c/p\u003e\n\u003cp\u003eGoing forward, releases will strip out all tests, tidy up the \u003ccode\u003ego.mod\u003c/code\u003e and then push this stripped down version to a new \u003ccode\u003emaster-lite\u003c/code\u003e branch.  These stripped-down versions will receive the \u003ccode\u003evx.y.z\u003c/code\u003e git tag and will be picked up by the go toolchain.\u003c/p\u003e\n\u003cp\u003ePlease open an issue if this new release process causes unexpected changes for your projects.\u003c/p\u003e\n\u003ch2\u003ev1.39.1\u003c/h2\u003e\n\u003ch2\u003e1.39.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003ev1.39.0\u003c/h2\u003e\n\u003ch2\u003e1.39.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cp\u003eAdd \u003ccode\u003eMatchErrorStrictly\u003c/code\u003e which only passes if \u003ccode\u003eerrors.Is(actual, expected)\u003c/code\u003e returns true.  \u003ccode\u003eMatchError\u003c/code\u003e, by contrast, will fallback to string comparison.\u003c/p\u003e\n\u003ch2\u003ev1.38.3\u003c/h2\u003e\n\u003ch2\u003e1.38.3\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003emake string formatitng more consistent for users who use format.Object directly\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/gomega/blob/master/CHANGELOG.md\"\u003egithub.com/onsi/gomega's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.40.0\u003c/h2\u003e\n\u003cp\u003eWe're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega.  It is a limitation of the go mod toolchain that \u003cem\u003etest\u003c/em\u003e subdependencies of your project's direct dependencies get pulled in as \u003cem\u003eindirect\u003c/em\u003e dependencies.  In the case of Gomega, this ends up pulling in all of Ginkgo into your \u003ccode\u003ego.mod\u003c/code\u003e even if you are only using Gomega (Gomega uses Ginkgo for its own tests).\u003c/p\u003e\n\u003cp\u003eGoing forward, releases will strip out all tests, tidy up the \u003ccode\u003ego.mod\u003c/code\u003e and then push this stripped down version to a new \u003ccode\u003emaster-lite\u003c/code\u003e branch.  These stripped-down versions will receive the \u003ccode\u003evx.y.z\u003c/code\u003e git tag and will be picked up by the go toolchain.\u003c/p\u003e\n\u003cp\u003ePlease open an issue if this new release process causes unexpected changes for your projects.\u003c/p\u003e\n\u003ch2\u003e1.39.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003e1.39.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cp\u003eAdd \u003ccode\u003eMatchErrorStrictly\u003c/code\u003e which only passes if \u003ccode\u003eerrors.Is(actual, expected)\u003c/code\u003e returns true.  \u003ccode\u003eMatchError\u003c/code\u003e, by contrast, will fallback to string comparison.\u003c/p\u003e\n\u003ch2\u003e1.38.3\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003emake string formatitng more consistent for users who use format.Object directly\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/87ee9d3caabba627e5951958be800828b85f0370\"\u003e\u003ccode\u003e87ee9d3\u003c/code\u003e\u003c/a\u003e v1.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/ea660274df4319411eea463c942d1d3a56e6c2e6\"\u003e\u003ccode\u003eea66027\u003c/code\u003e\u003c/a\u003e v1.40.0 (full)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/e3fd789576a5f5b9a35847683804349bb4bbc761\"\u003e\u003ccode\u003ee3fd789\u003c/code\u003e\u003c/a\u003e update docs to reflect new versioning strategy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/7d4ee309b2c28ab1854424f70c99a173650ab2f6\"\u003e\u003ccode\u003e7d4ee30\u003c/code\u003e\u003c/a\u003e first push to master-lite\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/e4a82d1a2de91721bb249fe9532c4d9211920363\"\u003e\u003ccode\u003ee4a82d1\u003c/code\u003e\u003c/a\u003e Bump github/codeql-action from 3 to 4 (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/875\"\u003e#875\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/af627234340a2e1d40074d6e6860a1b41dc03204\"\u003e\u003ccode\u003eaf62723\u003c/code\u003e\u003c/a\u003e Bump rexml from 3.4.0 to 3.4.2 in /docs (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/870\"\u003e#870\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/e1642211b3906ab5456d9d3ed7cfd9edd11f2d63\"\u003e\u003ccode\u003ee164221\u003c/code\u003e\u003c/a\u003e Bump github.com/onsi/ginkgo/v2 from 2.28.0 to 2.28.1 (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/895\"\u003e#895\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/334a282f9d59760a3e737e5b61400a3162997803\"\u003e\u003ccode\u003e334a282\u003c/code\u003e\u003c/a\u003e Bump faraday from 2.12.2 to 2.14.1 in /docs (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/896\"\u003e#896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/1a25a36414f51967615277623eed3b85b0ca6ce8\"\u003e\u003ccode\u003e1a25a36\u003c/code\u003e\u003c/a\u003e v1.39.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/406faee2de82aa2584ea4d76b0e2662f70ae4d2c\"\u003e\u003ccode\u003e406faee\u003c/code\u003e\u003c/a\u003e bump all deps\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/onsi/gomega/compare/v1.38.2...v1.40.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/redis/go-redis/v9` from 9.18.0 to 9.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/releases\"\u003egithub.com/redis/go-redis/v9's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.19.0\u003c/h2\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md\"\u003egithub.com/redis/go-redis/v9's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e9.19.0 (2026-04-27)\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/e7e9866e54f4423addca48ec804044cfca1b30d6\"\u003e\u003ccode\u003ee7e9866\u003c/code\u003e\u003c/a\u003e chore(release): v9.19.0 (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3796\"\u003e#3796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/22b26f4b3ea5c2ab58605092e0937b78a8673267\"\u003e\u003ccode\u003e22b26f4\u003c/code\u003e\u003c/a\u003e feat(ft.aggregate): Add Steps for query building (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3782\"\u003e#3782\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/d9d769491154d4da6d683b73e9dfff5c878c1890\"\u003e\u003ccode\u003ed9d7694\u003c/code\u003e\u003c/a\u003e fix(pool): two fixes for closed connection handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3764\"\u003e#3764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/44e8b7309cf547f620b9849a5a4dd9013cc3660a\"\u003e\u003ccode\u003e44e8b73\u003c/code\u003e\u003c/a\u003e fix(sch): auto hostname type detection (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3789\"\u003e#3789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/ad21622ce8dba26c4ac7dc0fbf74a0bd278d2c19\"\u003e\u003ccode\u003ead21622\u003c/code\u003e\u003c/a\u003e fix(hello): do not send maintnotifications handshake when hello fails (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/1a7ac744c3f98b415852b4c9842b97991e3e4d91\"\u003e\u003ccode\u003e1a7ac74\u003c/code\u003e\u003c/a\u003e fix(pool): suppress pool Close() errors for stale connections (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3778\"\u003e#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/903d6bd360af9ea53d4af4ca652d18b915398c7d\"\u003e\u003ccode\u003e903d6bd\u003c/code\u003e\u003c/a\u003e fix(retry): make dial tcp error redirectable (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3786\"\u003e#3786\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3787\"\u003e#3787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/00a551b3b468687e5e06b295b419292786bcdc99\"\u003e\u003ccode\u003e00a551b\u003c/code\u003e\u003c/a\u003e fix(credentials): leak in wrappedOnClose (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3785\"\u003e#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/b5a6f99b7a9d496bf2e3d68ad9c33e43c23c4df9\"\u003e\u003ccode\u003eb5a6f99\u003c/code\u003e\u003c/a\u003e refactor(pool): remove redundant Conn.closed atomic field (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3783\"\u003e#3783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/928f27aef850b3508b590e41a050f27d29fb14a2\"\u003e\u003ccode\u003e928f27a\u003c/code\u003e\u003c/a\u003e feat(hscan): add support for encoding.BinaryUnmarshaler (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/go-redis/compare/v9.18.0...v9.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cobra` from 1.10.0 to 1.10.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cobra/releases\"\u003egithub.com/spf13/cobra's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003e🔧 Dependencies\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Migrate from \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e to \u003ccode\u003ego.yaml.in/yaml/v3\u003c/code\u003e by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e - the \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of \u003ccode\u003espf13/cobra\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📈 CI/CD\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix linter and allow CI to pass by \u003ca href=\"https://github.com/marckhouzam\"\u003e\u003ccode\u003e@​marckhouzam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2327\"\u003espf13/cobra#2327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: actions/setup-go v6 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2337\"\u003espf13/cobra#2337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔥✍🏼 Docs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd documentation for repeated flags functionality by \u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🍂 Refactors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace several vars with consts by \u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change minUsagePadding from var to const by \u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🤗 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThank you to our amazing contributors!!!!! 🐍 🚀\u003c/p\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch3\u003e🐛 Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: upgrade pflags v1.0.9 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2305\"\u003espf13/cobra#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ev1.0.9 of pflags brought back \u003ccode\u003eParseErrorsWhitelist\u003c/code\u003e and marked it as deprecated\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.0...v1.10.1\"\u003ehttps://github.com/spf13/cobra/compare/v1.10.0...v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/88b30ab89da2d0d0abb153818746c5a2d30eccec\"\u003e\u003ccode\u003e88b30ab\u003c/code\u003e\u003c/a\u003e chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2336\"\u003e#2336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/346d408fe7d4be00ff9481ea4d43c4abb5e5f77d\"\u003e\u003ccode\u003e346d408\u003c/code\u003e\u003c/a\u003e fix: actions/setup-go v6 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2337\"\u003e#2337\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/fc81d2003469e2a5c440306d04a6d82a54065979\"\u003e\u003ccode\u003efc81d20\u003c/code\u003e\u003c/a\u003e refactor: change minUsagePadding from var to const (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2325\"\u003e#2325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/117698a604b65e80a1ad5b76df67b604bcd992e0\"\u003e\u003ccode\u003e117698a\u003c/code\u003e\u003c/a\u003e refactor: replace several vars with consts (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/e2dd29ddc39acacf3af13013b06e1fe58b5c3599\"\u003e\u003ccode\u003ee2dd29d\u003c/code\u003e\u003c/a\u003e Add documentation for repeated flags functionality (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2316\"\u003e#2316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/062989255670f5e100abf70fa5e291a394915f89\"\u003e\u003ccode\u003e0629892\u003c/code\u003e\u003c/a\u003e Fix linter (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/7da941c3547e93b8c9f70bbd3befca79c6335388\"\u003e\u003ccode\u003e7da941c\u003c/code\u003e\u003c/a\u003e chore: Bump pflag to v1.0.9 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2305\"\u003e#2305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.0...v1.10.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc` from 0.60.0 to 0.68.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/releases\"\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.43.0/v2.5.0/v0.68.0/v0.37.0/v0.23.0/v0.18.0/v0.16.0/v0.15.0\u003c/h2\u003e\n\u003ch2\u003eAdded\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eResource\u003c/code\u003e method to \u003ccode\u003eSDK\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/v0.3.0\u003c/code\u003e to expose the resolved SDK resource from declarative configuration. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8660\"\u003e#8660\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support to set the configuration file via \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eservice\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8674\"\u003e#8674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in tracer provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8687\"\u003e#8687\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in logger provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8686\"\u003e#8686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eOTEL_SEMCONV_STABILITY_OPT_IN\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. Supported values are \u003ccode\u003erpc\u003c/code\u003e (default), \u003ccode\u003erpc/dup\u003c/code\u003e and \u003ccode\u003erpc/old\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8726\"\u003e#8726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003ehttp.route\u003c/code\u003e metric attribute to \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/net/http/otelhttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8632\"\u003e#8632\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanged\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepend \u003ccode\u003e_\u003c/code\u003e to the normalized environment variable name when the key starts with a digit in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, ensuring POSIX compliance. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8678\"\u003e#8678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove experimental types from \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/x\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8529\"\u003e#8529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNormalize cached environment variable names in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, aligning \u003ccode\u003eCarrier.Keys\u003c/code\u003e output with the carrier's normalized key format. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e Prometheus reader converting OTel dot-style label names (e.g. \u003ccode\u003eservice.name\u003c/code\u003e) to underscore-style (\u003ccode\u003eservice_name\u003c/code\u003e) in \u003ccode\u003etarget_info\u003c/code\u003e when both \u003ccode\u003ewithout_type_suffix\u003c/code\u003e and \u003ccode\u003ewithout_units\u003c/code\u003e are set. Use \u003ccode\u003eNoTranslation\u003c/code\u003e instead of \u003ccode\u003eUnderscoreEscapingWithoutSuffixes\u003c/code\u003e to preserve dot-style label names while still suppressing metric name suffixes. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8763\"\u003e#8763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit the request body size at 1MB in \u003ccode\u003ego.opentelemetry.io/contrib/zpages\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8656\"\u003e#8656\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix server spans using the client's address and port for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRemoved\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHost ID resource detector has been removed when configuring the \u003ccode\u003ehost\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecated\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eOTEL_EXPERIMENTAL_CONFIG_FILE\u003c/code\u003e in favour of \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): update module github.com/jgautheron/goconst to v1.9.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8651\"\u003eopen-telemetry/opentelemetry-go-contrib#8651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module go.yaml.in/yaml/v2 to v2.4.4 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8652\"\u003eopen-telemetry/opentelemetry-go-contrib#8652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update golang.org/x/telemetry digest to e526e8a by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8647\"\u003eopen-telemetry/opentelemetry-go-contrib#8647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module k8s.io/klog/v2 to v2.140.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8650\"\u003eopen-telemetry/opentelemetry-go-contrib#8650\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/mgechev/revive to v1.14.0 by \u003ca href=\"https://github.com/mmorel-35\"\u003e\u003ccode\u003e@​mmorel-35\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8646\"\u003eopen-telemetry/opentelemetry-go-contrib#8646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/mgechev/revive to v1.15.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8539\"\u003eopen-telemetry/opentelemetry-go-contrib#8539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix noctx issues by \u003ca href=\"https://github.com/mmorel-35\"\u003e\u003ccode\u003e@​mmorel-35\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8645\"\u003eopen-telemetry/opentelemetry-go-contrib#8645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update golang.org/x by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8655\"\u003eopen-telemetry/opentelemetry-go-contrib#8655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module codeberg.org/chavacava/garif to v0.2.1 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8654\"\u003eopen-telemetry/opentelemetry-go-contrib#8654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/mattn/go-runewidth to v0.0.21 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8653\"\u003eopen-telemetry/opentelemetry-go-contrib#8653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): update module go.opentelemetry.io/proto/otlp to v1.10.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8657\"\u003eopen-telemetry/opentelemetry-go-contrib#8657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLimit the number of bytes read from the zpages body by \u003ca href=\"https://github.com/dmathieu\"\u003e\u003ccode\u003e@​dmathieu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8656\"\u003eopen-telemetry/opentelemetry-go-contrib#8656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): update module github.com/golangci/golangci-lint/v2 to v2.11.2 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8648\"\u003eopen-telemetry/opentelemetry-go-contrib#8648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): update module github.com/golangci/golangci-lint/v2 to v2.11.3 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8661\"\u003eopen-telemetry/opentelemetry-go-contrib#8661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update github.com/securego/gosec/v2 digest to 8895462 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8663\"\u003eopen-telemetry/opentelemetry-go-contrib#8663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eotelconf: support OTEL_CONFIG_FILE as it is no longer experimental by \u003ca href=\"https://github.com/codeboten\"\u003e\u003ccode\u003e@​codeboten\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8639\"\u003eopen-telemetry/opentelemetry-go-contrib#8639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/sonatard/noctx to v0.5.1 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8664\"\u003eopen-telemetry/opentelemetry-go-contrib#8664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/2.5.0/0.68.0/0.37.0/0.23.0/0.18.0/0.16.0/0.15.0] - 2026-04-03\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eResource\u003c/code\u003e method to \u003ccode\u003eSDK\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/v0.3.0\u003c/code\u003e to expose the resolved SDK resource from declarative configuration. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8660\"\u003e#8660\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support to set the configuration file via \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eservice\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8674\"\u003e#8674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in tracer provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8687\"\u003e#8687\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in logger provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8686\"\u003e#8686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eOTEL_SEMCONV_STABILITY_OPT_IN\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. Supported values are \u003ccode\u003erpc\u003c/code\u003e (default), \u003ccode\u003erpc/dup\u003c/code\u003e and \u003ccode\u003erpc/old\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8726\"\u003e#8726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003ehttp.route\u003c/code\u003e metric attribute to \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/net/http/otelhttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8632\"\u003e#8632\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePrepend \u003ccode\u003e_\u003c/code\u003e to the normalized environment variable name when the key starts with a digit in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, ensuring POSIX compliance. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8678\"\u003e#8678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove experimental types from \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/x\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8529\"\u003e#8529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNormalize cached environment variable names in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, aligning \u003ccode\u003eCarrier.Keys\u003c/code\u003e output with the carrier's normalized key format. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e Prometheus reader converting OTel dot-style label names (e.g. \u003ccode\u003eservice.name\u003c/code\u003e) to underscore-style (\u003ccode\u003eservice_name\u003c/code\u003e) in \u003ccode\u003etarget_info\u003c/code\u003e when both \u003ccode\u003ewithout_type_suffix\u003c/code\u003e and \u003ccode\u003ewithout_units\u003c/code\u003e are set. Use \u003ccode\u003eNoTranslation\u003c/code\u003e instead of \u003ccode\u003eUnderscoreEscapingWithoutSuffixes\u003c/code\u003e to preserve dot-style label names while still suppressing metric name suffixes. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8763\"\u003e#8763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit the request body size at 1MB in \u003ccode\u003ego.opentelemetry.io/contrib/zpages\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8656\"\u003e#8656\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix server spans using the client's address and port for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHost ID resource detector has been removed when configuring the \u003ccode\u003ehost\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eOTEL_EXPERIMENTAL_CONFIG_FILE\u003c/code\u003e in favour of \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/2.4.0/0.67.0/0.36.0/0.22.0/0.17.0/0.15.0/0.14.0] - 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd environment variables propagation carrier in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8442\"\u003e#8442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrade \u003ccode\u003ego.opentelemetry.io/otel/semconv\u003c/code\u003e to \u003ccode\u003ev1.40.0\u003c/code\u003e, including updates across instrumentation and detector modules. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8631\"\u003e#8631\u003c/a\u003e)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe semantic conventions v1.40.0 release introduces RPC breaking changes applied in this repository:\n\u003cul\u003e\n\u003cli\u003eRPC spans and metrics no longer include \u003ccode\u003enetwork.protocol.name\u003c/code\u003e, \u003ccode\u003enetwork.protocol.version\u003c/code\u003e, or \u003ccode\u003enetwork.transport\u003c/code\u003e attributes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003erpc.client.request.size\u003c/code\u003e, \u003ccode\u003erpc.client.response.size\u003c/code\u003e, \u003ccode\u003erpc.server.request.size\u003c/code\u003e, and \u003ccode\u003erpc.server.response.size\u003c/code\u003e are no longer emitted in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003erpc.message\u003c/code\u003e span events and their message attributes are no longer emitted in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e (including when \u003ccode\u003eWithMessageEvents\u003c/code\u003e is configured).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/open-telemetry/semantic-conventions/releases/tag/v1.40.0\"\u003esemantic-conventions v1.40.0 release\u003c/a\u003e for complete details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/45977a4b9cf4a60effd1ee07367043f7e9bcae66\"\u003e\u003ccode\u003e45977a4\u003c/code\u003e\u003c/a\u003e Release v1.43.0/v2.5.0/v0.68.0/v0.37.0/v0.23.0/v0.18.0/v0.16.0/v0.15.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8769\"\u003e#8769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/0fcc1524d1a740b3632db418f73236d29536f119\"\u003e\u003ccode\u003e0fcc152\u003c/code\u003e\u003c/a\u003e fix(deps): update module github.com/googlecloudplatform/opentelemetry-operati...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/eaba3cdaa1559cc7425644e21a389f227e30dc86\"\u003e\u003ccode\u003eeaba3cd\u003c/code\u003e\u003c/a\u003e chore(deps): update googleapis to 6f92a3b (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8776\"\u003e#8776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/6df430c48045ad1221f203c01f6656367dd46fd1\"\u003e\u003ccode\u003e6df430c\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/jgautheron/goconst to v1.10.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8771\"\u003e#8771\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/ae90e3237e8d8f14bc3f181e1f82feb1686604f0\"\u003e\u003ccode\u003eae90e32\u003c/code\u003e\u003c/a\u003e Fix otelconf prometheus label escaping (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8763\"\u003e#8763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/f202c3f8000fe3e681621808b5e316fe4749850a\"\u003e\u003ccode\u003ef202c3f\u003c/code\u003e\u003c/a\u003e otelconf: move experimental types to otelconf/x (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8529\"\u003e#8529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/8ddaecee1cc531ae753d4812842745bdfb805208\"\u003e\u003ccode\u003e8ddaece\u003c/code\u003e\u003c/a\u003e fix(deps): update aws-sdk-go-v2 monorepo (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8764\"\u003e#8764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/c7c03a47d4cf7252728b11efd78e2159b437dbd2\"\u003e\u003ccode\u003ec7c03a4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8766\"\u003e#8766\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/717a85a20313ac21712dd055ba2ede71205889e8\"\u003e\u003ccode\u003e717a85a\u003c/code\u003e\u003c/a\u003e envcar: normalize cached environment variable names (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/ad990b6d55811953d06ec88720fa373931fa1a27\"\u003e\u003ccode\u003ead990b6\u003c/code\u003e\u003c/a\u003e fix(deps): update module github.com/aws/smithy-go to v1.24.3 (\u003c...\n\n_Description has been truncated_","html_url":"https://github.com/smittysmee/kybernos/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/smittysmee%2Fkybernos/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"},{"uuid":"4450749074","node_id":"PR_kwDOSd8Bi87bwWxV","number":15,"state":"open","title":"chore(deps): bump github.com/jackc/pgx/v5 from 5.5.5 to 5.9.2 in /services/fleet","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T02:29:43.000Z","updated_at":"2026-05-15T02:29:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.5.5","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"/services/fleet","ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.5.5 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.5...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.5.5\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sophie-nguyenthuthuy/fdi-iiot-gateway/pull/15","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sophie-nguyenthuthuy%2Ffdi-iiot-gateway/issues/15","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/15/packages"},{"uuid":"4444177689","node_id":"PR_kwDOPfH5sc7bbZxs","number":4,"state":"open","title":"Bump the go_modules group across 6 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T07:47:22.000Z","updated_at":"2026-05-15T00:54:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":7,"packages":[{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.39.0","new_version":"1.43.0"},{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.7.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/ydb-platform/ydb-go-sdk/v3","old_version":"3.104.7","new_version":"3.134.2","repository_url":"https://github.com/ydb-platform/ydb-go-sdk"},{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the /packages/clickhouse directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 3 updates in the /packages/db directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go), [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) and [github.com/ydb-platform/ydb-go-sdk/v3](https://github.com/ydb-platform/ydb-go-sdk).\nBumps the go_modules group with 1 update in the /packages/docker-reverse-proxy directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 1 update in the /packages/orchestrator directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 3 updates in the /packages/shared directory: [github.com/grafana/loki](https://github.com/grafana/loki), [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) and [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 1 update in the /tests/integration directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4575a9774dd9415ffc858dd34955493b0031065a\"\u003e\u003ccode\u003e4575a97\u003c/code\u003e\u003c/a\u003e Release 1.41.0/0.63.0/0.17.0/0.0.15 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7977\"\u003e#7977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/66fc10d9dff9653c65bcca111b965137d06f09aa\"\u003e\u003ccode\u003e66fc10d\u003c/code\u003e\u003c/a\u003e fix: add error handling for insecure HTTP endpoints with TLS client configura...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/76e6eec88f186f06a0708b5620324d2b002d9a97\"\u003e\u003ccode\u003e76e6eec\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.5 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7980\"\u003e#7980\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0d50f9008c8c93fe49a7caa45c88c30370479d27\"\u003e\u003ccode\u003e0d50f90\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Generate semconv/v1.40.0\u0026quot; (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7978\"\u003e#7978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c38a4a57c320b6098ca5c92f0a85201034780b1f\"\u003e\u003ccode\u003ec38a4a5\u003c/code\u003e\u003c/a\u003e Generate semconv/v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7929\"\u003e#7929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0f1a22484ec52d6beb1efdb0fa1b63a31e7405af\"\u003e\u003ccode\u003e0f1a224\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7899\"\u003e#7899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c79ebf43eb1cff6dd76a33bb1549f2c082dab604\"\u003e\u003ccode\u003ec79ebf4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/daixiang0/gci to v0.14.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7973\"\u003e#7973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/f75815746541d0d4ac84e1c5955bdcd1a2df2d7d\"\u003e\u003ccode\u003ef758157\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/sonatard/noctx to v0.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7968\"\u003e#7968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/92a11645724515630187def073ae39f1b6cb3c69\"\u003e\u003ccode\u003e92a1164\u003c/code\u003e\u003c/a\u003e fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3cd7c27e840ea3114115459db2e299a27fffaff8\"\u003e\u003ccode\u003e3cd7c27\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7969\"\u003e#7969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.39.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4575a9774dd9415ffc858dd34955493b0031065a\"\u003e\u003ccode\u003e4575a97\u003c/code\u003e\u003c/a\u003e Release 1.41.0/0.63.0/0.17.0/0.0.15 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7977\"\u003e#7977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/66fc10d9dff9653c65bcca111b965137d06f09aa\"\u003e\u003ccode\u003e66fc10d\u003c/code\u003e\u003c/a\u003e fix: add error handling for insecure HTTP endpoints with TLS client configura...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/76e6eec88f186f06a0708b5620324d2b002d9a97\"\u003e\u003ccode\u003e76e6eec\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.5 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7980\"\u003e#7980\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0d50f9008c8c93fe49a7caa45c88c30370479d27\"\u003e\u003ccode\u003e0d50f90\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Generate semconv/v1.40.0\u0026quot; (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7978\"\u003e#7978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c38a4a57c320b6098ca5c92f0a85201034780b1f\"\u003e\u003ccode\u003ec38a4a5\u003c/code\u003e\u003c/a\u003e Generate semconv/v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7929\"\u003e#7929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0f1a22484ec52d6beb1efdb0fa1b63a31e7405af\"\u003e\u003ccode\u003e0f1a224\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7899\"\u003e#7899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c79ebf43eb1cff6dd76a33bb1549f2c082dab604\"\u003e\u003ccode\u003ec79ebf4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/daixiang0/gci to v0.14.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7973\"\u003e#7973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/f75815746541d0d4ac84e1c5955bdcd1a2df2d7d\"\u003e\u003ccode\u003ef758157\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/sonatard/noctx to v0.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7968\"\u003e#7968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/92a11645724515630187def073ae39f1b6cb3c69\"\u003e\u003ccode\u003e92a1164\u003c/code\u003e\u003c/a\u003e fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3cd7c27e840ea3114115459db2e299a27fffaff8\"\u003e\u003ccode\u003e3cd7c27\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7969\"\u003e#7969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ydb-platform/ydb-go-sdk/v3` from 3.104.7 to 3.134.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/releases\"\u003egithub.com/ydb-platform/ydb-go-sdk/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.134.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003etable.Session.Execute\u003c/code\u003e ignoring \u003ccode\u003eoptions.WithCommit()\u003c/code\u003e so transactions were not committed when the option was passed\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.134.1...v3.134.2\"\u003ev3.134.1...v3.134.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.134.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged multi-partition topic writer (\u003ccode\u003etopicoptions.WithWriteToManyPartitions\u003c/code\u003e) so \u003ccode\u003eWrite\u003c/code\u003e and \u003ccode\u003eFlush\u003c/code\u003e block until internal initialization completes, consistent with single-partition writers\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.134.0...v3.134.1\"\u003ev3.134.0...v3.134.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.134.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esugar.RemoveRecursive()\u003c/code\u003e for directories containing external data sources or external tables\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etable.DescribeExternalDataSource()\u003c/code\u003e and \u003ccode\u003etable.DescribeExternalTable()\u003c/code\u003e methods for describing external data sources and external tables\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.133.1...v3.134.0\"\u003ev3.133.1...v3.134.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.133.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eTopicListener.ReadSessionID()\u003c/code\u003e getter\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.133.0...v3.133.1\"\u003ev3.133.0...v3.133.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.133.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithIssuesHandler\u003c/code\u003e context option for surfacing YDB \u003ccode\u003eQueryService\u003c/code\u003e issues to \u003ccode\u003edatabase/sql\u003c/code\u003e callers\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.132.0...v3.133.0\"\u003ev3.132.0...v3.133.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.132.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003etopic.Client.CommitOffset()\u003c/code\u003e method for committing a consumer offset without an active read session\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etopicreader.Reader.ReadSessionID()\u003c/code\u003e method for obtaining the current read session identifier\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.131.0...v3.132.0\"\u003ev3.131.0...v3.132.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.131.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithStatsModeBasic\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeFull\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeProfile\u003c/code\u003e context options for collecting query statistics via \u003ccode\u003edatabase/sql\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.130.0...v3.131.0\"\u003ev3.130.0...v3.131.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.130.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged default for \u003ccode\u003edatabase/sql\u003c/code\u003e driver from \u003ccode\u003eTABLE\u003c/code\u003e service to \u003ccode\u003eQUERY\u003c/code\u003e service\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003e__ydb_partition_key\u003c/code\u003e metadata key to messages for topic writer to store the key used to choose the partition\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.129.0...v3.130.0\"\u003ev3.129.0...v3.130.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.129.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig.WithBuildInfo\u003c/code\u003e option to append child frameworks to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header for all API requests\u003c/li\u003e\n\u003cli\u003eAutomatically added (if used) \u003ccode\u003edatabase/sql\u003c/code\u003e framework to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.128.4...v3.129.0\"\u003ev3.128.4...v3.129.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.128.4\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/blob/master/CHANGELOG.md\"\u003egithub.com/ydb-platform/ydb-go-sdk/v3's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.134.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003etable.Session.Execute\u003c/code\u003e ignoring \u003ccode\u003eoptions.WithCommit()\u003c/code\u003e so transactions were not committed when the option was passed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.134.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged multi-partition topic writer (\u003ccode\u003etopicoptions.WithWriteToManyPartitions\u003c/code\u003e) so \u003ccode\u003eWrite\u003c/code\u003e and \u003ccode\u003eFlush\u003c/code\u003e block until internal initialization completes, consistent with single-partition writers\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.134.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esugar.RemoveRecursive()\u003c/code\u003e for directories containing external data sources or external tables\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etable.DescribeExternalDataSource()\u003c/code\u003e and \u003ccode\u003etable.DescribeExternalTable()\u003c/code\u003e methods for describing external data sources and external tables\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.133.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eTopicListener.ReadSessionID()\u003c/code\u003e getter\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.133.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithIssuesHandler\u003c/code\u003e context option for surfacing YDB \u003ccode\u003eQueryService\u003c/code\u003e issues to \u003ccode\u003edatabase/sql\u003c/code\u003e callers\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.132.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003etopic.Client.CommitOffset()\u003c/code\u003e method for committing a consumer offset without an active read session\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etopicreader.Reader.ReadSessionID()\u003c/code\u003e method for obtaining the current read session identifier\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.131.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithStatsModeBasic\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeFull\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeProfile\u003c/code\u003e context options for collecting query statistics via \u003ccode\u003edatabase/sql\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.130.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged default for \u003ccode\u003edatabase/sql\u003c/code\u003e driver from \u003ccode\u003eTABLE\u003c/code\u003e service to \u003ccode\u003eQUERY\u003c/code\u003e service\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003e__ydb_partition_key\u003c/code\u003e metadata key to messages for topic writer to store the key used to choose the partition\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.129.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig.WithBuildInfo\u003c/code\u003e option to append child frameworks to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header for all API requests\u003c/li\u003e\n\u003cli\u003eAutomatically added (if used) \u003ccode\u003edatabase/sql\u003c/code\u003e framework to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed panic when topic writer is closed unexpectedly\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed panic and \u003ccode\u003eunsupported type\u003c/code\u003e error when passing a nil pointer to a \u003ccode\u003ejson.Marshaler\u003c/code\u003e-implementing type as a \u003ccode\u003edatabase/sql\u003c/code\u003e query parameter (\u003ccode\u003etoType\u003c/code\u003e now handles \u003ccode\u003ejson.Marshaler\u003c/code\u003e and returns \u003ccode\u003etypes.JSON\u003c/code\u003e, matching the existing \u003ccode\u003etoValue\u003c/code\u003e behaviour)\u003c/li\u003e\n\u003cli\u003eSupported pool of decoders, which implement ResettableReader interface\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngraded direct dependency \u003ccode\u003egoogle.golang.org/grpc\u003c/code\u003e to v1.78.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003ego_query_mode\u003c/code\u003e / \u003ccode\u003equery_mode\u003c/code\u003e DSN parameters for table-backed modes (\u003ccode\u003edata\u003c/code\u003e, \u003ccode\u003escan\u003c/code\u003e, \u003ccode\u003escheme\u003c/code\u003e, \u003ccode\u003escripting\u003c/code\u003e) to select the TABLE processor so the default query mode applies\u003c/li\u003e\n\u003cli\u003eFixed a bug where the topic writer was not able to resend messages when the partition was split\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew options for topicwriter:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eWithProducerIDPrefix\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithPartitioningKeyHasher\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithPartitionChooserStrategy\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/6f1e6e33415ae1eb510998c3822cb729e66edf60\"\u003e\u003ccode\u003e6f1e6e3\u003c/code\u003e\u003c/a\u003e Release v3.134.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/25dcff4c41153f1f9413512ba12999b40bf7154d\"\u003e\u003ccode\u003e25dcff4\u003c/code\u003e\u003c/a\u003e Fix table.Session.Execute ignoring options.WithCommit() (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/66fc52ecf59f2468d428a9e5005d9fb926dad043\"\u003e\u003ccode\u003e66fc52e\u003c/code\u003e\u003c/a\u003e Release v3.134.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/042c9243cd61cecd8a53b092c1da0983bd7ec9e3\"\u003e\u003ccode\u003e042c924\u003c/code\u003e\u003c/a\u003e LOGBROKER-10368 Add wait init to multiwriter (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2088\"\u003e#2088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/c1ddb52f3fc7808eb95614dcaf8a460b5d0e8ec1\"\u003e\u003ccode\u003ec1ddb52\u003c/code\u003e\u003c/a\u003e Remove unused code in database/sql connector (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2085\"\u003e#2085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/d9d2943eb28cde8ac0e038045870bf08e2c20de8\"\u003e\u003ccode\u003ed9d2943\u003c/code\u003e\u003c/a\u003e LOGBROKER-10206 Add tests (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2075\"\u003e#2075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/f3aeeb14d9aa27769be738a396b89407368e4256\"\u003e\u003ccode\u003ef3aeeb1\u003c/code\u003e\u003c/a\u003e Modernize Go codebase: adopt modern idioms and upgrade CI tooling (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2082\"\u003e#2082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/f2452c1545d78452231445f03264e89c18e9ea9f\"\u003e\u003ccode\u003ef2452c1\u003c/code\u003e\u003c/a\u003e Release v3.134.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/de3907a808e40ccdf1c94e50d28e11c45da6e94b\"\u003e\u003ccode\u003ede3907a\u003c/code\u003e\u003c/a\u003e Describe external data source / external table (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2079\"\u003e#2079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/589dacfe18eee68b6ca650b48d6e84d7460f9d49\"\u003e\u003ccode\u003e589dacf\u003c/code\u003e\u003c/a\u003e Release v3.133.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.104.7...v3.134.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4575a9774dd9415ffc858dd34955493b0031065a\"\u003e\u003ccode\u003e4575a97\u003c/code\u003e\u003c/a\u003e Release 1.41.0/0.63.0/0.17.0/0.0.15 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7977\"\u003e#7977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/66fc10d9dff9653c65bcca111b965137d06f09aa\"\u003e\u003ccode\u003e66fc10d\u003c/code\u003e\u003c/a\u003e fix: add error handling for insecure HTTP endpoints with TLS client configura...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/76e6eec88f186f06a0708b5620324d2b002d9a97\"\u003e\u003ccode\u003e76e6eec\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.5 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7980\"\u003e#7980\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0d50f9008c8c93fe49a7caa45c88c30370479d27\"\u003e\u003ccode\u003e0d50f90\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Generate semconv/v1.40.0\u0026quot; (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7978\"\u003e#7978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c38a4a57c320b6098ca5c92f0a85201034780b1f\"\u003e\u003ccode\u003ec38a4a5\u003c/code\u003e\u003c/a\u003e Generate semconv/v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7929\"\u003e#7929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0f1a22484ec52d6beb1efdb0fa1b63a31e7405af\"\u003e\u003ccode\u003e0f1a224\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7899\"\u003e#7899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c79ebf43eb1cff6dd76a33bb1549f2c082dab604\"\u003e\u003ccode\u003ec79ebf4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/daixiang0/gci to v0.14.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7973\"\u003e#7973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/f75815746541d0d4ac84e1c5955bdcd1a2df2d7d\"\u003e\u003ccode\u003ef758157\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/sonatard/noctx to v0.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7968\"\u003e#7968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/92a11645724515630187def073ae39f1b6cb3c69\"\u003e\u003ccode\u003e92a1164\u003c/code\u003e\u003c/a\u003e fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3cd7c27e840ea3114115459db2e299a27fffaff8\"\u003e\u003ccode\u003e3cd7c27\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7969\"\u003e#7969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n...\n\n_Description has been truncated_\n\n---\n\n📦 This PR updates Go module dependencies across 6 directories, bumping 7 different packages including OpenTelemetry libraries, PostgreSQL driver, and other core dependencies to their latest versions. The update also upgrades the Go version requirement from 1.24.3 to 1.25.0 across all modules.\n\n\u003cdetails\u003e\n\u003csummary\u003e🔍 \u003cstrong\u003eDetailed Analysis\u003c/strong\u003e\u003c/summary\u003e\n\n### Key Changes\n- **Go Version Upgrade**: Updated from Go 1.24.3 to 1.25.0 across all 6 directories (clickhouse, db, docker-reverse-proxy, orchestrator, shared, tests/integration)\n- **OpenTelemetry Updates**: Major version bump from 1.39.0 to 1.43.0 for core OpenTelemetry packages including otel, otel/sdk, otel/metric, and otel/trace\n- **Database Dependencies**: Updated PostgreSQL driver (pgx/v5) from 5.7.4 to 5.9.2 and YDB SDK from 3.104.7 to 3.134.2\n- **Supporting Libraries**: Updated various Google Cloud, gRPC, protobuf, and other infrastructure dependencies to latest versions\n\n### Technical Implementation\n```mermaid\nflowchart TD\n    A[Dependabot Scan] --\u003e B[Identify Outdated Dependencies]\n    B --\u003e C[Generate Updates for 6 Directories]\n    C --\u003e D[Update go.mod Files]\n    C --\u003e E[Update go.sum Files]\n    D --\u003e F[Bump Go Version to 1.25.0]\n    D --\u003e G[Update OpenTelemetry 1.39.0 → 1.43.0]\n    D --\u003e H[Update PostgreSQL pgx/v5 5.7.4 → 5.9.2]\n    D --\u003e I[Update YDB SDK 3.104.7 → 3.134.2]\n    F --\u003e J[Maintain Compatibility]\n    G --\u003e J\n    H --\u003e J\n    I --\u003e J\n```\n\n### Impact\n- **Security Improvements**: Updates include security fixes, particularly in pgx/v5 which addresses SQL injection vulnerabilities (GHSA-j88v-2chj-qfwx)\n- **Performance Enhancements**: OpenTelemetry 1.43.0 includes significant performance improvements for concurrent operations and reduced memory usage\n- **Feature Additions**: New capabilities like W3C Trace Context Level 2 support, improved error handling, and enhanced observability features\n- **Maintenance Benefits**: Keeps the codebase current with latest stable releases, ensuring continued support and bug fixes\n\n\u003c/details\u003e\n\n_Created with [Palmier](https://www.palmier.io)_","html_url":"https://github.com/GlacierEQ/infra/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GlacierEQ%2Finfra/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4443072892","node_id":"PR_kwDORmVBy87bX8J1","number":11,"state":"open","title":"chore(deps)(deps): Bump the go-minor-and-patch group with 19 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T04:07:25.000Z","updated_at":"2026-05-14T04:07:26.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): Bump","group_name":"go-minor-and-patch","update_count":19,"packages":[{"name":"github.com/aws/aws-sdk-go-v2","old_version":"1.41.6","new_version":"1.41.7","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/config","old_version":"1.32.16","new_version":"1.32.17","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/credentials","old_version":"1.19.15","new_version":"1.19.16","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/service/s3","old_version":"1.100.0","new_version":"1.101.0","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/blevesearch/bleve/v2","old_version":"2.5.7","new_version":"2.6.0","repository_url":"https://github.com/blevesearch/bleve"},{"name":"github.com/blevesearch/bleve_index_api","old_version":"1.2.11","new_version":"1.3.11","repository_url":"https://github.com/blevesearch/bleve_index_api"},{"name":"github.com/go-git/go-git/v5","old_version":"5.18.0","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/google/cel-go","old_version":"0.28.0","new_version":"0.28.1","repository_url":"https://github.com/google/cel-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.9.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/nats-io/nats.go","old_version":"1.49.0","new_version":"1.52.0","repository_url":"https://github.com/nats-io/nats.go"},{"name":"github.com/pquerna/otp","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/pquerna/otp"},{"name":"github.com/segmentio/kafka-go","old_version":"0.4.49","new_version":"0.4.51","repository_url":"https://github.com/segmentio/kafka-go"},{"name":"github.com/testcontainers/testcontainers-go","old_version":"0.41.0","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"github.com/testcontainers/testcontainers-go/modules/postgres","old_version":"0.41.0","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc","old_version":"1.41.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp","old_version":"1.41.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"golang.org/x/crypto","old_version":"0.48.0","new_version":"0.50.0","repository_url":"https://github.com/golang/crypto"},{"name":"golang.org/x/term","old_version":"0.40.0","new_version":"0.42.0","repository_url":"https://github.com/golang/term"},{"name":"golang.org/x/time","old_version":"0.12.0","new_version":"0.15.0","repository_url":"https://github.com/golang/time"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-minor-and-patch group with 19 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.41.6` | `1.41.7` |\n| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.32.16` | `1.32.17` |\n| [github.com/aws/aws-sdk-go-v2/credentials](https://github.com/aws/aws-sdk-go-v2) | `1.19.15` | `1.19.16` |\n| [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.100.0` | `1.101.0` |\n| [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) | `2.5.7` | `2.6.0` |\n| [github.com/blevesearch/bleve_index_api](https://github.com/blevesearch/bleve_index_api) | `1.2.11` | `1.3.11` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.18.0` | `5.19.0` |\n| [github.com/google/cel-go](https://github.com/google/cel-go) | `0.28.0` | `0.28.1` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.9.1` | `5.9.2` |\n| [github.com/nats-io/nats.go](https://github.com/nats-io/nats.go) | `1.49.0` | `1.52.0` |\n| [github.com/pquerna/otp](https://github.com/pquerna/otp) | `1.4.0` | `1.5.0` |\n| [github.com/segmentio/kafka-go](https://github.com/segmentio/kafka-go) | `0.4.49` | `0.4.51` |\n| [github.com/testcontainers/testcontainers-go](https://github.com/testcontainers/testcontainers-go) | `0.41.0` | `0.42.0` |\n| [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) | `0.41.0` | `0.42.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.41.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) | `1.41.0` | `1.43.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.48.0` | `0.50.0` |\n| [golang.org/x/term](https://github.com/golang/term) | `0.40.0` | `0.42.0` |\n| [golang.org/x/time](https://github.com/golang/time) | `0.12.0` | `0.15.0` |\n\nUpdates `github.com/aws/aws-sdk-go-v2` from 1.41.6 to 1.41.7\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2223642aeafb3b46ae924667ee47d31a1cf5a9d5\"\u003e\u003ccode\u003e2223642\u003c/code\u003e\u003c/a\u003e Release 2026-04-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/04c7e460121eafa42577be08289bd0da0de091b2\"\u003e\u003ccode\u003e04c7e46\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5f5692571a7afce76e1573da3fbf2180a2c297cc\"\u003e\u003ccode\u003e5f56925\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aac6d2b8fefd47203d3b4bd5f229ca275272ec62\"\u003e\u003ccode\u003eaac6d2b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdaead7d2074e479fc56da77491fe65737413664\"\u003e\u003ccode\u003ebdaead7\u003c/code\u003e\u003c/a\u003e upgrade to smithy-go v1.25.1 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3399\"\u003e#3399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/008e12cf64f41c37faeb705f6ce4b77471756f9f\"\u003e\u003ccode\u003e008e12c\u003c/code\u003e\u003c/a\u003e Release 2026-04-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ef109d91f0b772aaebc472633edf13ec0fd907ce\"\u003e\u003ccode\u003eef109d9\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6411e6379e509956413b866481ee2362a7cdfc68\"\u003e\u003ccode\u003e6411e63\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e5bf970956db306bf7b5b1bdd8ca71e8cca766b5\"\u003e\u003ccode\u003ee5bf970\u003c/code\u003e\u003c/a\u003e Release 2026-04-24\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdbb88c9400c80ed2487f7b498a54c6206b5c62a\"\u003e\u003ccode\u003ebdbb88c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.41.6...v1.41.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/config` from 1.32.16 to 1.32.17\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2223642aeafb3b46ae924667ee47d31a1cf5a9d5\"\u003e\u003ccode\u003e2223642\u003c/code\u003e\u003c/a\u003e Release 2026-04-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/04c7e460121eafa42577be08289bd0da0de091b2\"\u003e\u003ccode\u003e04c7e46\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5f5692571a7afce76e1573da3fbf2180a2c297cc\"\u003e\u003ccode\u003e5f56925\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aac6d2b8fefd47203d3b4bd5f229ca275272ec62\"\u003e\u003ccode\u003eaac6d2b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdaead7d2074e479fc56da77491fe65737413664\"\u003e\u003ccode\u003ebdaead7\u003c/code\u003e\u003c/a\u003e upgrade to smithy-go v1.25.1 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3399\"\u003e#3399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/008e12cf64f41c37faeb705f6ce4b77471756f9f\"\u003e\u003ccode\u003e008e12c\u003c/code\u003e\u003c/a\u003e Release 2026-04-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ef109d91f0b772aaebc472633edf13ec0fd907ce\"\u003e\u003ccode\u003eef109d9\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6411e6379e509956413b866481ee2362a7cdfc68\"\u003e\u003ccode\u003e6411e63\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e5bf970956db306bf7b5b1bdd8ca71e8cca766b5\"\u003e\u003ccode\u003ee5bf970\u003c/code\u003e\u003c/a\u003e Release 2026-04-24\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdbb88c9400c80ed2487f7b498a54c6206b5c62a\"\u003e\u003ccode\u003ebdbb88c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.32.16...config/v1.32.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/credentials` from 1.19.15 to 1.19.16\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2223642aeafb3b46ae924667ee47d31a1cf5a9d5\"\u003e\u003ccode\u003e2223642\u003c/code\u003e\u003c/a\u003e Release 2026-04-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/04c7e460121eafa42577be08289bd0da0de091b2\"\u003e\u003ccode\u003e04c7e46\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5f5692571a7afce76e1573da3fbf2180a2c297cc\"\u003e\u003ccode\u003e5f56925\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aac6d2b8fefd47203d3b4bd5f229ca275272ec62\"\u003e\u003ccode\u003eaac6d2b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdaead7d2074e479fc56da77491fe65737413664\"\u003e\u003ccode\u003ebdaead7\u003c/code\u003e\u003c/a\u003e upgrade to smithy-go v1.25.1 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3399\"\u003e#3399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/008e12cf64f41c37faeb705f6ce4b77471756f9f\"\u003e\u003ccode\u003e008e12c\u003c/code\u003e\u003c/a\u003e Release 2026-04-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ef109d91f0b772aaebc472633edf13ec0fd907ce\"\u003e\u003ccode\u003eef109d9\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6411e6379e509956413b866481ee2362a7cdfc68\"\u003e\u003ccode\u003e6411e63\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e5bf970956db306bf7b5b1bdd8ca71e8cca766b5\"\u003e\u003ccode\u003ee5bf970\u003c/code\u003e\u003c/a\u003e Release 2026-04-24\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdbb88c9400c80ed2487f7b498a54c6206b5c62a\"\u003e\u003ccode\u003ebdbb88c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/credentials/v1.19.15...credentials/v1.19.16\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.100.0 to 1.101.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/84ddd08980744ac0f3bacfe7d2796c861671accc\"\u003e\u003ccode\u003e84ddd08\u003c/code\u003e\u003c/a\u003e Release 2026-05-06\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/23645b402c11575a32d1af93ec237f2f121dd285\"\u003e\u003ccode\u003e23645b4\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/848eb597bd63cb770bcd11ee230f9dca68ce1ffe\"\u003e\u003ccode\u003e848eb59\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/1d7b13420ed32f0809a5a4a35c630d19bfd0b6d4\"\u003e\u003ccode\u003e1d7b134\u003c/code\u003e\u003c/a\u003e Release 2026-05-05\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5bbbc97fcab2086757060561ccd1f34101ba7b57\"\u003e\u003ccode\u003e5bbbc97\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8dbb93618325675f55eb0c3eb0c7a766806dadbc\"\u003e\u003ccode\u003e8dbb936\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/369e6498c716c7e02ca7aef318ef311edd5efcbf\"\u003e\u003ccode\u003e369e649\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/dc2d13fa6f1db25f1c6d804567e1ecfcdff4f040\"\u003e\u003ccode\u003edc2d13f\u003c/code\u003e\u003c/a\u003e Release 2026-05-04\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/da4bcffa913dc4ba46e1ce10a6268bf075547a8d\"\u003e\u003ccode\u003eda4bcff\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/a8b1180254cba3e23aa6baece26783395e884d81\"\u003e\u003ccode\u003ea8b1180\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.100.0...service/s3/v1.101.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/blevesearch/bleve/v2` from 2.5.7 to 2.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/blevesearch/bleve/releases\"\u003egithub.com/blevesearch/bleve/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMB-69881: Improved APIs and perf optimizations for vector search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2270\"\u003eblevesearch/bleve#2270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-27666: Hierarchy Search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/hierarchy.md\"\u003edocs/hierarchy.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove legacy vendor folder by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2271\"\u003eblevesearch/bleve#2271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade several dependencies - roaring/v2, mmap-go etc. by \u003ca href=\"https://github.com/abhinavdangeti\"\u003e\u003ccode\u003e@​abhinavdangeti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2275\"\u003eblevesearch/bleve#2275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-59633: Improve performance of Geospatial Search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2268\"\u003eblevesearch/bleve#2268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-70388: Add forced docvalues for geopoint fields by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2278\"\u003eblevesearch/bleve#2278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-70410: Simplify \u003ccode\u003eCoalesceQueue\u003c/code\u003e in hierarchical nested search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2283\"\u003eblevesearch/bleve#2283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-61890 - Introducing config for zap layer by \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2066\"\u003eblevesearch/bleve#2066\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle \u003ccode\u003enil\u003c/code\u003e multiSearchParams properly for \u003ccode\u003eMultiSearch\u003c/code\u003e by \u003ca href=\"https://github.com/capemox\"\u003e\u003ccode\u003e@​capemox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2286\"\u003eblevesearch/bleve#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-59633: Disable DocValues Chunking \u0026amp; Compression for Geo Fields by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2269\"\u003eblevesearch/bleve#2269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImproved geo spatial search accuracy by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/geo/pull/29\"\u003eblevesearch/geo#29\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/blevesearch/geo/pull/30\"\u003eblevesearch/geo#30\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-62985: Support for Binary quantized vector indexes \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/vectors.md\"\u003edocs/vectors.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-62182: New merge approach that avoids re-training of vector indexes \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/fast_merge.md\"\u003edocs/fast_merge.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71041: avoid updating \u003ccode\u003eroot.bolt\u003c/code\u003e with in-memory segment's data by \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2296\"\u003eblevesearch/bleve#2296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-65018 add custom_filter/custom_score query support with context-driven callback hooks by \u003ca href=\"https://github.com/maneuvertomars\"\u003e\u003ccode\u003e@​maneuvertomars\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2289\"\u003eblevesearch/bleve#2289\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/custom_query.md\"\u003edocs/custom_query.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-65860: Introducing support for fileIO Callbacks by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2209\"\u003eblevesearch/bleve#2209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e(perf) pool queryStringLex to reuse bufio.Reader across query parses by \u003ca href=\"https://github.com/huynhanx03\"\u003e\u003ccode\u003e@​huynhanx03\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2300\"\u003eblevesearch/bleve#2300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003enull\u003c/code\u003e issue when parsing search request attributes by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2312\"\u003eblevesearch/bleve#2312\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71375: Bolt Wrappers for File Callbacks by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2309\"\u003eblevesearch/bleve#2309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAbsorb fixes for filtering vector search, update workflows by \u003ca href=\"https://github.com/abhinavdangeti\"\u003e\u003ccode\u003e@​abhinavdangeti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2314\"\u003eblevesearch/bleve#2314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-59670: GPU-Accelerated Vector Search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/capemox\"\u003e\u003ccode\u003e@​capemox\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/vectors.md\"\u003edocs/vectors.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71383: Expose vector field stats in scorch by \u003ca href=\"https://github.com/capemox\"\u003e\u003ccode\u003e@​capemox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2316\"\u003eblevesearch/bleve#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded check for in-memory segment merge by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2319\"\u003eblevesearch/bleve#2319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71607: Fixed data corruption in bolt by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2324\"\u003eblevesearch/bleve#2324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix metrics involving NestedDocuments by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2325\"\u003eblevesearch/bleve#2325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71216, MB-71650: Implement fast merge over binary index classes by \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2326\"\u003eblevesearch/bleve#2326\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to go-faiss@v1.1.0; Fix formatting, typos, etc. in docs/ by \u003ca href=\"https://github.com/abhinavdangeti\"\u003e\u003ccode\u003e@​abhinavdangeti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2328\"\u003eblevesearch/bleve#2328\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIntroduced new file format - \u003ca href=\"https://github.com/blevesearch/zapx/tree/v17.1.2\"\u003ezapx@v17\u003c/a\u003e\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003eMilestone\u003c/strong\u003e: \u003ca href=\"https://github.com/blevesearch/bleve/milestone/29\"\u003ehttps://github.com/blevesearch/bleve/milestone/29\u003c/a\u003e\n\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/blevesearch/bleve/compare/v2.5.7...v2.6.0\"\u003ehttps://github.com/blevesearch/bleve/compare/v2.5.7...v2.6.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/d8f2ab9a11166223bc4997143efda40ec98045e7\"\u003e\u003ccode\u003ed8f2ab9\u003c/code\u003e\u003c/a\u003e Upgrade to go-faiss@v1.1.0; Fix formatting, typos, etc. in docs/ (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/71b13fe1cf1dbe8d0dd2115f2c1570d0a1340654\"\u003e\u003ccode\u003e71b13fe\u003c/code\u003e\u003c/a\u003e go fmt ./... (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/2a4804932d06267104bbad8b4601a320e746ba5d\"\u003e\u003ccode\u003e2a48049\u003c/code\u003e\u003c/a\u003e MB-71216, MB-71650: Implement fast merge over binary index classes (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2326\"\u003e#2326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/a9e101a9947fa5dbffea3f3727e4e27ea6aed9b9\"\u003e\u003ccode\u003ea9e101a\u003c/code\u003e\u003c/a\u003e Fix metrics involving NestedDocuments (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2325\"\u003e#2325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/2c7269ac3e11a4fb5baebd5ca34895b4babb69d2\"\u003e\u003ccode\u003e2c7269a\u003c/code\u003e\u003c/a\u003e v2.6.0 doc fixes (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2323\"\u003e#2323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/e5e7e9e7a77a0205e2f695b61e8779a5bd9ed0f6\"\u003e\u003ccode\u003ee5e7e9e\u003c/code\u003e\u003c/a\u003e MB-71607: Fixed data corruption in bolt (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2324\"\u003e#2324\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/08e551fc149f59aee99e99732b66e95d50607871\"\u003e\u003ccode\u003e08e551f\u003c/code\u003e\u003c/a\u003e Updates to docs/vectors.md for v2.6.0 (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2320\"\u003e#2320\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/7cb486d98c678a0561fb94851367f5197f27353b\"\u003e\u003ccode\u003e7cb486d\u003c/code\u003e\u003c/a\u003e Add a document for fast merge (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2321\"\u003e#2321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/d3a4022ed0979907ae42dbea66f0d201304d062b\"\u003e\u003ccode\u003ed3a4022\u003c/code\u003e\u003c/a\u003e Added check for in-memory segment merge (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2319\"\u003e#2319\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/77af9c88ecded5c284d10954b81f729771e10646\"\u003e\u003ccode\u003e77af9c8\u003c/code\u003e\u003c/a\u003e Update docs/vectors.md  (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2318\"\u003e#2318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/blevesearch/bleve/compare/v2.5.7...v2.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/blevesearch/bleve_index_api` from 1.2.11 to 1.3.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/5704d2d51ef6666e8db95a321072a24519e816af\"\u003e\u003ccode\u003e5704d2d\u003c/code\u003e\u003c/a\u003e MB-71216: Added Support for IVFRaBitQ Indexes (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/bef04bf5fb03405a33aa2e7ffd9694082f82df7d\"\u003e\u003ccode\u003ebef04bf\u003c/code\u003e\u003c/a\u003e MB-59670: GPU-Accelerated Vector Search (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/77\"\u003e#77\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/c26154f6f7f896ec42acdf872797e65c3fd91a58\"\u003e\u003ccode\u003ec26154f\u003c/code\u003e\u003c/a\u003e introduce and use \u003ccode\u003eTrainedIndexCallbackFn\u003c/code\u003e signature (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/90\"\u003e#90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/32831684c6e36397c5a9f80358141e9ad7a9200c\"\u003e\u003ccode\u003e3283168\u003c/code\u003e\u003c/a\u003e MB-65860: Adding Support for File Callbacks (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/89\"\u003e#89\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/dd1f3c75ec988849586af84061e3354306384d96\"\u003e\u003ccode\u003edd1f3c7\u003c/code\u003e\u003c/a\u003e Relocating \u003ccode\u003eIndexFileCopyable\u003c/code\u003e interface (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/88\"\u003e#88\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/a43513abee1584649c85ba765930bb92427f9c5f\"\u003e\u003ccode\u003ea43513a\u003c/code\u003e\u003c/a\u003e move TrainableIndex interface to the right place (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/87\"\u003e#87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/589b597288d510e424ffa58eea2500d8b44d4f4a\"\u003e\u003ccode\u003e589b597\u003c/code\u003e\u003c/a\u003e MB-62182: centroid index transfer APIs (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/84\"\u003e#84\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/60ef5e2c9245dda6de7863c9a8c66521181b9537\"\u003e\u003ccode\u003e60ef5e2\u003c/code\u003e\u003c/a\u003e MB-62985: Update index optimization naming and desc for Bivf (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/86\"\u003e#86\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/62a5343ee2d167a502903a596f011a5a23d15cd7\"\u003e\u003ccode\u003e62a5343\u003c/code\u003e\u003c/a\u003e MB-62958: Changed backing index for bivf (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/85\"\u003e#85\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/697ce4cee94de0b801a6888f7ea0ff81a4e2eeb0\"\u003e\u003ccode\u003e697ce4c\u003c/code\u003e\u003c/a\u003e MB:59633: Adding snappy and chunk options for indexing (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/80\"\u003e#80\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/blevesearch/bleve_index_api/compare/v1.2.11...v1.3.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.18.0 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/cel-go` from 0.28.0 to 0.28.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/cel-go/releases\"\u003egithub.com/google/cel-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v0.28.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload by \u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport shorthand types in env yaml and REPL  by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1301\"\u003egoogle/cel-go#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreserve operation interrupted in ContextEval error by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse shorthand type specifiers in env yaml files by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1305\"\u003egoogle/cel-go#1305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCost estimation and tracking for strings extension by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1307\"\u003egoogle/cel-go#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repl type string for doubles by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1308\"\u003egoogle/cel-go#1308\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/cel-go/compare/v0.28.0...v0.28.1\"\u003ehttps://github.com/google/cel-go/compare/v0.28.0...v0.28.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/a82c68b770ac0cb67f7b4f76166827c14b145eb8\"\u003e\u003ccode\u003ea82c68b\u003c/code\u003e\u003c/a\u003e Update repl type assessment for doubles (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1308\"\u003e#1308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/c9d70486a872fbfaf9c4cb383a005de56e499368\"\u003e\u003ccode\u003ec9d7048\u003c/code\u003e\u003c/a\u003e Cost estimation and tracking for strings extension (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1307\"\u003e#1307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/646cdc1728643aec9499e3a00236ef1007a5d3fa\"\u003e\u003ccode\u003e646cdc1\u003c/code\u003e\u003c/a\u003e Use shorthand type specifiers in env yaml files (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1305\"\u003e#1305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/7263793b453228e8a47ca742afd124b3eaa8fc68\"\u003e\u003ccode\u003e7263793\u003c/code\u003e\u003c/a\u003e Preserve operation interrupted in ContextEval error (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/b826162b7b6ac7ae048fbf23b6123ab5c99da11b\"\u003e\u003ccode\u003eb826162\u003c/code\u003e\u003c/a\u003e Support shorthand types in env yaml and REPL  (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/339269b44af7c3cd477b55530e9cc1fe534c7f09\"\u003e\u003ccode\u003e339269b\u003c/code\u003e\u003c/a\u003e fix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1300\"\u003e#1300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/cel-go/compare/v0.28.0...v0.28.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.9.1 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/nats-io/nats.go` from 1.49.0 to 1.52.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nats-io/nats.go/releases\"\u003egithub.com/nats-io/nats.go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.52.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003eThis release focuses on 2.14 nats-server features support.\u003c/p\u003e\n\u003ch3\u003eADDED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJetStream:\n\u003cul\u003e\n\u003cli\u003eAdded fast batch stream config field (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2052\"\u003e#2052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded message scheduling headers and publish opts (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2051\"\u003e#2051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdated \u003ccode\u003eStreamConfig\u003c/code\u003e with \u003ccode\u003eConsumer\u003c/code\u003e field and added \u003ccode\u003eAckFlowControlPolicy\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded reset consumer API (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2069\"\u003e#2069\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFIXED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCore NATS:\n\u003cul\u003e\n\u003cli\u003eFix Subscription.StatusChanged channel closure on Closed Subscription. Thanks \u003ca href=\"https://github.com/nithimani38-prog\"\u003e\u003ccode\u003e@​nithimani38-prog\u003c/code\u003e\u003c/a\u003e for the contribution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2034\"\u003e#2034\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Flaky JS cluster tests (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2062\"\u003e#2062\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eComplete Changes\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/nats-io/nats.go/compare/v1.51.0...v1.52.0\"\u003ehttps://github.com/nats-io/nats.go/compare/v1.51.0...v1.52.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v1.51.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eADDED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCore NATS:\n\u003cul\u003e\n\u003cli\u003eOption to customize write buffer size (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2057\"\u003e#2057\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eOption to automatically reconnect on write error (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2055\"\u003e#2055\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAccessors for JetStream API level and \u003ccode\u003eIsSysAccount\u003c/code\u003e from \u003ccode\u003eServerInfo\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2060\"\u003e#2060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFIXED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCore NATS:\n\u003cul\u003e\n\u003cli\u003eMake websocket frame validation more robust (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2050\"\u003e#2050\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eJetStream:\n\u003cul\u003e\n\u003cli\u003eFix deadlock in \u003ccode\u003eConsume()\u003c/code\u003e when calling \u003ccode\u003eStop\u003c/code\u003e/\u003ccode\u003eDrain\u003c/code\u003e from \u003ccode\u003eConsumeErrHandler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2059\"\u003e#2059\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix typos in tests. Thanks \u003ca href=\"https://github.com/deining\"\u003e\u003ccode\u003e@​deining\u003c/code\u003e\u003c/a\u003e for the contribution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2049\"\u003e#2049\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecation warnings by bumping GH actions to their latest versions. Thanks \u003ca href=\"https://github.com/deining\"\u003e\u003ccode\u003e@​deining\u003c/code\u003e\u003c/a\u003e for the contibution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2048\"\u003e#2048\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCode linting: remove functions min and max. Thanks \u003ca href=\"https://github.com/deining\"\u003e\u003ccode\u003e@​deining\u003c/code\u003e\u003c/a\u003e for the contribution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2047\"\u003e#2047\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eComplete Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/e9f2a36e31b1065f69b252ea090c01e8869eab0b\"\u003e\u003ccode\u003ee9f2a36\u003c/code\u003e\u003c/a\u003e Release v1.52.0 (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/609274f8c57b65c9d11b01b008b0e40fadfc9d5b\"\u003e\u003ccode\u003e609274f\u003c/code\u003e\u003c/a\u003e [FIXED] Subscription.StatusChanged channel closure on Closed Subscription (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/f7cde748abc86c2981cb1391ca828fceea02af66\"\u003e\u003ccode\u003ef7cde74\u003c/code\u003e\u003c/a\u003e [IMPROVED] Use latest release build for badge in README (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2064\"\u003e#2064\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/c7476ea556818d561945e78863adab422f00de03\"\u003e\u003ccode\u003ec7476ea\u003c/code\u003e\u003c/a\u003e [IMPROVED] Reject empty consumer info in CONSUMER.RESET response (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/8fde36fd10a34224e22f4f8a8ad1f61ecaedd18f\"\u003e\u003ccode\u003e8fde36f\u003c/code\u003e\u003c/a\u003e [ADDED] ResetConsumer JetStream API (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2069\"\u003e#2069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/dcfd0fcc6f63c4a2e4436e5aa3ecd4e1dcc598df\"\u003e\u003ccode\u003edcfd0fc\u003c/code\u003e\u003c/a\u003e [ADDED] StreamSource.Consumer config field and AckFlowControlPolicy (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/7a28503b5d5d633d2caaa2639571e5f19c8eebec\"\u003e\u003ccode\u003e7a28503\u003c/code\u003e\u003c/a\u003e [ADDED] Publish options and consts for message scheduling (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2051\"\u003e#2051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/6c91a518e305e56c6481cf63ba52416300b7f5d3\"\u003e\u003ccode\u003e6c91a51\u003c/code\u003e\u003c/a\u003e [ADDED] AllowBatchPublish stream config field (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2052\"\u003e#2052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/a614d0be24c7e9a22a406572bee44d897cff27c3\"\u003e\u003ccode\u003ea614d0b\u003c/code\u003e\u003c/a\u003e [FIXED] Flaky JS cluster tests due to race in setupJSClusterWithSize (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2062\"\u003e#2062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/17b6fd141ba960bdc07278101f8b6381293bbfe1\"\u003e\u003ccode\u003e17b6fd1\u003c/code\u003e\u003c/a\u003e Release v1.51.0 (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2061\"\u003e#2061\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nats-io/nats.go/compare/v1.49.0...v1.52.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/pquerna/otp` from 1.4.0 to 1.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pquerna/otp/releases\"\u003egithub.com/pquerna/otp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace deprecated ioutil by \u003ca href=\"https://github.com/erfan-khadem\"\u003e\u003ccode\u003e@​erfan-khadem\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/91\"\u003epquerna/otp#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Steam TOTP encoding by \u003ca href=\"https://github.com/nikicat\"\u003e\u003ccode\u003e@​nikicat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/96\"\u003epquerna/otp#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(security): Ensure the entire secret is random by \u003ca href=\"https://github.com/alfrunes\"\u003e\u003ccode\u003e@​alfrunes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/100\"\u003epquerna/otp#100\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/erfan-khadem\"\u003e\u003ccode\u003e@​erfan-khadem\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/91\"\u003epquerna/otp#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nikicat\"\u003e\u003ccode\u003e@​nikicat\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/96\"\u003epquerna/otp#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alfrunes\"\u003e\u003ccode\u003e@​alfrunes\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/100\"\u003epquerna/otp#100\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/pquerna/otp/compare/v1.4.0...v1.5.0\"\u003ehttps://github.com/pquerna/otp/compare/v1.4.0...v1.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pquerna/otp/commit/5971b1ef1d6652fec2caed37f11e5cacd9249f78\"\u003e\u003ccode\u003e5971b1e\u003c/code\u003e\u003c/a\u003e fix(security): Ensure the entire secret is random (\u003ca href=\"https://redirect.github.com/pquerna/otp/issues/100\"\u003e#100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pquerna/otp/commit/c95b6974670cfbfe88ed5c0643a66ede01a90547\"\u003e\u003ccode\u003ec95b697\u003c/code\u003e\u003c/a\u003e feat: steam totp encoding (\u003ca href=\"https://redirect.github.com/pquerna/otp/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pquerna/otp/commit/3357de7c04813a328d6a1e4a514854213e0f8ce8\"\u003e\u003ccode\u003e3357de7\u003c/code\u003e\u003c/a\u003e Replace deprecated ioutil (\u003ca href=\"https://redirect.github.com/pquerna/otp/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pquerna/otp/compare/v1.4.0...v1.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/segmentio/kafka-go` from 0.4.49 to 0.4.51\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/segmentio/kafka-go/releases\"\u003egithub.com/segmentio/kafka-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.4.51\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: describe groups should not fail on an issue with a single group by \u003ca href=\"https://github.com/petedannemann\"\u003e\u003ccode\u003e@​petedannemann\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/pazhang-25\"\u003e\u003ccode\u003e@​pazhang-25\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/segmentio/kafka-go/pull/1431\"\u003esegmentio/kafka-go#1431\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/segmentio/kafka-go/compare/v0.4.50...v0.4.51\"\u003ehttps://github.com/segmentio/kafka-go/compare/v0.4.50...v0.4.51\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.4.50\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: support describegroups v5 by \u003ca href=\"https://github.com/petedannemann\"\u003e\u003ccode\u003e@​petedannemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/segmentio/kafka-go/pull/1421\"\u003esegmentio/kafka-go#1421\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/segmentio/kafka-go/compare/v0.4.49...v0.4.50\"\u003ehttps://github.com/segmentio/kafka-go/compare/v0.4.49...v0.4.50\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/segmentio/kafka-go/commit/2e0b3968aa51b16beb4e221876499a6ff816cd91\"\u003e\u003ccode\u003e2e0b396\u003c/code\u003e\u003c/a\u003e fix: describe groups should not fail on an issue with a single group (\u003ca href=\"https://redirect.github.com/segmentio/kafka-go/issues/1431\"\u003e#1431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/segmentio/kafka-go/commit/3ce29796ef96c7f55bfb64b505c0fcb3c2fd233e\"\u003e\u003ccode\u003e3ce2979\u003c/code\u003e\u003c/a\u003e feat: support describegroups v5 (\u003ca href=\"https://redirect.github.com/segmentio/kafka-go/issues/1421\"\u003e#1421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/segmentio/kafka-go/compare/v0.4.49...v0.4.51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go` from 0.41.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71ff693f1fc\"\u003e\u003ccode\u003e75aa226\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/2f59938fb9ce365d974fe21a426ffffe7231caca\"\u003e\u003ccode\u003e2f59938\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/580abf68d44021bc7e54f8655a2fb66578205527\"\u003e\u003ccode\u003e580abf6\u003c/code\u003e\u003c/a\u003e chore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/testcontainers/testcontainers-go/compare/v0.41.0...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.41.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go/modules/postgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71...\n\n_Description has been truncated_","html_url":"https://github.com/AlbertLee1/Weave/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AlbertLee1%2FWeave/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"},{"uuid":"4442874238","node_id":"PR_kwDORLnSB87bXYmv","number":120,"state":"closed","title":"chore(deps): bump the golang group across 1 directory with 24 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T03:26:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T03:27:18.000Z","updated_at":"2026-05-28T03:26:57.000Z","time_to_close":1209577,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"golang","update_count":24,"packages":[{"name":"github.com/andybalholm/brotli","old_version":"1.2.0","new_version":"1.2.1","repository_url":"https://github.com/andybalholm/brotli"},{"name":"github.com/anthropics/anthropic-sdk-go","old_version":"1.27.1","new_version":"1.43.0","repository_url":"https://github.com/anthropics/anthropic-sdk-go"},{"name":"github.com/fsnotify/fsnotify","old_version":"1.9.0","new_version":"1.10.1","repository_url":"https://github.com/fsnotify/fsnotify"},{"name":"github.com/fxamacker/cbor/v2","old_version":"2.9.0","new_version":"2.9.2","repository_url":"https://github.com/fxamacker/cbor"},{"name":"github.com/go-git/go-git/v6","old_version":"6.0.0-20260305211659-2083cf940afa","new_version":"6.0.0-alpha.3","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-sql-driver/mysql","old_version":"1.9.3","new_version":"1.10.0","repository_url":"https://github.com/go-sql-driver/mysql"},{"name":"github.com/google/cel-go","old_version":"0.27.0","new_version":"0.28.1","repository_url":"https://github.com/google/cel-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/klauspost/compress","old_version":"1.18.4","new_version":"1.18.6","repository_url":"https://github.com/klauspost/compress"},{"name":"github.com/mark3labs/mcp-go","old_version":"0.45.0","new_version":"0.54.0","repository_url":"https://github.com/mark3labs/mcp-go"},{"name":"github.com/minio/minio-go/v7","old_version":"7.0.99","new_version":"7.1.0","repository_url":"https://github.com/minio/minio-go"},{"name":"github.com/tidwall/gjson","old_version":"1.18.0","new_version":"1.19.0","repository_url":"https://github.com/tidwall/gjson"},{"name":"go.opentelemetry.io/otel","old_version":"1.42.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc","old_version":"1.42.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc","old_version":"1.42.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/prometheus","old_version":"0.64.0","new_version":"0.65.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"google.golang.org/genai","old_version":"1.51.0","new_version":"1.57.0","repository_url":"https://github.com/googleapis/go-genai"}],"path":null,"ecosystem":"go"},"body":"Bumps the golang group with 17 updates in the /apps/worker directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/andybalholm/brotli](https://github.com/andybalholm/brotli) | `1.2.0` | `1.2.1` |\n| [github.com/anthropics/anthropic-sdk-go](https://github.com/anthropics/anthropic-sdk-go) | `1.27.1` | `1.43.0` |\n| [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) | `1.9.0` | `1.10.1` |\n| [github.com/fxamacker/cbor/v2](https://github.com/fxamacker/cbor) | `2.9.0` | `2.9.2` |\n| [github.com/go-git/go-git/v6](https://github.com/go-git/go-git) | `6.0.0-20260305211659-2083cf940afa` | `6.0.0-alpha.3` |\n| [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql) | `1.9.3` | `1.10.0` |\n| [github.com/google/cel-go](https://github.com/google/cel-go) | `0.27.0` | `0.28.1` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.8.0` | `5.9.2` |\n| [github.com/klauspost/compress](https://github.com/klauspost/compress) | `1.18.4` | `1.18.6` |\n| [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go) | `0.45.0` | `0.54.0` |\n| [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) | `7.0.99` | `7.1.0` |\n| [github.com/tidwall/gjson](https://github.com/tidwall/gjson) | `1.18.0` | `1.19.0` |\n| [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) | `1.42.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.42.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.42.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/prometheus](https://github.com/open-telemetry/opentelemetry-go) | `0.64.0` | `0.65.0` |\n| [google.golang.org/genai](https://github.com/googleapis/go-genai) | `1.51.0` | `1.57.0` |\n\n\nUpdates `github.com/andybalholm/brotli` from 1.2.0 to 1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/0675b242cf45dcdd51ed6fb600876b570bea329b\"\u003e\u003ccode\u003e0675b24\u003c/code\u003e\u003c/a\u003e Remove unnecessary nil checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/946c3e4071198a86d6c037ffcd138968dd4fc68e\"\u003e\u003ccode\u003e946c3e4\u003c/code\u003e\u003c/a\u003e matchfinder: verify candidate matches against source data\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/014fb9c9e8f7e87e7996309844260b1f8d890528\"\u003e\u003ccode\u003e014fb9c\u003c/code\u003e\u003c/a\u003e Add Bargain3 MatchFinder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/deb905c53b5bcb9fa2d20ccb66890fa941c883cf\"\u003e\u003ccode\u003edeb905c\u003c/code\u003e\u003c/a\u003e Trio: vary hash table sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/b84bddd64ee4c9ca21b98009bc212e14fd7b5bd4\"\u003e\u003ccode\u003eb84bddd\u003c/code\u003e\u003c/a\u003e M4: fix updating chain for long history\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/a7ad41202f4421be4299ea5c911b41396c6170bf\"\u003e\u003ccode\u003ea7ad412\u003c/code\u003e\u003c/a\u003e Bargain1 \u0026amp; Bargain2: check for matches less often\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/6c6ca8c2a86a6448ef2b7986e6c8ecf5e8a9e29c\"\u003e\u003ccode\u003e6c6ca8c\u003c/code\u003e\u003c/a\u003e Add Bargain1 MatchFinder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/01c485509d026342053502adc6c3b692dcbf2003\"\u003e\u003ccode\u003e01c4855\u003c/code\u003e\u003c/a\u003e Add Bargain2 MatchFinder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/b70ce549fa67fc350e2051de343a06d00e16a264\"\u003e\u003ccode\u003eb70ce54\u003c/code\u003e\u003c/a\u003e Add HTTPCompressorWithLevel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/f8935d5c2aed358527994b3f3c16c3229f228c70\"\u003e\u003ccode\u003ef8935d5\u003c/code\u003e\u003c/a\u003e Add a flate encoder using the matchfinder package.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/andybalholm/brotli/compare/v1.2.0...v1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/anthropics/anthropic-sdk-go` from 1.27.1 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/releases\"\u003egithub.com/anthropics/anthropic-sdk-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.43.0\u003c/h2\u003e\n\u003ch2\u003e1.43.0 (2026-05-13)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.42.0...v1.43.0\"\u003ev1.42.0...v1.43.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add BetaManagedAgentsSearchResultBlock types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/498fafcadd46be3a53e24ca2e7c40d00da6361bd\"\u003e498fafc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add support for cache diagnostics beta (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/eac032f440e19fe9407d856dc4494029c606cd3d\"\u003eeac032f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/38e1f89eeffeb40295a5796c97d9966ab1a8703b\"\u003e38e1f89\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/a98b0fb44693ee6c4bcd7575414b1cab0fc114c7\"\u003ea98b0fb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e optimize json encoder for internal types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/f379c4255c6485a02afb8136d84f1cf995794a08\"\u003ef379c42\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003estructured outputs:\u003c/strong\u003e allowlist enum, const, pattern, allOf in transformSchema (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/823\"\u003e#823\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/d3687868eb9c40427c731b12e9291ddeeb74f557\"\u003ed368786\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e spec updates (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/502b9f13f72a691c3b440c66d964a25caf2db8e1\"\u003e502b9f1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix standard webhooks version (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/842\"\u003e#842\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fdda46d63004bfec8c977319554cb609a0b4041\"\u003e1fdda46\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e simplify release-please config (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/69da3d60e46540256c75fc2a0d1b1814ed608dfc\"\u003e69da3d6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.42.0\u003c/h2\u003e\n\u003ch2\u003e1.42.0 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.41.0...v1.42.0\"\u003ev1.41.0...v1.42.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaws:\u003c/strong\u003e Add AWS client for Claude Platform on AWS (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/596baf4d3811bc48d24f3e298573581c861384b1\"\u003e596baf4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexamples:\u003c/strong\u003e update examples dependencies (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/e832b79299ddee8c48cc8f77c83203f58e17b9ec\"\u003ee832b79\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ego:\u003c/strong\u003e avoid panic when http.DefaultTransport is wrapped (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6b75bef5a2cd15a969b5d787498e550f6f039719\"\u003e6b75bef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e update dependency checksums (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/64c1d9502775801539ea492f29784a89535226bd\"\u003e64c1d95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ego mod tidy (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/816\"\u003e#816\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/09b5f9cc4965ed3ca5b458996db3c030d66482c4\"\u003e09b5f9c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6e83495da8dfb2efb905213204627483b4afc3e2\"\u003e6e83495\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/34d1379207570fd26f7a262a960c424adf8d265d\"\u003e34d1379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/c068475a5c67c7b0d544195b4a62187c4e35c578\"\u003ec068475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/46a074f588c30c2a88e6f46093be606b37dd3fef\"\u003e46a074f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fe2ebbb5d1f458f7013aec5c61e31ae2b52e619\"\u003e1fe2ebb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/blob/main/CHANGELOG.md\"\u003egithub.com/anthropics/anthropic-sdk-go's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.43.0 (2026-05-13)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.42.0...v1.43.0\"\u003ev1.42.0...v1.43.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add BetaManagedAgentsSearchResultBlock types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/498fafcadd46be3a53e24ca2e7c40d00da6361bd\"\u003e498fafc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add support for cache diagnostics beta (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/eac032f440e19fe9407d856dc4494029c606cd3d\"\u003eeac032f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/38e1f89eeffeb40295a5796c97d9966ab1a8703b\"\u003e38e1f89\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/a98b0fb44693ee6c4bcd7575414b1cab0fc114c7\"\u003ea98b0fb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e optimize json encoder for internal types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/f379c4255c6485a02afb8136d84f1cf995794a08\"\u003ef379c42\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003estructured outputs:\u003c/strong\u003e allowlist enum, const, pattern, allOf in transformSchema (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/823\"\u003e#823\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/d3687868eb9c40427c731b12e9291ddeeb74f557\"\u003ed368786\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e spec updates (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/502b9f13f72a691c3b440c66d964a25caf2db8e1\"\u003e502b9f1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix standard webhooks version (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/842\"\u003e#842\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fdda46d63004bfec8c977319554cb609a0b4041\"\u003e1fdda46\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e simplify release-please config (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/69da3d60e46540256c75fc2a0d1b1814ed608dfc\"\u003e69da3d6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.42.0 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.41.0...v1.42.0\"\u003ev1.41.0...v1.42.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaws:\u003c/strong\u003e Add AWS client for Claude Platform on AWS (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/596baf4d3811bc48d24f3e298573581c861384b1\"\u003e596baf4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexamples:\u003c/strong\u003e update examples dependencies (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/e832b79299ddee8c48cc8f77c83203f58e17b9ec\"\u003ee832b79\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ego:\u003c/strong\u003e avoid panic when http.DefaultTransport is wrapped (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6b75bef5a2cd15a969b5d787498e550f6f039719\"\u003e6b75bef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e update dependency checksums (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/64c1d9502775801539ea492f29784a89535226bd\"\u003e64c1d95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ego mod tidy (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/816\"\u003e#816\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/09b5f9cc4965ed3ca5b458996db3c030d66482c4\"\u003e09b5f9c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6e83495da8dfb2efb905213204627483b4afc3e2\"\u003e6e83495\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/34d1379207570fd26f7a262a960c424adf8d265d\"\u003e34d1379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/c068475a5c67c7b0d544195b4a62187c4e35c578\"\u003ec068475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/46a074f588c30c2a88e6f46093be606b37dd3fef\"\u003e46a074f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fe2ebbb5d1f458f7013aec5c61e31ae2b52e619\"\u003e1fe2ebb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.41.0 (2026-05-06)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/05700ac0b3d9d09dc8c71b39f2844cdfc48db5e9\"\u003e\u003ccode\u003e05700ac\u003c/code\u003e\u003c/a\u003e release: 1.43.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/c5a8272f9b0de45352fde3b8b0cd8f9ea30e9205\"\u003e\u003ccode\u003ec5a8272\u003c/code\u003e\u003c/a\u003e feat(api): Add support for cache diagnostics beta\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/a23541600e165e1b01f4e7d3d6e6fec6185d41e3\"\u003e\u003ccode\u003ea235416\u003c/code\u003e\u003c/a\u003e feat(client): optimize json encoder for internal types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/2892c45680c2fb294b479f4eb7700c99ec31ad2f\"\u003e\u003ccode\u003e2892c45\u003c/code\u003e\u003c/a\u003e chore(api): spec updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/e02171b273286bdfd97d2deb307b0cb99e8cbf94\"\u003e\u003ccode\u003ee02171b\u003c/code\u003e\u003c/a\u003e codegen metadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/8a4cbf0b040588dc6b3cb3ec5c735767183ef36c\"\u003e\u003ccode\u003e8a4cbf0\u003c/code\u003e\u003c/a\u003e feat(api): Add BetaManagedAgentsSearchResultBlock types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/3036341beb9026a31f4f5fd9d1c818f8f1cffb50\"\u003e\u003ccode\u003e3036341\u003c/code\u003e\u003c/a\u003e ci: pin GitHub Actions to commit SHAs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/81dd299705cce0981faaeaf14149b9583e0f6554\"\u003e\u003ccode\u003e81dd299\u003c/code\u003e\u003c/a\u003e chore: fix standard webhooks version (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/842\"\u003e#842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/438f43d217fa7693eaa9d5f0a03a4ed32cd393a2\"\u003e\u003ccode\u003e438f43d\u003c/code\u003e\u003c/a\u003e feat(client): add compatibility aliases for old type names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/0ece20f557c19f765e79dacc80aed082f40ba1ef\"\u003e\u003ccode\u003e0ece20f\u003c/code\u003e\u003c/a\u003e fix(structured outputs): allowlist enum, const, pattern, allOf in transformSc...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.27.1...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fsnotify/fsnotify` from 1.9.0 to 1.10.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/releases\"\u003egithub.com/fsnotify/fsnotify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a bad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak when recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix a race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md\"\u003egithub.com/fsnotify/fsnotify's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.10.1 2026-05-04\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0 2026-04-30\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a\nbad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak\nwhen recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix\na race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/76b01a6e8f502187fecedea8b025e79e5a86085c\"\u003e\u003ccode\u003e76b01a6\u003c/code\u003e\u003c/a\u003e Release 1.10.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/fec150b807510e54e5b25def4b6e5fb001b4898c\"\u003e\u003ccode\u003efec150b\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/162b4216ab8f92ecd26425530bee198972c9b3cb\"\u003e\u003ccode\u003e162b421\u003c/code\u003e\u003c/a\u003e inotify, windows: don't rename sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/224257f23b2f3a96509b316c5cead71dd4a9099a\"\u003e\u003ccode\u003e224257f\u003c/code\u003e\u003c/a\u003e inotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/e0c956c0ccaf51562fee30ef5c055c74e6ae2104\"\u003e\u003ccode\u003ee0c956c\u003c/code\u003e\u003c/a\u003e windows: document directory Write events and stabilize tests (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/8d01d7b9cbe0199e4a1e60fbd965fb05dbb42123\"\u003e\u003ccode\u003e8d01d7b\u003c/code\u003e\u003c/a\u003e Release 1.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/602284e4a8cadd488d7a5fa07c48462dfac25108\"\u003e\u003ccode\u003e602284e\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/7f03e59f9659552d8a084e03024cb9b983748ed7\"\u003e\u003ccode\u003e7f03e59\u003c/code\u003e\u003c/a\u003e kqueue: skip ENOENT entries in watchDirectoryFiles (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/dab9dde2fc9ba4d0c1076318f81cabcc8fdb2ec9\"\u003e\u003ccode\u003edab9dde\u003c/code\u003e\u003c/a\u003e windows: lock watch field updates against concurrent WatchList (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/eadf267ce152b5e62d48cc2c13bb08bd4062b6c7\"\u003e\u003ccode\u003eeadf267\u003c/code\u003e\u003c/a\u003e kqueue: drop watches directly in Close() instead of going through remove() (#...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fsnotify/fsnotify/compare/v1.9.0...v1.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fxamacker/cbor/v2` from 2.9.0 to 2.9.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fxamacker/cbor/releases\"\u003egithub.com/fxamacker/cbor/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.9.2\u003c/h2\u003e\n\u003cp\u003eThis release refactors and hardens the streaming encoder by adding stricter checks for encoding CBOR indefinite-length data. Other changes include minor bugfixes, defensive checks, and more tests.\u003c/p\u003e\n\u003cp\u003eProjects that don't use CBOR indefinite-length data may also want to upgrade (\u003ca href=\"https://github.com/fxamacker/cbor#prior-releases\"\u003esummary of prior releases\u003c/a\u003e).\u003c/p\u003e\n\u003cp\u003eThe stricter checks in the encoder prevent improper use of the library and bad inputs from producing malformed CBOR indefinite-length data that would be rejected by the decoder.\u003c/p\u003e\n\u003cp\u003eThis release passed fuzz tests (billions of execs) and it is production quality.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReject encoding indefinite-length map with odd item count by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/764\"\u003efxamacker/cbor#764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject encoding indefinite-length data item as a chunk inside indefinite-length byte string or text string by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/765\"\u003efxamacker/cbor#765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake TagSet.Remove a no-op when contentType is nil by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/766\"\u003efxamacker/cbor#766\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor indefinite-length encoding and improve chunk validation during encoding by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/767\"\u003efxamacker/cbor#767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd more tests, fix a nit in unreachable panic message, update docs \u0026amp; ci by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/768\"\u003efxamacker/cbor#768\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCI / GitHub Actions and Docs\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/setup-go from 6.3.0 to 6.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/760\"\u003efxamacker/cbor#760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 4.34.1 to 4.35.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/761\"\u003efxamacker/cbor#761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 4.35.1 to 4.35.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/763\"\u003efxamacker/cbor#763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README for v2.9.2 release by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/769\"\u003efxamacker/cbor#769\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fxamacker/cbor/compare/v2.9.1...v2.9.2\"\u003ehttps://github.com/fxamacker/cbor/compare/v2.9.1...v2.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003cp\u003eThis release includes important bugfixes, defensive checks, improved code quality, and more tests.  Although not public, the fuzzer was also improved by adding more fuzz tests.\u003c/p\u003e\n\u003ch3\u003e:lady_beetle: Bug fixes related to the \u003ccode\u003ekeyasint\u003c/code\u003e feature\u003c/h3\u003e\n\u003cp\u003eThese changes only affect Go struct fields tagged with \u003ccode\u003ekeyasint\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[Decoding] Reject integer keys that exceed \u003ccode\u003emath.MaxInt64\u003c/code\u003e when decoding CBOR map to a struct with \u003ccode\u003ekeyasint\u003c/code\u003e field (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Decoding] Prevent string representation of an integer key from matching the struct field tagged by keyasint (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Encoding \u0026amp; Decoding] Deduplicate struct fields with the same normalized \u003ccode\u003ekeyasint\u003c/code\u003e tag values (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e:lady_beetle: Other bug fixes and defensive checks\u003c/h3\u003e\n\u003cp\u003eSome of the bugs fixed are related to decoding extreme values that cannot be encoded with this library.  For example, the decoder checks if epoch time encoded as CBOR float value representing hundreds of billions of years overflows int64(seconds).\u003c/p\u003e\n\u003cp\u003eNOTE: It is generally good practice to \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/687#issue-3245597787\"\u003eavoid using floating point to store epoch time\u003c/a\u003e (even when not using CBOR).\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[Decoding] Reject decoding epoch time encoded as floats that overflow int64 (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Encoding] Return a cloned slice for an empty \u003ccode\u003eRawMessage\u003c/code\u003e from \u003ccode\u003eRawMessage.MarshalCBOR\u003c/code\u003e (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Encoding] Reject encoding nil inside indefinite-length strings (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/750\"\u003e#750\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/45589abe5c63bea2db4d311e0d0fcc551cd772ae\"\u003e\u003ccode\u003e45589ab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/769\"\u003e#769\u003c/a\u003e from fxamacker/fxamacker/update-readme-release-status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/8e98ea5c30a02488e35ddccf5483eac48d48695e\"\u003e\u003ccode\u003e8e98ea5\u003c/code\u003e\u003c/a\u003e Update README for v2.9.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/e501aca8d56fc022ac9abe62106577ecad4d70e2\"\u003e\u003ccode\u003ee501aca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/768\"\u003e#768\u003c/a\u003e from fxamacker/fxamacker/update-docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/e6af0aa00756c8e9e9fbc3152ca4f3fd6284d8e5\"\u003e\u003ccode\u003ee6af0aa\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/767\"\u003e#767\u003c/a\u003e from fxamacker/fxamacker/refactor-indefinite-length-e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/57f1601726dcaac2e52bcbc8b4d97c701fcdc7eb\"\u003e\u003ccode\u003e57f1601\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/766\"\u003e#766\u003c/a\u003e from fxamacker/fxamacker/no-opt-to-remove-nil-type-in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/0cdb674b5e4ad98b16d97c1536f4d8359052b606\"\u003e\u003ccode\u003e0cdb674\u003c/code\u003e\u003c/a\u003e Fix indefinite-length string chunk validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/c0db60f014902819fe9ae4187588d0741f256743\"\u003e\u003ccode\u003ec0db60f\u003c/code\u003e\u003c/a\u003e Improve GitHub Workflow code coverage regex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/63937fea6a1d13fead671932c9cf1f624ff2c8f7\"\u003e\u003ccode\u003e63937fe\u003c/code\u003e\u003c/a\u003e Fix panic message to print the unrecognized tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/f0352a59dc05458e2c520021691254a806a47758\"\u003e\u003ccode\u003ef0352a5\u003c/code\u003e\u003c/a\u003e Add more tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/0c20a0f03f502d1fc447cfa341e3f1d65f3c7ee7\"\u003e\u003ccode\u003e0c20a0f\u003c/code\u003e\u003c/a\u003e Refactor encoding of indefinite-length data item\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fxamacker/cbor/compare/v2.9.0...v2.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v6` from 6.0.0-20260305211659-2083cf940afa to 6.0.0-alpha.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v6's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0-alpha.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport, add git-upload-archive support by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1986\"\u003ego-git/go-git#1986\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eutils: sync, Make zlib compression pluggable via x/plugin by \u003ca href=\"https://github.com/stiak\"\u003e\u003ccode\u003e@​stiak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2012\"\u003ego-git/go-git#2012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: establish DCO sign-off requirement for all contributions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1914\"\u003ego-git/go-git#1914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update \u003ccode\u003eCONTRIBUTING.md\u003c/code\u003e, \u003ccode\u003eREADME.md\u003c/code\u003e and add \u003ccode\u003eHISTORY.md\u003c/code\u003e by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1946\"\u003ego-git/go-git#1946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, close packfile iterators after use by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2027\"\u003ego-git/go-git#2027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md with PR review guidelines by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2040\"\u003ego-git/go-git#2040\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update comment to reflect support for the last 2 stable Go versions by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2041\"\u003ego-git/go-git#2041\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e*: clone, resolve relative local URLs against CWD in CloneOptions.Validate by \u003ca href=\"https://github.com/AriehSchneier\"\u003e\u003ccode\u003e@​AriehSchneier\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1891\"\u003ego-git/go-git#1891\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSHA256: Support submodules in SHA256 repositories by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1979\"\u003ego-git/go-git#1979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: ssh, fix concurrent test failures due to cert key generation by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2043\"\u003ego-git/go-git#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, dedupe object iteration by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2042\"\u003ego-git/go-git#2042\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git-fixtures/v6 to v6.0.0-20260422085740-0c07409f52ec (main) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2045\"\u003ego-git/go-git#2045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement Git-compatible wildmatch for gitignore patterns by \u003ca href=\"https://github.com/AriehSchneier\"\u003e\u003ccode\u003e@​AriehSchneier\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1940\"\u003ego-git/go-git#1940\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, fix treeContainsDirs test to build a new tree for each… by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2047\"\u003ego-git/go-git#2047\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e_examples: remove deprecated usage of io/ioutil by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2046\"\u003ego-git/go-git#2046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: transport/upload_pack multi round bugs by \u003ca href=\"https://github.com/manland\"\u003e\u003ccode\u003e@​manland\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2016\"\u003ego-git/go-git#2016\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: filemode, fix typo in comment by \u003ca href=\"https://github.com/shawntoffel\"\u003e\u003ccode\u003e@​shawntoffel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2003\"\u003ego-git/go-git#2003\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-billy/v6 to v6.0.0-20260424211911-732291493fb8 (main) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2051\"\u003ego-git/go-git#2051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: packp, refactor AdvRefs and capability packages by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1987\"\u003ego-git/go-git#1987\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eworktree: skip ignored directories during Status walk by \u003ca href=\"https://github.com/Soph\"\u003e\u003ccode\u003e@​Soph\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2048\"\u003ego-git/go-git#2048\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/pjbgf/sha1cd to v0.6.0 (main) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2059\"\u003ego-git/go-git#2059\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einternal: servers, add git server implementation by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2014\"\u003ego-git/go-git#2014\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove use of \u003ccode\u003eChrootOS\u003c/code\u003e by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2061\"\u003ego-git/go-git#2061\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: transport, Align flush size with upstream git by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2000\"\u003ego-git/go-git#2000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einternal: git, add server timeout test small tolerance by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2064\"\u003ego-git/go-git#2064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAlign object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2066\"\u003ego-git/go-git#2066\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2040\"\u003ego-git/go-git#2040\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shawntoffel\"\u003e\u003ccode\u003e@​shawntoffel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2003\"\u003ego-git/go-git#2003\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v6.0.0-alpha.2...v6.0.0-alpha.3\"\u003ehttps://github.com/go-git/go-git/compare/v6.0.0-alpha.2...v6.0.0-alpha.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0-alpha.2\u003c/h2\u003e\n\u003ch2\u003e🚀 Release Summary\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e⚠️ \u003cstrong\u003ev6 Alpha Release\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis is an \u003cstrong\u003ealpha release of go-git v6\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eWe encourage users to \u003cstrong\u003etest this version in real-world scenarios\u003c/strong\u003e and help us validate the new transport layer and features.\u003c/p\u003e\n\u003cp\u003e👉 Please report any issues, bugs, or unexpected behavior via \u003ca href=\"https://github.com/go-git/go-git/issues/new?template=bug-report.yml\"\u003eGitHub issues\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release brings major improvements across transport, performance, and Git feature support, along with significant internal modernization.\u003c/p\u003e\n\u003ch3\u003e🚀 Highlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMajor refactor of the plumbing/transport API with a new design, improving extensibility and aligning behaviour more closely with upstream Git.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/go-git/go-git/commits/v6.0.0-alpha.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-sql-driver/mysql` from 1.9.3 to 1.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-sql-driver/mysql/releases\"\u003egithub.com/go-sql-driver/mysql's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd Go 1.24 to the test matrix by \u003ca href=\"https://github.com/shogo82148\"\u003e\u003ccode\u003e@​shogo82148\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1681\"\u003ego-sql-driver/mysql#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emodernize for Go 1.22 by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1695\"\u003ego-sql-driver/mysql#1695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest stability improvement. by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1698\"\u003ego-sql-driver/mysql#1698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esimplify collation tests by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1700\"\u003ego-sql-driver/mysql#1700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix bigint unsigned null column scan to err type int64 by \u003ca href=\"https://github.com/elonnzhang\"\u003e\u003ccode\u003e@​elonnzhang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1612\"\u003ego-sql-driver/mysql#1612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTransaction Commit/Rollback returns conn's cached error, if present by \u003ca href=\"https://github.com/brad-defined\"\u003e\u003ccode\u003e@​brad-defined\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1691\"\u003ego-sql-driver/mysql#1691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd BenchmarkReceive10kRowsCompress by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1704\"\u003ego-sql-driver/mysql#1704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoptimize readPacket by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1705\"\u003ego-sql-driver/mysql#1705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMariaDB Metadata skipping and DEPRECATE_EOF by \u003ca href=\"https://github.com/rusher\"\u003e\u003ccode\u003e@​rusher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1708\"\u003ego-sql-driver/mysql#1708\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimization: statements reuse previous column name by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1711\"\u003ego-sql-driver/mysql#1711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate outdated MySQL internals documentation links by \u003ca href=\"https://github.com/demouth\"\u003e\u003ccode\u003e@​demouth\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1714\"\u003ego-sql-driver/mysql#1714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix PING on compressed connections by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1721\"\u003ego-sql-driver/mysql#1721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd DeepWiki badge by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1722\"\u003ego-sql-driver/mysql#1722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate edwards25519 dependency to v1.1.1 by \u003ca href=\"https://github.com/williamhaw\"\u003e\u003ccode\u003e@​williamhaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1749\"\u003ego-sql-driver/mysql#1749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigure Dependabot for Go modules by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1755\"\u003ego-sql-driver/mysql#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dominikh/staticcheck-action from 1.3.1 to 1.4.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1759\"\u003ego-sql-driver/mysql#1759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1760\"\u003ego-sql-driver/mysql#1760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1757\"\u003ego-sql-driver/mysql#1757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix staticcheck error by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1761\"\u003ego-sql-driver/mysql#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1758\"\u003ego-sql-driver/mysql#1758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix getSystemVar buffer reuse by \u003ca href=\"https://github.com/morgo\"\u003e\u003ccode\u003e@​morgo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1754\"\u003ego-sql-driver/mysql#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConsolidate Dependabot update noise by grouping weekly dependency PRs by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1762\"\u003ego-sql-driver/mysql#1762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump filippo.io/edwards25519 from 1.1.1 to 1.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1756\"\u003ego-sql-driver/mysql#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Update GitHub Actions Go matrix to 1.24–1.26 by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1763\"\u003ego-sql-driver/mysql#1763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance interpolateParams to correctly handle placeholders by \u003ca href=\"https://github.com/rusher\"\u003e\u003ccode\u003e@​rusher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1732\"\u003ego-sql-driver/mysql#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emodernize by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1764\"\u003ego-sql-driver/mysql#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erelease v1.10.0 by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1765\"\u003ego-sql-driver/mysql#1765\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elonnzhang\"\u003e\u003ccode\u003e@​elonnzhang\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1612\"\u003ego-sql-driver/mysql#1612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/brad-defined\"\u003e\u003ccode\u003e@​brad-defined\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1691\"\u003ego-sql-driver/mysql#1691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rusher\"\u003e\u003ccode\u003e@​rusher\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1708\"\u003ego-sql-driver/mysql#1708\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/demouth\"\u003e\u003ccode\u003e@​demouth\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1714\"\u003ego-sql-driver/mysql#1714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/williamhaw\"\u003e\u003ccode\u003e@​williamhaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1749\"\u003ego-sql-driver/mysql#1749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1759\"\u003ego-sql-driver/mysql#1759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/morgo\"\u003e\u003ccode\u003e@​morgo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1754\"\u003ego-sql-driver/mysql#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1762\"\u003ego-sql-driver/mysql#1762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-sql-driver/mysql/compare/v1.9.2...v1.10.0\"\u003ehttps://github.com/go-sql-driver/mysql/compare/v1.9.2...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md\"\u003egithub.com/go-sql-driver/mysql's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.0 (2026-04-28)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003egetSystemVar(\u0026quot;max_allowed_packet\u0026quot;)\u003c/code\u003e potentially returned wrong value. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1754\"\u003e#1754\u003c/a\u003e)\nThis affects only when \u003ccode\u003emaxAllowedPacket=0\u003c/code\u003e is set.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBump filippo.io/edwards25519 from 1.1.1 to 1.2.0. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1756\"\u003e#1756\u003c/a\u003e)\nWhile older versions have reported CVEs, they do not affect go-mysql.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdate Go versions to 1.24-1.26. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnhance interpolateParams to correctly handle placeholders. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1732\"\u003e#1732\u003c/a\u003e)\nThe question mark (?) within strings and comments will no longer be treated as a placeholder.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/a065b60ab6d0c8e15468e7709c7f76acf4431647\"\u003e\u003ccode\u003ea065b60\u003c/code\u003e\u003c/a\u003e release v1.10.0 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1765\"\u003e#1765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/09e4187be9c52bb13449a662d2a36e1e1789ac95\"\u003e\u003ccode\u003e09e4187\u003c/code\u003e\u003c/a\u003e modernize (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/6c44a9a0a1769e145dc91c08abe1aded2936ab63\"\u003e\u003ccode\u003e6c44a9a\u003c/code\u003e\u003c/a\u003e Enhance interpolateParams to correctly handle placeholders (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1732\"\u003e#1732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/688ce563a28598a9b733e6fc2b325050a4dcf261\"\u003e\u003ccode\u003e688ce56\u003c/code\u003e\u003c/a\u003e Update supported Go version to 1.24–1.26 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/118d07fdb51f9e523ebcdb00628812e49d7c1881\"\u003e\u003ccode\u003e118d07f\u003c/code\u003e\u003c/a\u003e Bump filippo.io/edwards25519 from 1.1.1 to 1.2.0 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1756\"\u003e#1756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/d6b2d3ee2cc8569b6778a7ae7ac2816e185f616b\"\u003e\u003ccode\u003ed6b2d3e\u003c/code\u003e\u003c/a\u003e Consolidate Dependabot update noise by grouping weekly dependency PRs (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1762\"\u003e#1762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/037dfd872a7b6c88e63c53f32700dffed560120c\"\u003e\u003ccode\u003e037dfd8\u003c/code\u003e\u003c/a\u003e Fix getSystemVar buffer reuse (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1754\"\u003e#1754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/900f33035615559b6188e4fa98d57ae20af2b73b\"\u003e\u003ccode\u003e900f330\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1758\"\u003e#1758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/ab9e3804c604d6a60b0d3136f4654f81f184757d\"\u003e\u003ccode\u003eab9e380\u003c/code\u003e\u003c/a\u003e fix staticcheck error (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1761\"\u003e#1761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/f298c66742396b6921732744b9bb075c7faaca81\"\u003e\u003ccode\u003ef298c66\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1757\"\u003e#1757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-sql-driver/mysql/compare/v1.9.3...v1.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/cel-go` from 0.27.0 to 0.28.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/cel-go/releases\"\u003egithub.com/google/cel-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v0.28.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload by \u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport shorthand types in env yaml and REPL  by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1301\"\u003egoogle/cel-go#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreserve operation interrupted in ContextEval error by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse shorthand type specifiers in env yaml files by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1305\"\u003egoogle/cel-go#1305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCost estimation and tracking for strings extension by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1307\"\u003egoogle/cel-go#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repl type string for doubles by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1308\"\u003egoogle/cel-go#1308\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/cel-go/compare/v0.28.0...v0.28.1\"\u003ehttps://github.com/google/cel-go/compare/v0.28.0...v0.28.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.28.0\u003c/h2\u003e\n\u003ch2\u003eHigh-Level Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eEnhanced JSON Interoperability:\u003c/strong\u003e New support for JSON names across the checker, AST, and runtime allows for more seamless data handling when working with JSON-native structures.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eImproved Developer Tooling:\u003c/strong\u003e Integration is now smoother thanks to new utilities for converting Go errors into \u003ccode\u003ecel.Issues\u003c/code\u003e and more descriptive, context-aware error messages.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGreater Environment Flexibility:\u003c/strong\u003e You can now redeclare variables as constants and export parse limit options, providing finer control over how CEL environments are configured and constrained.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNative Struct Improvements:\u003c/strong\u003e Support for mixing CEL and native values within native structs simplifies the handling of complex, hybrid data types.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e🚀 Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd helper method to check whether a function has a singleton binding in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1266\"\u003egoogle/cel-go#1266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHelper utility for converting a Go error into \u003ccode\u003ecel.Issues\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1267\"\u003egoogle/cel-go#1267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePolicy API improvements in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1268\"\u003egoogle/cel-go#1268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCEL Test usability requirements in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1269\"\u003egoogle/cel-go#1269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBetter context-related error messages in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1271\"\u003egoogle/cel-go#1271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSort \u003ccode\u003eenv.Config\u003c/code\u003e values where reasonable in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1273\"\u003egoogle/cel-go#1273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport redeclaring variables as constants in \u003ccode\u003eNewEnv\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1275\"\u003egoogle/cel-go#1275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for exporting parse limit options in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1277\"\u003egoogle/cel-go#1277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport mixing CEL values and native values in native structs in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1270\"\u003egoogle/cel-go#1270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd checker, AST, and type-provider support for JSON names in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1283\"\u003egoogle/cel-go#1283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJSON field names runtime support in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1286\"\u003egoogle/cel-go#1286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptionally include reachable fieldpaths in prompt in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1285\"\u003egoogle/cel-go#1285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREPL -- cel-spec pb2 and json name support \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1294\"\u003egoogle/cel-go#1294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐞 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix support for config-based type references in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1265\"\u003egoogle/cel-go#1265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck arg kinds in \u003ccode\u003eoptional.or\u003c/code\u003e and \u003ccode\u003e.orValue\u003c/code\u003e impl in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1276\"\u003egoogle/cel-go#1276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBazel fixes for import in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1278\"\u003egoogle/cel-go#1278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport zero-value literals in presence test inlining \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1280\"\u003egoogle/cel-go#1280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCache concatList.Size() to prevent O(N^2) evaluation time \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1291\"\u003egoogle/cel-go#1291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreserve runtime error node IDs from Resolve  \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1290\"\u003egoogle/cel-go#1290\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/a82c68b770ac0cb67f7b4f76166827c14b145eb8\"\u003e\u003ccode\u003ea82c68b\u003c/code\u003e\u003c/a\u003e Update repl type assessment for doubles (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1308\"\u003e#1308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/c9d70486a872fbfaf9c4cb383a005de56e499368\"\u003e\u003ccode\u003ec9d7048\u003c/code\u003e\u003c/a\u003e Cost estimation and tracking for strings extension (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1307\"\u003e#1307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/646cdc1728643aec9499e3a00236ef1007a5d3fa\"\u003e\u003ccode\u003e646cdc1\u003c/code\u003e\u003c/a\u003e Use shorthand type specifiers in env yaml files (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1305\"\u003e#1305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/7263793b453228e8a47ca742afd124b3eaa8fc68\"\u003e\u003ccode\u003e7263793\u003c/code\u003e\u003c/a\u003e Preserve operation interrupted in ContextEval error (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/b826162b7b6ac7ae048fbf23b6123ab5c99da11b\"\u003e\u003ccode\u003eb826162\u003c/code\u003e\u003c/a\u003e Support shorthand types in env yaml and REPL  (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/339269b44af7c3cd477b55530e9cc1fe534c7f09\"\u003e\u003ccode\u003e339269b\u003c/code\u003e\u003c/a\u003e fix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1300\"\u003e#1300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/6b8f6d621e464429f39c01140d7f60a467eef5ae\"\u003e\u003ccode\u003e6b8f6d6\u003c/code\u003e\u003c/a\u003e fix: cap format string precision to prevent memory exhaustion (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1292\"\u003e#1292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/d94297040dbac661d5b2b7fae1e57f04ed927c98\"\u003e\u003ccode\u003ed942970\u003c/code\u003e\u003c/a\u003e Default enable identifier escaping with backticks (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1295\"\u003e#1295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/7114ed27a63255f33c689fbff0ee8a08298f70ab\"\u003e\u003ccode\u003e7114ed2\u003c/code\u003e\u003c/a\u003e Preserve runtime error node IDs from Resolve (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1290\"\u003e#1290\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/d91350b89e575180ed2bb0feb896c33cb118add0\"\u003e\u003ccode\u003ed91350b\u003c/code\u003e\u003c/a\u003e fix: cache concatList.Size() to prevent O(N^2) evaluation time (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1291\"\u003e#1291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/cel-go/compare/v0.27.0...v0.28.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad...\n\n_Description has been truncated_","html_url":"https://github.com/kunish/wheel/pull/120","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/kunish%2Fwheel/issues/120","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/120/packages"},{"uuid":"4440876256","node_id":"PR_kwDOLzaLX87bRO1c","number":1,"state":"closed","title":"Bump the go_modules group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-30T11:57:45.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T20:14:24.000Z","updated_at":"2026-05-30T11:57:47.000Z","time_to_close":1439001,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":8,"packages":[{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.24.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"google.golang.org/grpc","old_version":"1.62.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/containerd/containerd","old_version":"1.7.12","new_version":"1.7.29","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/dvsekhvalnov/jose2go","old_version":"1.5.0","new_version":"1.7.0","repository_url":"https://github.com/dvsekhvalnov/jose2go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.5.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 5 updates in the /go directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.24.0` | `1.43.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.62.1` | `1.79.3` |\n| [github.com/containerd/containerd](https://github.com/containerd/containerd) | `1.7.12` | `1.7.29` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.5.0` | `1.7.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.4` | `5.9.2` |\n\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.24.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.24.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.62.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.62.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd` from 1.7.12 to 1.7.29\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 1.7.29\u003c/h2\u003e\n\u003cp\u003eWelcome to the v1.7.29 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe twenty-ninth patch release for containerd 1.7 contains various fixes\nand updates including security patches.\u003c/p\u003e\n\u003ch3\u003eSecurity Updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003econtainerd\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/security/advisories/GHSA-pwhc-rpq9-4c8w\"\u003e\u003cstrong\u003eGHSA-pwhc-rpq9-4c8w\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/security/advisories/GHSA-m6hq-p25p-ffr2\"\u003e\u003cstrong\u003eGHSA-m6hq-p25p-ffr2\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003erunc\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003e\u003cstrong\u003eGHSA-qw9x-cqr3-wc7r\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003e\u003cstrong\u003eGHSA-cgrx-mc8f-2prm\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003e\u003cstrong\u003eGHSA-9493-h29p-rfm2\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate differ to handle zstd media types\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12018\"\u003e#12018\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12480\"\u003e#12480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix lost container logs from quickly closing io\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12375\"\u003e#12375\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eningmingxiao\u003c/li\u003e\n\u003cli\u003eMaksym Pavlenko\u003c/li\u003e\n\u003cli\u003eStepSecurity Bot\u003c/li\u003e\n\u003cli\u003ewheat2018\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/442cb34bda9a6a0fed82a2ca7cade05c5c749582\"\u003e\u003ccode\u003e442cb34bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/0450f046e6942e513d0ebf1ef5c2aff13daa187f\"\u003e\u003ccode\u003e0450f046e\u003c/code\u003e\u003c/a\u003e Fix directory permissions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e5cb6ddb7a7730c24253a94d7fdb6bbe13dba6f7\"\u003e\u003ccode\u003ee5cb6ddb7\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/442cb34bda9a6a0fed82a2ca7cade05c5c749582\"\u003e\u003ccode\u003e442cb34\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e5cb6ddb7a7730c24253a94d7fdb6bbe13dba6f7\"\u003e\u003ccode\u003ee5cb6dd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/9772966401ad3c33a6cd824632f0c61e5049f3a5\"\u003e\u003ccode\u003e9772966\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12486\"\u003e#12486\u003c/a\u003e from dmcgowan/prepare-v1.7.29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/1fc2daaf3ed53f4c9e76fbc5786a6f1ae3bb885f\"\u003e\u003ccode\u003e1fc2daa\u003c/code\u003e\u003c/a\u003e Prepare release notes for v1.7.29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/93f710a528958474f95a95e54516624ef832d80f\"\u003e\u003ccode\u003e93f710a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12480\"\u003e#12480\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12475-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/68d04befab3284f1dfe2a9f5691ea5da76daace7\"\u003e\u003ccode\u003e68d04be\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12471\"\u003e#12471\u003c/a\u003e from austinvazquez/1_7_update_ci_go_and_images\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/3f5f9f872707a743563d316e85e530193a2e30ac\"\u003e\u003ccode\u003e3f5f9f8\u003c/code\u003e\u003c/a\u003e runc: Update runc binary to v1.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/667409fb63098cb80280940ab06038114e7712da\"\u003e\u003ccode\u003e667409f\u003c/code\u003e\u003c/a\u003e ci: bump Go 1.24.9, 1.25.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/294f8c027b607c4450b3e52f44280581a737a73f\"\u003e\u003ccode\u003e294f8c0\u003c/code\u003e\u003c/a\u003e Update GHA runners to use latest images for basic binaries build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/cf66b4141defb757dee0fc5653bfd0a7ba1e8fed\"\u003e\u003ccode\u003ecf66b41\u003c/code\u003e\u003c/a\u003e Update GHA runners to use latest image for most jobs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v1.7.12...v1.7.29\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/dvsekhvalnov/jose2go` from 1.5.0 to 1.7.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/0a0673dd7f2820a446de5b04b9094b2291d77d5d\"\u003e\u003ccode\u003e0a0673d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/34\"\u003e#34\u003c/a\u003e from dvsekhvalnov/issue-33-deflate-limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c3fff7c58065c848ba063d5cee07bd2c5908a14f\"\u003e\u003ccode\u003ec3fff7c\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/e51b47f33c704a31f1f7ad75120759e01de5fb4c\"\u003e\u003ccode\u003ee51b47f\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c7dde528a01b38c96652b99a5d2ed93d8932b39e\"\u003e\u003ccode\u003ec7dde52\u003c/code\u003e\u003c/a\u003e fixing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/a194baa4bb649000dd2266218155727c27297341\"\u003e\u003ccode\u003ea194baa\u003c/code\u003e\u003c/a\u003e added go versions and OSs to matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/f31cfc6b273af924c90bd5305b92ff5f9af10763\"\u003e\u003ccode\u003ef31cfc6\u003c/code\u003e\u003c/a\u003e fixing yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/1a4ba55b88b757ed4533884a014531d3f421462b\"\u003e\u003ccode\u003e1a4ba55\u003c/code\u003e\u003c/a\u003e added matrix to workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/d2baff2f0b24baab11bd34b8268c9aabfeb31914\"\u003e\u003ccode\u003ed2baff2\u003c/code\u003e\u003c/a\u003e go workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/b14c81a7a3261666e4ec76f04438f79d70211272\"\u003e\u003ccode\u003eb14c81a\u003c/code\u003e\u003c/a\u003e added limitation for deflate decompression stream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/48ba0b76bc881767cff2723388f4dd1a47c5104a\"\u003e\u003ccode\u003e48ba0b7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/32\"\u003e#32\u003c/a\u003e from dvsekhvalnov/issue-31-security-tuning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dvsekhvalnov/jose2go/compare/v1.5...v1.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.5.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.21.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.21.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.22.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/35e1306bddd863f360fb94480c5fed84229953f0\"\u003e\u003ccode\u003e35e1306\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/7c360367ab7e57c0cfb7aef368fc6acefaaac3b1\"\u003e\u003ccode\u003e7c36036\u003c/code\u003e\u003c/a\u003e http2, webdav, websocket: fix %q verb uses with wrong type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ec11eccf5a0f725281df0cdf40bb7ebef51d57ea\"\u003e\u003ccode\u003eec11ecc\u003c/code\u003e\u003c/a\u003e trace: fix data race in RenderEvents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/bff14c52567061031b9761881907c39e24792736\"\u003e\u003ccode\u003ebff14c5\u003c/code\u003e\u003c/a\u003e http2: don't PING a responsive server when resetting a stream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/88a642172c174ab11f4c56f0ede777de3c8a21d4\"\u003e\u003ccode\u003e88a6421\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: avoid use of \u0026quot;strings\u0026quot; and \u0026quot;math\u0026quot; in dns/dnsmessage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/123d099e1bd872b38247bbcf9856540b8420d18d\"\u003e\u003ccode\u003e123d099\u003c/code\u003e\u003c/a\u003e http2: support net/http.Transport.NewClientConn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/346cc6157ee53301dea14e57a45c22368ab46e55\"\u003e\u003ccode\u003e346cc61\u003c/code\u003e\u003c/a\u003e webdav: relax test to check for any redirect status, not just 301\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.22.0...v0.48.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.16.0 to 0.34.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/acc38155b7f6f36aefcb58faff6f36d314dd915c\"\u003e\u003ccode\u003eacc3815\u003c/code\u003e\u003c/a\u003e endpoints: fix %q verb use with wrong type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/f28b0b5467dda26d56f1240381158f7c334654d1\"\u003e\u003ccode\u003ef28b0b5\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/fd15e0fe894866ebff17ca3503d3706a967b061a\"\u003e\u003ccode\u003efd15e0f\u003c/code\u003e\u003c/a\u003e x/oauth2: populate RetrieveError from DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/792c8776358f0c8689d84eef0d0c966937d560fb\"\u003e\u003ccode\u003e792c877\u003c/code\u003e\u003c/a\u003e oauth2: use strings.Builder instead of bytes.Buffer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/014cf778b444f29c82ececa4f3ec1f6fe3db3eaf\"\u003e\u003ccode\u003e014cf77\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.24.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3c76ce5d23d0d48721316e7631625ce32afaa14b\"\u003e\u003ccode\u003e3c76ce5\u003c/code\u003e\u003c/a\u003e endpoints: correct Naver OAuth2 endpoint URLs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/cf1431934151b3a93e0b3286eb6798ca08ea3770\"\u003e\u003ccode\u003ecf14319\u003c/code\u003e\u003c/a\u003e oauth2: fix expiration time window check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/32d34ef364e670a650fe59267b92301ff7ed08f1\"\u003e\u003ccode\u003e32d34ef\u003c/code\u003e\u003c/a\u003e internal: include clientID in auth style cache key\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/2d34e3091be3f4b4700842fb663dad98a10ddfb6\"\u003e\u003ccode\u003e2d34e30\u003c/code\u003e\u003c/a\u003e oauth2: replace a magic number with AuthStyleUnknown\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/696f7b31289a98558822be146698b7834e477e63\"\u003e\u003ccode\u003e696f7b3\u003c/code\u003e\u003c/a\u003e all: modernize with doc links and any\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.16.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/HarleyCoops/chroma/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/HarleyCoops/chroma/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/HarleyCoops%2Fchroma/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4438043620","node_id":"PR_kwDOMbqhdM7bH6Lu","number":18,"state":"open","title":"chore(deps)(deps): bump github.com/jackc/pgx/v5 from 5.7.2 to 5.9.2 in /api in the jackc group","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-13T12:56:39.000Z","updated_at":"2026-05-13T12:56:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.7.2","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"/api in the jackc group","ecosystem":"go"},"body":"Bumps the jackc group in /api with 1 update: [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.2 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.2...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.7.2\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/alvaroofernaandez/freakfy/pull/18","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alvaroofernaandez%2Ffreakfy/issues/18","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/18/packages"}],"issue_packages":[{"old_version":"5.8.0","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-31T22:53:07.000Z","version_change":"5.8.0 → 5.9.2","issue":{"uuid":"4559282246","node_id":"PR_kwDOSM_Ni87hK1ry","number":42,"state":"open","title":"fix(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.2","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T22:53:07.000Z","updated_at":"2026-05-31T22:55:19.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"fix(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.8.0 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.8.0\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/pgvillage-tools/orion/pull/42","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/pgvillage-tools%2Forion/issues/42","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/42/packages"}},{"old_version":"5.8.0","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-31T20:01:14.000Z","version_change":"5.8.0 → 5.9.2","issue":{"uuid":"4558810958","node_id":"PR_kwDODerqlM7hJaL7","number":178,"state":"open","title":"Bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.2","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-31T20:01:14.000Z","updated_at":"2026-05-31T20:45:10.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.8.0 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n","html_url":"https://github.com/neufeldtech/secretmessage-go/pull/178","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/neufeldtech%2Fsecretmessage-go/issues/178","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/178/packages"}},{"old_version":"5.5.5","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-30T22:49:15.000Z","version_change":"5.5.5 → 5.9.2","issue":{"uuid":"4555926942","node_id":"PR_kwDOSre5mc7hA3wh","number":9,"state":"open","title":"Bump github.com/jackc/pgx/v5 from 5.5.5 to 5.9.2","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-30T22:49:15.000Z","updated_at":"2026-05-30T22:49:16.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.5.5","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.5.5 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.5...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.5.5\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/tmuhammet36-cmd/roundpenny/pull/9","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/tmuhammet36-cmd%2Froundpenny/issues/9","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/9/packages"}},{"old_version":"5.5.5","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-29T21:53:39.000Z","version_change":"5.5.5 → 5.9.2","issue":{"uuid":"4551866990","node_id":"PR_kwDOPrYSMc7g0ZQ3","number":38,"state":"open","title":"chore(deps): bump the go_modules group across 5 directories with 28 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-29T21:53:39.000Z","updated_at":"2026-05-30T00:01:27.864Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":28,"packages":[{"name":"github.com/distribution/distribution/v3","old_version":"3.0.0-20220128175647-b60926597a1b","new_version":"3.1.1","repository_url":"https://github.com/distribution/distribution"},{"name":"github.com/go-git/go-git/v5","old_version":"5.11.0","new_version":"5.19.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/moby/buildkit","old_version":"0.12.5","new_version":"0.28.1","repository_url":"https://github.com/moby/buildkit"},{"name":"github.com/russellhaering/gosaml2","old_version":"0.9.1","new_version":"0.11.0","repository_url":"https://github.com/russellhaering/gosaml2"},{"name":"github.com/slack-go/slack","old_version":"0.10.1","new_version":"0.23.1","repository_url":"https://github.com/slack-go/slack"},{"name":"chainguard.dev/apko","old_version":"0.14.0","new_version":"1.2.7","repository_url":"https://github.com/chainguard-dev/apko"},{"name":"github.com/jackc/pgx/v5","old_version":"5.5.5","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/go-chi/chi/v5","old_version":"5.0.10","new_version":"5.2.2","repository_url":"https://github.com/go-chi/chi"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/distribution/distribution/v3](https://github.com/distribution/distribution) | `3.0.0-20220128175647-b60926597a1b` | `3.1.1` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.11.0` | `5.19.1` |\n| [github.com/moby/buildkit](https://github.com/moby/buildkit) | `0.12.5` | `0.28.1` |\n| [github.com/russellhaering/gosaml2](https://github.com/russellhaering/gosaml2) | `0.9.1` | `0.11.0` |\n| [github.com/slack-go/slack](https://github.com/slack-go/slack) | `0.10.1` | `0.23.1` |\n| [chainguard.dev/apko](https://github.com/chainguard-dev/apko) | `0.14.0` | `1.2.7` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.5` | `5.9.2` |\n| [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) | `5.0.10` | `5.2.2` |\n\nBumps the go_modules group with 4 updates in the /internal/cmd/progress-bot directory: [github.com/slack-go/slack](https://github.com/slack-go/slack), [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/oauth2](https://github.com/golang/oauth2) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 4 updates in the /lib directory: [golang.org/x/crypto](https://github.com/golang/crypto), [golang.org/x/oauth2](https://github.com/golang/oauth2), [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 6 updates in the /lib/managedservicesplatform directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.25.0` | `1.43.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.21.0` | `0.27.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.5` | `5.9.2` |\n| [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) | `9.5.3` | `9.5.5` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.65.0` | `1.79.3` |\n\nBumps the go_modules group with 3 updates in the /monitoring directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus) and [github.com/hashicorp/go-retryablehttp](https://github.com/hashicorp/go-retryablehttp).\n\nUpdates `github.com/distribution/distribution/v3` from 3.0.0-20220128175647-b60926597a1b to 3.1.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/distribution/distribution/releases\"\u003egithub.com/distribution/distribution/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.1.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the \u003ccode\u003ev3.1.1\u003c/code\u003e release of registry!\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eThis is a stable release\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/distribution/distribution/issues\"\u003ehttps://github.com/distribution/distribution/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2026-41888\"\u003eCVE-2026-41888\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBounds-check the file basename in PurgeUploads Walk callback\u003c/li\u003e\n\u003cli\u003eAdd S3 Express One Zone support to the S3 storage driver (\u003ca href=\"https://redirect.github.com/distribution/distribution/issues/4858\"\u003e#4858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix tag list endpoint in proxy mode (\u003ca href=\"https://redirect.github.com/distribution/distribution/issues/4846\"\u003e#4846\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eClamp oversized \u003ccode\u003en\u003c/code\u003e query parameter in proxy mode instead of returning 400 (\u003ca href=\"https://redirect.github.com/distribution/distribution/issues/4856\"\u003e#4856\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee the full changelog below for the full list of changes.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal/client/auth/challenge: cleanups and minor refactor by \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4832\"\u003edistribution/distribution#4832\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp from 0.18.0 to 0.19.0 in the go_modules group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4843\"\u003edistribution/distribution#4843\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in the go_modules group across 1 directory by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4850\"\u003edistribution/distribution#4850\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 4.34.1 to 4.35.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4840\"\u003edistribution/distribution#4840\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(build): Bump go version to latest by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4851\"\u003edistribution/distribution#4851\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use slices.Backward to simplify the code by \u003ca href=\"https://github.com/chuanshanjida\"\u003e\u003ccode\u003e@​chuanshanjida\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4848\"\u003edistribution/distribution#4848\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(proxy): fix tag list endpoint in proxy mode by \u003ca href=\"https://github.com/njucjc\"\u003e\u003ccode\u003e@​njucjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4846\"\u003edistribution/distribution#4846\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate docker-compose structure in deploying.md by \u003ca href=\"https://github.com/jdg71nl\"\u003e\u003ccode\u003e@​jdg71nl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4855\"\u003edistribution/distribution#4855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-artifact from 7.0.0 to 7.0.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4854\"\u003edistribution/distribution#4854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/upload-pages-artifact from 4.0.0 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4852\"\u003edistribution/distribution#4852\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/login-action from 4.0.0 to 4.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4847\"\u003edistribution/distribution#4847\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump docker/bake-action from 7.0.0 to 7.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4853\"\u003edistribution/distribution#4853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(proxy): clamp oversized n query param instead of returning 400 by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4856\"\u003edistribution/distribution#4856\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(s3): add express zone one support to S3 driver by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4858\"\u003edistribution/distribution#4858\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(storage): bounds-check the file basename in PurgeUploads Walk callback by \u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4860\"\u003edistribution/distribution#4860\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(release): prepare for v3.1.1 release by \u003ca href=\"https://github.com/milosgajdos\"\u003e\u003ccode\u003e@​milosgajdos\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4864\"\u003edistribution/distribution#4864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/chuanshanjida\"\u003e\u003ccode\u003e@​chuanshanjida\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4848\"\u003edistribution/distribution#4848\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jdg71nl\"\u003e\u003ccode\u003e@​jdg71nl\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4855\"\u003edistribution/distribution#4855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/SAY-5\"\u003e\u003ccode\u003e@​SAY-5\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/distribution/distribution/pull/4860\"\u003edistribution/distribution#4860\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/distribution/distribution/compare/v3.1.0...v3.1.1\"\u003ehttps://github.com/distribution/distribution/compare/v3.1.0...v3.1.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.1.0\u003c/h2\u003e\n\u003cp\u003eWelcome to the \u003ccode\u003ev3.1.0\u003c/code\u003e release of registry!\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eThis is a stable release\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/distribution/distribution/issues\"\u003ehttps://github.com/distribution/distribution/issues\u003c/a\u003e.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/distribution/distribution/commits/v3.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.11.0 to 5.19.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ev5: plumbing: transport/ssh, Shell-quote path by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2068\"\u003ego-git/go-git#2068\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, Fix relative URL resolution by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2070\"\u003ego-git/go-git#2070\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, canonical remote for relative URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2074\"\u003ego-git/go-git#2074\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: submodule, error on remote without URLs by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2078\"\u003ego-git/go-git#2078\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/idxfile, Validate offset64 indices by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2084\"\u003ego-git/go-git#2084\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: *: Reject malformed variable-length integers by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2092\"\u003ego-git/go-git#2092\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format/packfile, Tighten delta validation by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2091\"\u003ego-git/go-git#2091\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Add \u003ccode\u003eworktreeFilesystem\u003c/code\u003e wrapper for worktree and hardening by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2100\"\u003ego-git/go-git#2100\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: config: validate submodule names by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2082\"\u003ego-git/go-git#2082\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.19.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2111\"\u003ego-git/go-git#2111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Allow MkdirAll on worktree-root paths by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2117\"\u003ego-git/go-git#2117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: git: Stop validating symlink target paths by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2116\"\u003ego-git/go-git#2116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: plumbing: format decoder input bounds and contracts by \u003ca href=\"https://github.com/hiddeco\"\u003e\u003ccode\u003e@​hiddeco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2125\"\u003ego-git/go-git#2125\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: format/packfile, cap delta chain depth in parser by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2137\"\u003ego-git/go-git#2137\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.19.0...v5.19.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3c3be601aa6c0fd0d536c0d1e4f898b4c60e65fe\"\u003e\u003ccode\u003e3c3be60\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2137\"\u003e#2137\u003c/a\u003e from go-git/validate-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3fba897bd9e84b1aec170fa708b80e297b7d6cf6\"\u003e\u003ccode\u003e3fba897\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, cap delta chain depth in parser\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a97d6601c85e017bb64c2b0f2e3169f6ef6a6709\"\u003e\u003ccode\u003ea97d660\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2125\"\u003e#2125\u003c/a\u003e from hiddeco/v5/format-input-bounds\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/aeaa125c8af8e4c4c95b574c22c5633e97fc436e\"\u003e\u003ccode\u003eaeaa125\u003c/code\u003e\u003c/a\u003e plumbing: format/objfile, require Header before Read\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1f38e171218526ea254a73187a52f0648253c1b8\"\u003e\u003ccode\u003e1f38e17\u003c/code\u003e\u003c/a\u003e plumbing: format/packfile, bound inflate size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f7545a02529e03998d6a7219140dc0e6644ad337\"\u003e\u003ccode\u003ef7545a0\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, bound nr by file size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/170b88181f385913a457a08b68c88956fb3f8e4f\"\u003e\u003ccode\u003e170b881\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2116\"\u003e#2116\u003c/a\u003e from pjbgf/symlink-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/7b6d994467f06630268904aa3c441b6de7248b31\"\u003e\u003ccode\u003e7b6d994\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2117\"\u003e#2117\u003c/a\u003e from hiddeco/v5/worktree-fs-mkdirall-root-noop\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f0709b32f8fbb87c16cd63c6762d2cd515f36541\"\u003e\u003ccode\u003ef0709b3\u003c/code\u003e\u003c/a\u003e git: Stop validating symlink target paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/776d00f11d336f26862d0f2bab987b217f3a7844\"\u003e\u003ccode\u003e776d00f\u003c/code\u003e\u003c/a\u003e git: Allow MkdirAll on worktree-root paths\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.11.0...v5.19.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/moby/buildkit` from 0.12.5 to 0.28.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/moby/buildkit/releases\"\u003egithub.com/moby/buildkit's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.28.1\u003c/h2\u003e\n\u003cp\u003eWelcome to the v0.28.1 release of buildkit!\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/moby/buildkit/issues\"\u003ehttps://github.com/moby/buildkit/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNotable Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix insufficient validation of Git URL \u003ccode\u003e#ref:subdir\u003c/code\u003e fragments that could allow access to restricted files outside the checked-out repository root. \u003ca href=\"https://github.com/moby/buildkit/security/advisories/GHSA-4vrq-3vrq-g6gg\"\u003eGHSA-4vrq-3vrq-g6gg\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a vulnerability where an untrusted custom frontend could cause files to be written outside the BuildKit state directory. \u003ca href=\"https://github.com/moby/buildkit/security/advisories/GHSA-4c29-8rgm-jvjj\"\u003eGHSA-4c29-8rgm-jvjj\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a panic when processing invalid \u003ccode\u003e.dockerignore\u003c/code\u003e patterns during \u003ccode\u003eCOPY\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/moby/buildkit/issues/6610\"\u003e#6610\u003c/a\u003e \u003ca href=\"https://redirect.github.com/moby/patternmatcher/issues/9\"\u003emoby/patternmatcher#9\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003egithub.com/moby/patternmatcher\u003c/strong\u003e  v0.6.0 -\u0026gt; v0.6.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePrevious release can be found at \u003ca href=\"https://github.com/moby/buildkit/releases/tag/v0.28.0\"\u003ev0.28.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.28.0\u003c/h2\u003e\n\u003cp\u003ebuildkit 0.28.0\u003c/p\u003e\n\u003cp\u003eWelcome to the v0.28.0 release of buildkit!\u003c/p\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/moby/buildkit/issues\"\u003ehttps://github.com/moby/buildkit/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003cli\u003eCrazyMax\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eJonathan A. Sternberg\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003eAmr Mahdi\u003c/li\u003e\n\u003cli\u003eDan Duvall\u003c/li\u003e\n\u003cli\u003eDavid Karlsson\u003c/li\u003e\n\u003cli\u003eJonas Geiler\u003c/li\u003e\n\u003cli\u003eKevin L.\u003c/li\u003e\n\u003cli\u003ersteube\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/45b038cd0b2ec2d34013ce0f085522276f7ee0d8\"\u003e\u003ccode\u003e45b038c\u003c/code\u003e\u003c/a\u003e git: normalize and validate subdir paths\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/f5462c216098af766f97ea4cb328e65c6d8f7256\"\u003e\u003ccode\u003ef5462c2\u003c/code\u003e\u003c/a\u003e git: harden ref arg handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/71577a5da7a2b3ab75a90c2cfedfda0c27d1ef40\"\u003e\u003ccode\u003e71577a5\u003c/code\u003e\u003c/a\u003e source: extract SafeFileName into shared pathutil package\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/df4378316f3b000403d097551a8139a700bd823d\"\u003e\u003ccode\u003edf43783\u003c/code\u003e\u003c/a\u003e source/http: use os.Root for saved file operations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/9ce6f62aca0653657047ee613cdef22f38b31244\"\u003e\u003ccode\u003e9ce6f62\u003c/code\u003e\u003c/a\u003e source/http: sanitize downloaded filenames\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/099cf80f5ebc935c48d2925499bffe703a54cff4\"\u003e\u003ccode\u003e099cf80\u003c/code\u003e\u003c/a\u003e executor: validate container IDs centrally\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/2642113bbc9d969d223c37aaabca4b50613fddf9\"\u003e\u003ccode\u003e2642113\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/moby/buildkit/issues/6610\"\u003e#6610\u003c/a\u003e from thaJeztah/0.28_backport_bump_patternmatcher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/802da78332d9f2c6c9d856c1648ab52c701076fa\"\u003e\u003ccode\u003e802da78\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/patternmatcher v0.6.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/5245d869d85d9c98f986b600584c332a3b001986\"\u003e\u003ccode\u003e5245d86\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/moby/buildkit/issues/6551\"\u003e#6551\u003c/a\u003e from tonistiigi/v0.28-cherry-picks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/buildkit/commit/90ee5deef6c6efcb82358eb48d76235191196db1\"\u003e\u003ccode\u003e90ee5de\u003c/code\u003e\u003c/a\u003e vendor: update x/net to v0.51.0\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/moby/buildkit/compare/v0.12.5...v0.28.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/russellhaering/gosaml2` from 0.9.1 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/russellhaering/gosaml2/releases\"\u003egithub.com/russellhaering/gosaml2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReject unsigned SAML \u003ccode\u003eLogoutRequest\u003c/code\u003e when signature validation is enabled. Previously, \u003ccode\u003eValidateEncodedLogoutRequestPOST\u003c/code\u003e silently accepted unsigned requests even when \u003ccode\u003eSkipSignatureValidation\u003c/code\u003e was \u003ccode\u003efalse\u003c/code\u003e. (GHSA-pcgw-qcv5-h8ch)\u003c/li\u003e\n\u003cli\u003eSecurity hardening: CBC bounds check to prevent panics from crafted ciphertext, replaced \u003ccode\u003epanic()\u003c/code\u003e calls with error returns, and assertion signatures within a signed Response envelope are now verified when present (previously they were skipped entirely, which could allow XML wrapping attacks)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd oss-fuzz integration\u003c/li\u003e\n\u003cli\u003eBump minimum Go version to 1.25\u003c/li\u003e\n\u003cli\u003eUpdate dependencies: goxmldsig v1.6.0, etree v1.6.0, testify v1.11.1\u003c/li\u003e\n\u003cli\u003eBump all GitHub Actions to latest versions\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/gosaml2/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/russellhaering/gosaml2/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport encryption and signing keys that implement crypto.Signer by \u003ca href=\"https://github.com/nicksnyder\"\u003e\u003ccode\u003e@​nicksnyder\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/131\"\u003erussellhaering/gosaml2#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAvoid panic when the encrypted data has wrong size for CBC by \u003ca href=\"https://github.com/fformica\"\u003e\u003ccode\u003e@​fformica\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/195\"\u003erussellhaering/gosaml2#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSecurity hardening by \u003ca href=\"https://github.com/ahacker1-securesaml\"\u003e\u003ccode\u003e@​ahacker1-securesaml\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDependency and CI updates\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nicksnyder\"\u003e\u003ccode\u003e@​nicksnyder\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/131\"\u003erussellhaering/gosaml2#131\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fformica\"\u003e\u003ccode\u003e@​fformica\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/pull/195\"\u003erussellhaering/gosaml2#195\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/gosaml2/compare/v0.9.1...v0.10.0\"\u003ehttps://github.com/russellhaering/gosaml2/compare/v0.9.1...v0.10.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/636e7dda202a4d669644e72404a82616ffcbe004\"\u003e\u003ccode\u003e636e7dd\u003c/code\u003e\u003c/a\u003e Bump all GitHub Actions to latest versions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/1e9cc447527b4031ffd8e7a2cb64b99289ffde29\"\u003e\u003ccode\u003e1e9cc44\u003c/code\u003e\u003c/a\u003e Bump minimum Go version to 1.25 and update dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/7159bbee574ae311e3c995df506c2e61cf2c232a\"\u003e\u003ccode\u003e7159bbe\u003c/code\u003e\u003c/a\u003e Reject unsigned LogoutRequest when signature validation is enabled\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/4ddcc822c3c2bb6676221cbf2259e141b2f2e315\"\u003e\u003ccode\u003e4ddcc82\u003c/code\u003e\u003c/a\u003e Security hardening: CBC bounds check, panic removal, assertion signature veri...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/d57d10562c0a9243d5a6d86fff5067d34c7f045f\"\u003e\u003ccode\u003ed57d105\u003c/code\u003e\u003c/a\u003e Add oss-fuzz integration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/e8596e7457e1657e90dd2fb18da03e03fc4ae1a4\"\u003e\u003ccode\u003ee8596e7\u003c/code\u003e\u003c/a\u003e Fix tests broken by expired IDP test certificate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/5d20d420e18a8e08e870d145be26bc8110073d90\"\u003e\u003ccode\u003e5d20d42\u003c/code\u003e\u003c/a\u003e Bump github.com/beevik/etree from 1.5.0 to 1.5.1 (\u003ca href=\"https://redirect.github.com/russellhaering/gosaml2/issues/212\"\u003e#212\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/115aa21abac634a1c9b68c2a30505b60b148f8cc\"\u003e\u003ccode\u003e115aa21\u003c/code\u003e\u003c/a\u003e Bump github/codeql-action from 3.28.12 to 3.28.17\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/cdd66bccd151b682fe99fec82a1c8c4ecdba8ff0\"\u003e\u003ccode\u003ecdd66bc\u003c/code\u003e\u003c/a\u003e Tidy dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/gosaml2/commit/3418f9ae09063ff8df0ce1bd93f24e538e614def\"\u003e\u003ccode\u003e3418f9a\u003c/code\u003e\u003c/a\u003e Avoid panic when the encrypted data has wrong size for CBC\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/russellhaering/gosaml2/compare/v0.9.1...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/russellhaering/goxmldsig` from 1.4.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/russellhaering/goxmldsig/releases\"\u003egithub.com/russellhaering/goxmldsig's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eSecurity:\u003c/strong\u003e Fix possible signature validation bypass caused by loop variable capture in \u003ccode\u003evalidateSignature\u003c/code\u003e (GHSA-479m-364c-43vc)\u003c/li\u003e\n\u003cli\u003eBump minimum Go version to 1.23\u003c/li\u003e\n\u003cli\u003eBump \u003ccode\u003egithub.com/beevik/etree\u003c/code\u003e to v1.6.0\u003c/li\u003e\n\u003cli\u003eAdd fuzz tests for XML signature validation and canonicalization\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/goxmldsig/compare/v1.5.0...v1.6.0\"\u003ehttps://github.com/russellhaering/goxmldsig/compare/v1.5.0...v1.6.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump dependencies\u003c/li\u003e\n\u003cli\u003eUpdate GitHub workflows\u003c/li\u003e\n\u003cli\u003eSecurity hardening by \u003ca href=\"https://github.com/ahacker1-securesaml\"\u003e\u003ccode\u003e@​ahacker1-securesaml\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/russellhaering/goxmldsig/compare/v1.4.0...v1.5.0\"\u003ehttps://github.com/russellhaering/goxmldsig/compare/v1.4.0...v1.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/878c8c615feb628064040115d00e105a137fcfa7\"\u003e\u003ccode\u003e878c8c6\u003c/code\u003e\u003c/a\u003e Apply go fix ./...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/db3d1e31f7535d7f5debb49851b9e9a2ff08b936\"\u003e\u003ccode\u003edb3d1e3\u003c/code\u003e\u003c/a\u003e Fix loop variable capture bug in validateSignature\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/4f576b89acf01f68983ca5cb9dcebd0b460234bc\"\u003e\u003ccode\u003e4f576b8\u003c/code\u003e\u003c/a\u003e Bump dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/79c29ee3ed2da54553a4132b372ced83185fcf12\"\u003e\u003ccode\u003e79c29ee\u003c/code\u003e\u003c/a\u003e Rename FuzzValidate to FuzzValidateXML to avoid name collision\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/ac7bf745b9fd3d92460ad9be3459a97b0e3bf89f\"\u003e\u003ccode\u003eac7bf74\u003c/code\u003e\u003c/a\u003e Add fuzz tests for XML signature validation and canonicalization\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/a5805dfad93fc67a2106a1dc6d881df83769e3eb\"\u003e\u003ccode\u003ea5805df\u003c/code\u003e\u003c/a\u003e Bump github/codeql-action from 2.13.4 to 3.28.17 (\u003ca href=\"https://redirect.github.com/russellhaering/goxmldsig/issues/155\"\u003e#155\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/7dac9ec3b2a1a336d73ff091fba4131d186dfec6\"\u003e\u003ccode\u003e7dac9ec\u003c/code\u003e\u003c/a\u003e Update GitHub Workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/1bf54ca740682fac1149814344c24c722fde8238\"\u003e\u003ccode\u003e1bf54ca\u003c/code\u003e\u003c/a\u003e Bump dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/e1c8a5b89d1d03089aa1a0ec546b33aaf80ee02f\"\u003e\u003ccode\u003ee1c8a5b\u003c/code\u003e\u003c/a\u003e Refactor to help eliminate potential vulnerabilities:\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/russellhaering/goxmldsig/commit/2ac5490a2441a3484e030c5cfeb02ce62886c01a\"\u003e\u003ccode\u003e2ac5490\u003c/code\u003e\u003c/a\u003e Refactor .verifyCertificate to obtain the certificate from an identifier from...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/russellhaering/goxmldsig/compare/v1.4.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/slack-go/slack` from 0.10.1 to 0.23.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/slack-go/slack/releases\"\u003egithub.com/slack-go/slack's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.23.1\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!IMPORTANT]\nEven though this is a [security] patch release, if you were using an empty secret, this is a breaking change due to a change in behaviour. That's on purpose, to ensure you fix your approach so that there are no footguns.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eNewSecretsVerifier\u003c/code\u003e now rejects empty signing secrets to avoid accepting forged request\nsignatures when applications are misconfigured.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/slack-go/slack/compare/v0.23.0...v0.23.1\"\u003ehttps://github.com/slack-go/slack/compare/v0.23.0...v0.23.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.23.0\u003c/h2\u003e\n\u003ch2\u003eAdded\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(socketmode): expose socketmode handler \u003ccode\u003edispatcher\u003c/code\u003e method by \u003ca href=\"https://github.com/nlopes\"\u003e\u003ccode\u003e@​nlopes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1550\"\u003eslack-go/slack#1550\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(block): add card and carousel blocks by \u003ca href=\"https://github.com/nlopes\"\u003e\u003ccode\u003e@​nlopes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1551\"\u003eslack-go/slack#1551\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(assistant): add username and icon to status update by \u003ca href=\"https://github.com/charleenwang\"\u003e\u003ccode\u003e@​charleenwang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1553\"\u003eslack-go/slack#1553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(block): add alert block by \u003ca href=\"https://github.com/nlopes\"\u003e\u003ccode\u003e@​nlopes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1552\"\u003eslack-go/slack#1552\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/charleenwang\"\u003e\u003ccode\u003e@​charleenwang\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/slack-go/slack/pull/1553\"\u003eslack-go/slack#1553\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/slack-go/slack/compare/v0.22.0...v0.23.0\"\u003ehttps://github.com/slack-go/slack/compare/v0.22.0...v0.23.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.22.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eOAuth PKCE support\u003c/strong\u003e - \u003ccode\u003eOAuthOptionCodeVerifier\u003c/code\u003e option for \u003ccode\u003eGetOAuthV2Response\u003c/code\u003e, plus \u003ccode\u003eGenerateCodeVerifier()\u003c/code\u003e and \u003ccode\u003eGenerateCodeChallenge()\u003c/code\u003e helpers (RFC 7636). \u003ccode\u003eclient_secret\u003c/code\u003e is now conditionally omitted when empty in both \u003ccode\u003eGetOAuthV2ResponseContext\u003c/code\u003e and \u003ccode\u003eRefreshOAuthV2TokenContext\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eManifest scope fields\u003c/strong\u003e - \u003ccode\u003eBotOptional\u003c/code\u003e and \u003ccode\u003eUserOptional\u003c/code\u003e on \u003ccode\u003eOAuthScopes\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRich text styles\u003c/strong\u003e - \u003ccode\u003eUnderline\u003c/code\u003e, \u003ccode\u003eHighlight\u003c/code\u003e, \u003ccode\u003eClientHighlight\u003c/code\u003e, and \u003ccode\u003eUnlink\u003c/code\u003e on \u003ccode\u003eRichTextSectionTextStyle\u003c/code\u003e. \u003ccode\u003eStyle\u003c/code\u003e field on \u003ccode\u003eRichTextSectionUserGroupElement\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eAssistant search context\u003c/strong\u003e - \u003ccode\u003eSort\u003c/code\u003e, \u003ccode\u003eSortDir\u003c/code\u003e, \u003ccode\u003eBefore\u003c/code\u003e, \u003ccode\u003eAfter\u003c/code\u003e, \u003ccode\u003eHighlight\u003c/code\u003e, \u003ccode\u003eIncludeContextMessages\u003c/code\u003e, \u003ccode\u003eIncludeDeletedUsers\u003c/code\u003e, \u003ccode\u003eIncludeMessageBlocks\u003c/code\u003e, \u003ccode\u003eIncludeArchivedChannels\u003c/code\u003e, \u003ccode\u003eDisableSemanticSearch\u003c/code\u003e, \u003ccode\u003eModifiers\u003c/code\u003e, \u003ccode\u003eTermClauses\u003c/code\u003e parameters and new response types (\u003ccode\u003eAssistantSearchContextFile\u003c/code\u003e, \u003ccode\u003eAssistantSearchContextChannel\u003c/code\u003e, \u003ccode\u003eAssistantSearchContextMessageContext\u003c/code\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003esocketmode: malformed JSON no longer forces reconnect\u003c/strong\u003e - \u003ccode\u003ejson.SyntaxError\u003c/code\u003e and \u003ccode\u003ejson.UnmarshalTypeError\u003c/code\u003e now emit an \u003ccode\u003eEventTypeIncomingError\u003c/code\u003e event and continue reading instead of killing the WebSocket connection.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003esocketmode: \u003ccode\u003edebug_reconnects\u003c/code\u003e query param applied correctly\u003c/strong\u003e - the parameter was silently discarded due to a missing \u003ccode\u003eurl.RawQuery\u003c/code\u003e assignment.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eChannelTypes\u003c/code\u003e and \u003ccode\u003eContentTypes\u003c/code\u003e now send comma-separated values instead of repeated form keys, matching the convention used by every other method in the library.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eassistant:write\u003c/code\u003e scope marked as deprecated in favour of \u003ccode\u003echat:write\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ccode\u003ev0.21.1...v0.22.0\u003c/code\u003e\u003c/p\u003e\n\u003ch2\u003ev0.21.1\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eMessageEvent\u003c/code\u003e channel type helpers\u003c/strong\u003e — New \u003ccode\u003eChannelTypeChannel\u003c/code\u003e, \u003ccode\u003eChannelTypeGroup\u003c/code\u003e,\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/slack-go/slack/blob/master/CHANGELOG.md\"\u003egithub.com/slack-go/slack's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[0.23.1] - 2026-05-10\u003c/h2\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eNewSecretsVerifier\u003c/code\u003e now rejects empty signing secrets to avoid accepting forged request\nsignatures when applications are misconfigured.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[0.23.0] - 2026-04-22\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eBlock Kit: \u003ccode\u003eCardBlock\u003c/code\u003e and \u003ccode\u003eCarouselBlock\u003c/code\u003e\u003c/strong\u003e — Support for two of the new\nagent-UI blocks announced in the\n\u003ca href=\"https://docs.slack.dev/changelog/2026/04/16/block-kit-new-blocks\"\u003eApril 16 Slack changelog\u003c/a\u003e.\n\u003ccode\u003eCardBlock\u003c/code\u003e is constructed via \u003ccode\u003eNewCardBlock\u003c/code\u003e with a functional-options\npattern and fluent \u003ccode\u003eWith*\u003c/code\u003e builders (\u003ccode\u003eWithTitle\u003c/code\u003e, \u003ccode\u003eWithSubtitle\u003c/code\u003e, \u003ccode\u003eWithBody\u003c/code\u003e,\n\u003ccode\u003eWithIcon\u003c/code\u003e, \u003ccode\u003eWithHeroImage\u003c/code\u003e, \u003ccode\u003eWithActions\u003c/code\u003e). \u003ccode\u003eCarouselBlock\u003c/code\u003e is constructed\nvia \u003ccode\u003eNewCarouselBlock\u003c/code\u003e with a variadic \u003ccode\u003e*CardBlock\u003c/code\u003e list plus \u003ccode\u003eWithBlockID\u003c/code\u003e\nand \u003ccode\u003eAddCard\u003c/code\u003e helpers. Both blocks wire into \u003ccode\u003eBlocks.UnmarshalJSON\u003c/code\u003e for\nround-trip fidelity, and reuse existing \u003ccode\u003eImageBlockElement\u003c/code\u003e /\n\u003ccode\u003eButtonBlockElement\u003c/code\u003e / \u003ccode\u003eBlockElements\u003c/code\u003e types rather than introducing new\ncomposition objects.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eBlock Kit: \u003ccode\u003eAlertBlock\u003c/code\u003e\u003c/strong\u003e — Support for the third of the new agent-UI\nblocks from the\n\u003ca href=\"https://docs.slack.dev/changelog/2026/04/16/block-kit-new-blocks\"\u003eApril 16 Slack changelog\u003c/a\u003e.\n\u003ccode\u003eAlertBlock\u003c/code\u003e is constructed via \u003ccode\u003eNewAlertBlock\u003c/code\u003e with a \u003ccode\u003e*TextBlockObject\u003c/code\u003e\nbody and a functional-options pattern. Severity is set via\n\u003ccode\u003eAlertBlockOptionLevel\u003c/code\u003e (\u003ccode\u003eAlertLevelDefault\u003c/code\u003e, \u003ccode\u003eAlertLevelInfo\u003c/code\u003e,\n\u003ccode\u003eAlertLevelWarning\u003c/code\u003e, \u003ccode\u003eAlertLevelError\u003c/code\u003e, \u003ccode\u003eAlertLevelSuccess\u003c/code\u003e) and the block\nID via \u003ccode\u003eAlertBlockOptionBlockID\u003c/code\u003e. Wires into \u003ccode\u003eBlocks.UnmarshalJSON\u003c/code\u003e for\nround-trip fidelity. Must be delivered via the streaming chunks API —\n\u003ccode\u003echat.postMessage\u003c/code\u003e rejects it as an unsupported block type.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eStreaming-message chunks API\u003c/strong\u003e — \u003ccode\u003echat.startStream\u003c/code\u003e / \u003ccode\u003echat.appendStream\u003c/code\u003e /\n\u003ccode\u003echat.stopStream\u003c/code\u003e now accept a \u003ccode\u003echunks\u003c/code\u003e parameter. Added \u003ccode\u003eMsgOptionChunks\u003c/code\u003e\nalong with a \u003ccode\u003eStreamChunk\u003c/code\u003e interface and four chunk types:\n\u003ccode\u003eMarkdownTextChunk\u003c/code\u003e, \u003ccode\u003eTaskUpdateChunk\u003c/code\u003e, \u003ccode\u003ePlanUpdateChunk\u003c/code\u003e, and \u003ccode\u003eBlocksChunk\u003c/code\u003e\n(each with a \u003ccode\u003eNew*Chunk\u003c/code\u003e constructor). This is the supported transport for\nstreaming Block Kit content and the new agent-UI blocks in particular\n(which \u003ccode\u003echat.postMessage\u003c/code\u003e rejects as \u003ccode\u003eUnsupported block type\u003c/code\u003e).\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003e\u003ccode\u003eMsgOptionTaskDisplayMode\u003c/code\u003e\u003c/strong\u003e — New option for \u003ccode\u003echat.startStream\u003c/code\u003e controlling\nwhether task chunks render as a sequential timeline or a grouped plan.\nAccepts \u003ccode\u003eTaskDisplayModeTimeline\u003c/code\u003e or \u003ccode\u003eTaskDisplayModePlan\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003eUsername\u003c/code\u003e, \u003ccode\u003eIconURL\u003c/code\u003e, and \u003ccode\u003eIconEmoji\u003c/code\u003e fields to\n\u003ccode\u003eAssistantThreadsSetStatusParameters\u003c/code\u003e, forwarded by\n\u003ccode\u003eSetAssistantThreadsStatusContext\u003c/code\u003e, matching the new optional parameters on\n\u003ca href=\"https://docs.slack.dev/reference/methods/assistant.threads.setStatus\"\u003e\u003ccode\u003eassistant.threads.setStatus\u003c/code\u003e\u003c/a\u003e\nfor customising the status-update presentation.\u003c/li\u003e\n\u003cli\u003eExposed \u003ccode\u003eSocketmodeHandler.DispatchEvent\u003c/code\u003e (previously the unexported\n\u003ccode\u003edispatcher\u003c/code\u003e), enabling integration tests to exercise registered handlers\nwithout a live WebSocket connection. The unexported \u003ccode\u003edispatcher\u003c/code\u003e is kept as\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/34ad5c052e446f58505ae8d81a2a72821de107cc\"\u003e\u003ccode\u003e34ad5c0\u003c/code\u003e\u003c/a\u003e security: reject empty signing secret for NewSecretsVerifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/c6edc2762f59b0fcd2af7f2d8eab36e2f29bad7d\"\u003e\u003ccode\u003ec6edc27\u003c/code\u003e\u003c/a\u003e chore: bump go to 1.25.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/35d8f31a076f73db88bf08304a8418846ed7b865\"\u003e\u003ccode\u003e35d8f31\u003c/code\u003e\u003c/a\u003e chore: bump to v0.23.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/ae59061d9e69253ce76fa676a2a91db238d363cf\"\u003e\u003ccode\u003eae59061\u003c/code\u003e\u003c/a\u003e feat(block): add alert block (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1552\"\u003e#1552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/2df5cfa0b974d57fc8077ecd030be22e42a2e4a1\"\u003e\u003ccode\u003e2df5cfa\u003c/code\u003e\u003c/a\u003e feat(assistant): add username and icon to status update (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1553\"\u003e#1553\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/e3c0e8b15630749da93cd18168a26e78a74fecd0\"\u003e\u003ccode\u003ee3c0e8b\u003c/code\u003e\u003c/a\u003e feat(block): add card and carousel blocks (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1551\"\u003e#1551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/4c472cd10a45bd81ef26db9510a317a674293c78\"\u003e\u003ccode\u003e4c472cd\u003c/code\u003e\u003c/a\u003e feat(socketmode): expose socketmode handler \u003ccode\u003edispatcher\u003c/code\u003e method (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1550\"\u003e#1550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/f482b199d4e33975c13e65e075bcf87173ad902f\"\u003e\u003ccode\u003ef482b19\u003c/code\u003e\u003c/a\u003e chore: v0.22.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/3a5db9ddb81e7c9e5379efa510ba826b1e5d935c\"\u003e\u003ccode\u003e3a5db9d\u003c/code\u003e\u003c/a\u003e chore: fix staticcheck errors (\u003ca href=\"https://redirect.github.com/slack-go/slack/issues/1548\"\u003e#1548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slack-go/slack/commit/19e0416c15851aa3f28d41e2b92dbb2fb541ad96\"\u003e\u003ccode\u003e19e0416\u003c/code\u003e\u003c/a\u003e ci: add staticcheck\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/slack-go/slack/compare/v0.10.1...v0.23.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp` from 1.27.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.27.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.27.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.25.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.24.0 to 0.50.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnos...\n\n_Description has been truncated_\n\n---\n\n🔄 This PR performs a comprehensive dependency update across 5 directories, bumping 28 Go modules to their latest versions including major updates to security-critical packages like go-git, gRPC, and OpenTelemetry components.\n\n\u003cdetails\u003e\n\u003csummary\u003e🔍 \u003cstrong\u003eDetailed Analysis\u003c/strong\u003e\u003c/summary\u003e\n\n### Key Changes\n- **Go Version Updates**: Upgraded Go toolchain versions across modules (1.21→1.25, 1.22→1.24.0, etc.)\n- **Security Updates**: Critical security fixes in go-git (5.11.0→5.19.1), gosaml2 (0.9.1→0.11.0), and buildkit (0.12.5→0.28.1)\n- **Core Dependencies**: Major version bumps for gRPC (1.63.2→1.79.3), OpenTelemetry SDK (1.25.0→1.43.0), and Slack SDK (0.10.1→0.23.1)\n- **Infrastructure Libraries**: Updates to crypto, oauth2, Redis client, and PostgreSQL driver packages\n\n### Technical Implementation\n```mermaid\nflowchart TD\n    A[Dependabot Scan] --\u003e B[5 Directory Analysis]\n    B --\u003e C[progress-bot/]\n    B --\u003e D[lib/]\n    B --\u003e E[lib/managedservicesplatform/]\n    B --\u003e F[monitoring/]\n    B --\u003e G[Root Directory]\n    \n    C --\u003e H[4 Updates: Slack, crypto, oauth2, gRPC]\n    D --\u003e I[4 Updates: crypto, oauth2, Redis, gRPC]\n    E --\u003e J[6 Updates: OpenTelemetry, oauth2, pgx, Redis, edwards25519, gRPC]\n    F --\u003e K[3 Updates: crypto, logrus, retryablehttp]\n    G --\u003e L[8 Major Updates: distribution, go-git, buildkit, gosaml2, etc.]\n    \n    H --\u003e M[Security \u0026 Compatibility Improvements]\n    I --\u003e M\n    J --\u003e M\n    K --\u003e M\n    L --\u003e M\n```\n\n### Impact\n- **Security Enhancement**: Addresses multiple CVEs and security vulnerabilities in go-git, buildkit, and SAML libraries\n- **Performance Improvements**: Updated OpenTelemetry SDK includes performance optimizations and new features like W3C Trace Context Level 2 support\n- **Compatibility**: Maintains backward compatibility while providing access to latest features and bug fixes across the dependency tree\n- **Maintenance**: Reduces technical debt by keeping dependencies current and aligned with latest Go ecosystem standards\n\n\u003c/details\u003e\n\n_Created with [Palmier](https://www.palmier.io)_","html_url":"https://github.com/GlacierEQ/sourcegraph-public-snapshot/pull/38","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GlacierEQ%2Fsourcegraph-public-snapshot/issues/38","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/38/packages"}},{"old_version":"5.7.4","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-25T04:32:56.000Z","version_change":"5.7.4 → 5.9.2","issue":{"uuid":"4514285821","node_id":"PR_kwDORfzOlc7e59ya","number":22,"state":"closed","title":"chore(deps): bump the gomod-minor-patch group with 5 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T05:13:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-25T04:32:56.000Z","updated_at":"2026-05-25T05:13:57.000Z","time_to_close":2459,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"gomod-minor-patch","update_count":5,"packages":[{"name":"github.com/caarlos0/env/v11","old_version":"11.3.1","new_version":"11.4.1","repository_url":"https://github.com/caarlos0/env"},{"name":"github.com/fsnotify/fsnotify","old_version":"1.9.0","new_version":"1.10.1","repository_url":"https://github.com/fsnotify/fsnotify"},{"name":"github.com/jackc/pgx/v5","old_version":"5.7.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/mark3labs/mcp-go","old_version":"0.30.0","new_version":"0.54.0","repository_url":"https://github.com/mark3labs/mcp-go"},{"name":"github.com/stretchr/testify","old_version":"1.10.0","new_version":"1.11.1","repository_url":"https://github.com/stretchr/testify"}],"path":null,"ecosystem":"go"},"body":"Bumps the gomod-minor-patch group with 5 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/caarlos0/env/v11](https://github.com/caarlos0/env) | `11.3.1` | `11.4.1` |\n| [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) | `1.9.0` | `1.10.1` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.7.4` | `5.9.2` |\n| [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go) | `0.30.0` | `0.54.0` |\n| [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.10.0` | `1.11.1` |\n\nUpdates `github.com/caarlos0/env/v11` from 11.3.1 to 11.4.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/caarlos0/env/releases\"\u003egithub.com/caarlos0/env/v11's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev11.4.1\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e6daeb06ac7e3c9532a7eaa5768d45917393b7480: fix: use Key instead of OwnKey in rawEnvVars to properly reference existing defaults in complex structs (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/412\"\u003e#412\u003c/a\u003e) (\u003ca href=\"https://github.com/AndrewChubatiuk\"\u003e\u003ccode\u003e@​AndrewChubatiuk\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e1ff55e6c9733833ce75d62b345916a407dbe4158: docs: adaptive starchart (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/416\"\u003e#416\u003c/a\u003e) (\u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecf4a9682420b025e44b4773fd7ee0be48bb68b2f: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/411\"\u003e#411\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e33faf6f333c2c3dacef2991825f8e03960a2c0cb: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/417\"\u003e#417\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e0cb635b62488f4d310809a82a8832cedc9aa94eb: ci(deps): bump the actions group with 6 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/415\"\u003e#415\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ea72d89a8930fc800372a6a338a1acf33e5cc3a56: ci: update release config (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003cp\u003e\u003cem\u003eReleased with \u003ca href=\"https://goreleaser.com/pro\"\u003eGoReleaser Pro\u003c/a\u003e!\u003c/em\u003e\u003c/p\u003e\n\u003ch2\u003ev11.4.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e2be9960e75cc5f053dcb89c64e43de19765fd154: feat: option to set defaults for zero values only (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/325\"\u003e#325\u003c/a\u003e) (\u003ca href=\"https://github.com/dnovikoff\"\u003e\u003ccode\u003e@​dnovikoff\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ed3505f14213c309f8ca3b0b1e468284749456dde: fix: all new lint issues, update golangci-lint (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaaa45113e5eb50e2a243959041452bbab40ae3cc: fix: lint issues (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e8917d78b4247be8a3f555ccee03305c7763471e4: docs: clarify example a bit (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eOther work\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e7b10cf56e20fe41042b7a7148555990b64b85f95: ci(deps): bump github/codeql-action in the actions group (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/400\"\u003e#400\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ec98ad844e1e479526ef6b4069e0b0f1ced5c953d: ci(deps): bump github/codeql-action in the actions group (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/410\"\u003e#410\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e2ca9b08cafe0bc271636c15fa34d156733631123: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/393\"\u003e#393\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ecd5c220dbceb1d1353263a5d6fe3f6816aa1217f: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/396\"\u003e#396\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e4d25a4659f428119ce5eaf3ea579176b9161c6e0: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/402\"\u003e#402\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ec660cc91db76b02de72e8ab7e9ad348edef3f891: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/403\"\u003e#403\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e3a3ea05453bd16685c807ba089b20a82033a02f1: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/405\"\u003e#405\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ed28373e3a047e93ad21676ea9878e5dd1ca157f7: ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/408\"\u003e#408\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e7b5005693b54a0014e4d3a2ee6192c7bce336af7: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/397\"\u003e#397\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e6b2db30d1977183eb8a9732c01ff4e6788565a6e: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/399\"\u003e#399\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003ef33230e8e7e0377c9cdb65d43940db1666061766: ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/404\"\u003e#404\u003c/a\u003e) (\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot])\u003c/li\u003e\n\u003cli\u003e2dc7aec137983c972c29779e951011ddb496fc8b: ci(sec): add codeql, govulncheck, grype (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e82412ce6900082095e9e4b66f5024c0e67ff3fb8: ci: build perms (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e02495c42107d77c9365aef6a031b7089f734af3b: ci: build perms (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee5b3c2c879e43e458e060e2a61fb525e161b7715: ci: lint workflow perms (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e6690dfb3d314535320f3a30365c52f6fb40c8992: ci: pin github actions versions (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e548a7a66c9d5504d8f9c0488ee47a05ae453c7e2: ci: update dependabot (\u003ca href=\"https://github.com/caarlos0\"\u003e\u003ccode\u003e@​caarlos0\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/a72d89a8930fc800372a6a338a1acf33e5cc3a56\"\u003e\u003ccode\u003ea72d89a\u003c/code\u003e\u003c/a\u003e ci: update release config\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/6daeb06ac7e3c9532a7eaa5768d45917393b7480\"\u003e\u003ccode\u003e6daeb06\u003c/code\u003e\u003c/a\u003e fix: use Key instead of OwnKey in rawEnvVars to properly reference existing d...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/33faf6f333c2c3dacef2991825f8e03960a2c0cb\"\u003e\u003ccode\u003e33faf6f\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/1ff55e6c9733833ce75d62b345916a407dbe4158\"\u003e\u003ccode\u003e1ff55e6\u003c/code\u003e\u003c/a\u003e docs: adaptive starchart (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/0cb635b62488f4d310809a82a8832cedc9aa94eb\"\u003e\u003ccode\u003e0cb635b\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 6 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/415\"\u003e#415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/cf4a9682420b025e44b4773fd7ee0be48bb68b2f\"\u003e\u003ccode\u003ecf4a968\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 3 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/411\"\u003e#411\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/aaa45113e5eb50e2a243959041452bbab40ae3cc\"\u003e\u003ccode\u003eaaa4511\u003c/code\u003e\u003c/a\u003e fix: lint issues\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/4fe3f702002c48f73b892f12d128c215aa7731ee\"\u003e\u003ccode\u003e4fe3f70\u003c/code\u003e\u003c/a\u003e chore: dependabot update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/c98ad844e1e479526ef6b4069e0b0f1ced5c953d\"\u003e\u003ccode\u003ec98ad84\u003c/code\u003e\u003c/a\u003e ci(deps): bump github/codeql-action in the actions group (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/410\"\u003e#410\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/caarlos0/env/commit/d28373e3a047e93ad21676ea9878e5dd1ca157f7\"\u003e\u003ccode\u003ed28373e\u003c/code\u003e\u003c/a\u003e ci(deps): bump the actions group with 2 updates (\u003ca href=\"https://redirect.github.com/caarlos0/env/issues/408\"\u003e#408\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/caarlos0/env/compare/v11.3.1...v11.4.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fsnotify/fsnotify` from 1.9.0 to 1.10.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/releases\"\u003egithub.com/fsnotify/fsnotify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a bad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak when recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix a race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md\"\u003egithub.com/fsnotify/fsnotify's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.10.1 2026-05-04\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0 2026-04-30\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a\nbad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak\nwhen recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix\na race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/76b01a6e8f502187fecedea8b025e79e5a86085c\"\u003e\u003ccode\u003e76b01a6\u003c/code\u003e\u003c/a\u003e Release 1.10.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/fec150b807510e54e5b25def4b6e5fb001b4898c\"\u003e\u003ccode\u003efec150b\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/162b4216ab8f92ecd26425530bee198972c9b3cb\"\u003e\u003ccode\u003e162b421\u003c/code\u003e\u003c/a\u003e inotify, windows: don't rename sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/224257f23b2f3a96509b316c5cead71dd4a9099a\"\u003e\u003ccode\u003e224257f\u003c/code\u003e\u003c/a\u003e inotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/e0c956c0ccaf51562fee30ef5c055c74e6ae2104\"\u003e\u003ccode\u003ee0c956c\u003c/code\u003e\u003c/a\u003e windows: document directory Write events and stabilize tests (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/8d01d7b9cbe0199e4a1e60fbd965fb05dbb42123\"\u003e\u003ccode\u003e8d01d7b\u003c/code\u003e\u003c/a\u003e Release 1.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/602284e4a8cadd488d7a5fa07c48462dfac25108\"\u003e\u003ccode\u003e602284e\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/7f03e59f9659552d8a084e03024cb9b983748ed7\"\u003e\u003ccode\u003e7f03e59\u003c/code\u003e\u003c/a\u003e kqueue: skip ENOENT entries in watchDirectoryFiles (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/dab9dde2fc9ba4d0c1076318f81cabcc8fdb2ec9\"\u003e\u003ccode\u003edab9dde\u003c/code\u003e\u003c/a\u003e windows: lock watch field updates against concurrent WatchList (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/eadf267ce152b5e62d48cc2c13bb08bd4062b6c7\"\u003e\u003ccode\u003eeadf267\u003c/code\u003e\u003c/a\u003e kqueue: drop watches directly in Close() instead of going through remove() (#...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fsnotify/fsnotify/compare/v1.9.0...v1.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/mark3labs/mcp-go` from 0.30.0 to 0.54.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/mark3labs/mcp-go/releases\"\u003egithub.com/mark3labs/mcp-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v0.54.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(server): handle resources/subscribe and resources/unsubscribe (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/865\"\u003e#865\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/873\"\u003emark3labs/mcp-go#873\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(oauth): use LATEST_PROTOCOL_VERSION in metadata discovery (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/868\"\u003e#868\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/874\"\u003emark3labs/mcp-go#874\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(oauth): don't hold metadataMu across HTTP discovery (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/871\"\u003e#871\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/875\"\u003emark3labs/mcp-go#875\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(mcp): add 2025-11-25 sampling-with-tools and capability sub-fields (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/867\"\u003e#867\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/876\"\u003emark3labs/mcp-go#876\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use MCP method constants by \u003ca href=\"https://github.com/nanookclaw\"\u003e\u003ccode\u003e@​nanookclaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/878\"\u003emark3labs/mcp-go#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: add missing godoc comments by \u003ca href=\"https://github.com/aqilaziz\"\u003e\u003ccode\u003e@​aqilaziz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/877\"\u003emark3labs/mcp-go#877\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to SSE message handler and stdio tool call worker by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/882\"\u003emark3labs/mcp-go#882\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to task goroutines, fix cleanup goroutine leak by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/880\"\u003emark3labs/mcp-go#880\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add OpenTelemetry tracing hooks to server and client by \u003ca href=\"https://github.com/QuentinBisson\"\u003e\u003ccode\u003e@​QuentinBisson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/856\"\u003emark3labs/mcp-go#856\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to session hook goroutines by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/883\"\u003emark3labs/mcp-go#883\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(mcp): add BaseMetadata.title, Icon.theme, Resource.size (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/870\"\u003e#870\u003c/a\u003e) by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/885\"\u003emark3labs/mcp-go#885\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nanookclaw\"\u003e\u003ccode\u003e@​nanookclaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/878\"\u003emark3labs/mcp-go#878\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aqilaziz\"\u003e\u003ccode\u003e@​aqilaziz\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/877\"\u003emark3labs/mcp-go#877\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.53.0...v0.54.0\"\u003ehttps://github.com/mark3labs/mcp-go/compare/v0.53.0...v0.54.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.53.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(server): add WithStrictInputSchemaDefault by \u003ca href=\"https://github.com/QuentinBisson\"\u003e\u003ccode\u003e@​QuentinBisson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/853\"\u003emark3labs/mcp-go#853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(server): add CloseSessions and prevent double-close panic on SSE sessions by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/852\"\u003emark3labs/mcp-go#852\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(transport): suppress closed-pipe shutdown noise by \u003ca href=\"https://github.com/Gujiassh\"\u003e\u003ccode\u003e@​Gujiassh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/863\"\u003emark3labs/mcp-go#863\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: add panic recovery to transport goroutines by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/861\"\u003emark3labs/mcp-go#861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: ToolInputSchema inherits MarshalJSON (fixes \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/694\"\u003e#694\u003c/a\u003e) by \u003ca href=\"https://github.com/tamish-max\"\u003e\u003ccode\u003e@​tamish-max\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/858\"\u003emark3labs/mcp-go#858\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ewe should use pointers on returns for ListPrompts and ListResources by \u003ca href=\"https://github.com/Patryk-Stefanski\"\u003e\u003ccode\u003e@​Patryk-Stefanski\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/855\"\u003emark3labs/mcp-go#855\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(mcp): allow _meta on paginated requests by \u003ca href=\"https://github.com/curbol\"\u003e\u003ccode\u003e@​curbol\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/854\"\u003emark3labs/mcp-go#854\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(server): use explicit struct literal in ListTools by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/864\"\u003emark3labs/mcp-go#864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/QuentinBisson\"\u003e\u003ccode\u003e@​QuentinBisson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/853\"\u003emark3labs/mcp-go#853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tamish-max\"\u003e\u003ccode\u003e@​tamish-max\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/858\"\u003emark3labs/mcp-go#858\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/curbol\"\u003e\u003ccode\u003e@​curbol\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/854\"\u003emark3labs/mcp-go#854\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.52.0...v0.53.0\"\u003ehttps://github.com/mark3labs/mcp-go/compare/v0.52.0...v0.53.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.52.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(transport): close response body on 404 in sendHTTP by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/849\"\u003emark3labs/mcp-go#849\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(server): add transport-agnostic Handle entry point by \u003ca href=\"https://github.com/ezynda3\"\u003e\u003ccode\u003e@​ezynda3\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/851\"\u003emark3labs/mcp-go#851\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.51.0...v0.52.0\"\u003ehttps://github.com/mark3labs/mcp-go/compare/v0.51.0...v0.52.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.51.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix(examples): return isError for input validation instead of internal error by \u003ca href=\"https://github.com/blackwell-systems\"\u003e\u003ccode\u003e@​blackwell-systems\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/838\"\u003emark3labs/mcp-go#838\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: issue-829: setTools may resulted in an empty tools. by \u003ca href=\"https://github.com/ycqqq\"\u003e\u003ccode\u003e@​ycqqq\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/pull/830\"\u003emark3labs/mcp-go#830\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/fac90b64b0dfe25b84acd6797a89d2215cf6b480\"\u003e\u003ccode\u003efac90b6\u003c/code\u003e\u003c/a\u003e fmt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/b817eff0c8d5555741b7af126e0bd9c1c8937150\"\u003e\u003ccode\u003eb817eff\u003c/code\u003e\u003c/a\u003e feat(mcp): add BaseMetadata.title, Icon.theme, Resource.size (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/870\"\u003e#870\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/885\"\u003e#885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/602478c1db3d8a90bfc23e9b92af04e920d7a772\"\u003e\u003ccode\u003e602478c\u003c/code\u003e\u003c/a\u003e fix: add panic recovery to session hook goroutines (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/883\"\u003e#883\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/14ddeb3018e97ee21dee8b8297aa7838ab711c9b\"\u003e\u003ccode\u003e14ddeb3\u003c/code\u003e\u003c/a\u003e feat: add OpenTelemetry tracing hooks to server and client (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/856\"\u003e#856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/3f8fc8e8b059c8af76cf2cd2be68c2fc63be5863\"\u003e\u003ccode\u003e3f8fc8e\u003c/code\u003e\u003c/a\u003e fix: add panic recovery to task goroutines, fix cleanup goroutine leak (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/880\"\u003e#880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/e8fac2b918e8c124c3b6502013ce3748129efae0\"\u003e\u003ccode\u003ee8fac2b\u003c/code\u003e\u003c/a\u003e fix: add panic recovery to SSE message handler and stdio tool call worker (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/882\"\u003e#882\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/f789da6c451313df490a53ff4dab246d20585216\"\u003e\u003ccode\u003ef789da6\u003c/code\u003e\u003c/a\u003e docs: add missing godoc comments (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/877\"\u003e#877\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/af75fdaa247c706785e1c1913eb11182c3009bc6\"\u003e\u003ccode\u003eaf75fda\u003c/code\u003e\u003c/a\u003e refactor: use MCP method constants (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/878\"\u003e#878\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/5b982295cd0d58832f2534ca221fde9634b546cf\"\u003e\u003ccode\u003e5b98229\u003c/code\u003e\u003c/a\u003e feat(mcp): add 2025-11-25 sampling-with-tools and capability sub-fields (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/867\"\u003e#867\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mark3labs/mcp-go/commit/5ef1dbca29b6da252b5f28be8baefc194eea8958\"\u003e\u003ccode\u003e5ef1dbc\u003c/code\u003e\u003c/a\u003e fix(oauth): don't hold metadataMu across HTTP discovery (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/871\"\u003e#871\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/mark3labs/mcp-go/issues/875\"\u003e#875\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/mark3labs/mcp-go/compare/v0.30.0...v0.54.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/stretchr/testify` from 1.10.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stretchr/testify/releases\"\u003egithub.com/stretchr/testify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1785\"\u003e#1785\u003c/a\u003e introduced in v1.11.0 where expected argument values implementing the stringer interface (\u003ccode\u003eString() string\u003c/code\u003e) with a method which mutates their value, when passed to mock.Mock.On (\u003ccode\u003em.On(\u0026quot;Method\u0026quot;, \u0026lt;expected\u0026gt;).Return()\u003c/code\u003e) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1788\"\u003estretchr/testify#1788\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\"\u003ehttps://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFunctional Changes\u003c/h3\u003e\n\u003cp\u003ev1.11.0 Includes a number of performance improvements.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCall stack perf change for CallerInfo by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1614\"\u003estretchr/testify#1614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLazily render mock diff output on successful match by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1615\"\u003estretchr/testify#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check early in Eventually, EventuallyWithT, and Never by \u003ca href=\"https://github.com/cszczepaniak\"\u003e\u003ccode\u003e@​cszczepaniak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1427\"\u003estretchr/testify#1427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: add IsNotType by \u003ca href=\"https://github.com/bartventer\"\u003e\u003ccode\u003e@​bartventer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1730\"\u003estretchr/testify#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.JSONEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1754\"\u003estretchr/testify#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.YAMLEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1755\"\u003estretchr/testify#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: faster and simpler isEmpty using reflect.Value.IsZero by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1761\"\u003estretchr/testify#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: faster methods filtering (internal refactor) by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1758\"\u003estretchr/testify#1758\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eassert.ErrorAs: log target type by \u003ca href=\"https://github.com/craig65535\"\u003e\u003ccode\u003e@​craig65535\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1345\"\u003estretchr/testify#1345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix failure message formatting for Positive and Negative asserts in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1062\"\u003estretchr/testify#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorIs message when error is nil but an error was expected by \u003ca href=\"https://github.com/tsioftas\"\u003e\u003ccode\u003e@​tsioftas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1681\"\u003estretchr/testify#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix Subset/NotSubset when calling with mixed input types by \u003ca href=\"https://github.com/siliconbrain\"\u003e\u003ccode\u003e@​siliconbrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1729\"\u003estretchr/testify#1729\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorAs failure message when error is nil by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1734\"\u003estretchr/testify#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock.AssertNumberOfCalls: improve error msg by \u003ca href=\"https://github.com/3scalation\"\u003e\u003ccode\u003e@​3scalation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1743\"\u003estretchr/testify#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation, Build \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Fix typo in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1688\"\u003estretchr/testify#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace deprecated io/ioutil with io and os by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1684\"\u003estretchr/testify#1684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument consequences of calling t.FailNow() by \u003ca href=\"https://github.com/greg0ire\"\u003e\u003ccode\u003e@​greg0ire\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1710\"\u003estretchr/testify#1710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update docs for Unset \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1621\"\u003e#1621\u003c/a\u003e by \u003ca href=\"https://github.com/techfg\"\u003e\u003ccode\u003e@​techfg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1709\"\u003estretchr/testify#1709\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: apply gofmt to examples by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1687\"\u003estretchr/testify#1687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use %q and %T to simplify fmt.Sprintf by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1674\"\u003estretchr/testify#1674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePropose Christophe Colombier (ccoVeille) as approver by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1716\"\u003estretchr/testify#1716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documentation for the Error function in assert or require package by \u003ca href=\"https://github.com/architagr\"\u003e\u003ccode\u003e@​architagr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1675\"\u003estretchr/testify#1675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: remove deprecated build constraints by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1671\"\u003estretchr/testify#1671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: apply gofumpt to internal test suite by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1739\"\u003estretchr/testify#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: fix shebang in .ci.*.sh scripts by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1746\"\u003estretchr/testify#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert,require: enable parallel testing on (almost) all top tests by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1747\"\u003estretchr/testify#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite.Passed: add one more status test report by \u003ca href=\"https://github.com/Ararsa-Derese\"\u003e\u003ccode\u003e@​Ararsa-Derese\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1706\"\u003estretchr/testify#1706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Helper() method in internal mocks and assert.CollectT by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1423\"\u003estretchr/testify#1423\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.Same/NotSame: improve usage of Sprintf by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1742\"\u003estretchr/testify#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock: enable parallel testing on internal testsuite by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1756\"\u003estretchr/testify#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: cleanup use of 'testing' internals at runtime by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1751\"\u003estretchr/testify#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check test failure message for Empty and NotEmpty  by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1745\"\u003estretchr/testify#1745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/2a57335dc9cd6833daa820bc94d9b40c26a7917d\"\u003e\u003ccode\u003e2a57335\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1788\"\u003e#1788\u003c/a\u003e from brackendawson/1785-backport-1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/af8c91234f184009f57ef29027b39ca89cb00100\"\u003e\u003ccode\u003eaf8c912\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/b7801fbf5cd58d201296d5d0e132d1849966dbd4\"\u003e\u003ccode\u003eb7801fb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1778\"\u003e#1778\u003c/a\u003e from stretchr/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/69831f3b08c40d56a09d0be93e9d5ae034f1590b\"\u003e\u003ccode\u003e69831f3\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/a53be35c3b0cfcd5189cffcfd75df60ea581104c\"\u003e\u003ccode\u003ea53be35\u003c/code\u003e\u003c/a\u003e Improve captureTestingT helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/aafb604176db7e1f2c9810bc90d644291d057687\"\u003e\u003ccode\u003eaafb604\u003c/code\u003e\u003c/a\u003e mock: improve formatting of error message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7218e0390acd2aea3edb18574110ec2753c0aeef\"\u003e\u003ccode\u003e7218e03\u003c/code\u003e\u003c/a\u003e improve error msg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/929a2126c2702df436312656a0304580b526c6e9\"\u003e\u003ccode\u003e929a212\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1758\"\u003e#1758\u003c/a\u003e from stretchr/dolmen/suite-faster-method-filtering\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/bc7459ec38128532ff32f23cfab4ea0b725210f2\"\u003e\u003ccode\u003ebc7459e\u003c/code\u003e\u003c/a\u003e suite: faster filtering of methods (-testify.m)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7d37b5c962954410bcd7a71ff3a77c79514056d1\"\u003e\u003ccode\u003e7d37b5c\u003c/code\u003e\u003c/a\u003e suite: refactor methodFilter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/stretchr/testify/compare/v1.10.0...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/windingriverholdings/openbrain/pull/22","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/windingriverholdings%2Fopenbrain/issues/22","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/22/packages"}},{"old_version":"5.6.0","new_version":"5.9.2","update_type":"minor","path":"the go-minor group","pr_created_at":"2026-05-25T01:28:33.000Z","version_change":"5.6.0 → 5.9.2","issue":{"uuid":"4513651470","node_id":"PR_kwDOQcyi6c7e3-V2","number":40,"state":"open","title":"deps(go): bump github.com/jackc/pgx/v5 from 5.6.0 to 5.9.2 in the go-minor group","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-25T01:28:33.000Z","updated_at":"2026-05-25T01:28:34.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(go)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.6.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"the go-minor group","ecosystem":"go"},"body":"Bumps the go-minor group with 1 update: [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/jackc/pgx/v5` from 5.6.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.6.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.6.0\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/Prejudice-Studio/Twilight/pull/40","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Prejudice-Studio%2FTwilight/issues/40","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/40/packages"}},{"old_version":"5.6.0","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-25T00:51:32.000Z","version_change":"5.6.0 → 5.9.2","issue":{"uuid":"4513519725","node_id":"PR_kwDOSm1-jM7e3keh","number":2,"state":"closed","title":"Bump the go_modules group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T00:59:44.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-25T00:51:32.000Z","updated_at":"2026-05-25T00:59:52.000Z","time_to_close":492,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":2,"packages":[{"name":"github.com/go-chi/chi/v5","old_version":"5.1.0","new_version":"5.2.2","repository_url":"https://github.com/go-chi/chi"},{"name":"github.com/jackc/pgx/v5","old_version":"5.6.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 2 updates in the / directory: [github.com/go-chi/chi/v5](https://github.com/go-chi/chi) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/go-chi/chi/v5` from 5.1.0 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-chi/chi/releases\"\u003egithub.com/go-chi/chi/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse strings.Cut in a few places by \u003ca href=\"https://github.com/JRaspass\"\u003e\u003ccode\u003e@​JRaspass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/971\"\u003ego-chi/chi#971\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix non-constant format strings in t.Fatalf by \u003ca href=\"https://github.com/JRaspass\"\u003e\u003ccode\u003e@​JRaspass\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/972\"\u003ego-chi/chi#972\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eApply fieldalignment fixes to optimize struct memory layout by \u003ca href=\"https://github.com/pixel365\"\u003e\u003ccode\u003e@​pixel365\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/974\"\u003ego-chi/chi#974\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego 1.24 by \u003ca href=\"https://github.com/pkieltyka\"\u003e\u003ccode\u003e@​pkieltyka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/977\"\u003ego-chi/chi#977\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: delint ioutil usage by \u003ca href=\"https://github.com/costela\"\u003e\u003ccode\u003e@​costela\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/962\"\u003ego-chi/chi#962\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed typo in Router interface definition by \u003ca href=\"https://github.com/mithileshgupta12\"\u003e\u003ccode\u003e@​mithileshgupta12\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/958\"\u003ego-chi/chi#958\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for TinyGo by \u003ca href=\"https://github.com/efraimbart\"\u003e\u003ccode\u003e@​efraimbart\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/978\"\u003ego-chi/chi#978\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExclude middleware/profiler.go in TinyGo, as there's no net/http/pprof pkg by \u003ca href=\"https://github.com/cxjava\"\u003e\u003ccode\u003e@​cxjava\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/982\"\u003ego-chi/chi#982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake use of strings.Cut by \u003ca href=\"https://github.com/scop\"\u003e\u003ccode\u003e@​scop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/1005\"\u003ego-chi/chi#1005\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eChange install command format to code block by \u003ca href=\"https://github.com/sglkc\"\u003e\u003ccode\u003e@​sglkc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/1001\"\u003ego-chi/chi#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCorrect documentation by \u003ca href=\"https://github.com/mrdomino\"\u003e\u003ccode\u003e@​mrdomino\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/992\"\u003ego-chi/chi#992\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eSecurity fix\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes \u003ca href=\"https://github.com/go-chi/chi/security/advisories/GHSA-vrw8-fxc6-2r93\"\u003eGHSA-vrw8-fxc6-2r93\u003c/a\u003e - \u0026quot;Host Header Injection Leads to Open Redirect in RedirectSlashes\u0026quot; \u003ca href=\"https://github.com/go-chi/chi/commit/1be7ad938cc9c5b39a9dea01a5c518848928ab65\"\u003ecommit\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003ea lower-severity Open Redirect that can't be exploited in browser or email client, as it requires manipulation of a Host header\u003c/li\u003e\n\u003cli\u003ereported by Anuraag Baishya, \u003ca href=\"https://github.com/anuraagbaishya\"\u003e\u003ccode\u003e@​anuraagbaishya\u003c/code\u003e\u003c/a\u003e. Thank you!\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pixel365\"\u003e\u003ccode\u003e@​pixel365\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/974\"\u003ego-chi/chi#974\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mithileshgupta12\"\u003e\u003ccode\u003e@​mithileshgupta12\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/958\"\u003ego-chi/chi#958\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/efraimbart\"\u003e\u003ccode\u003e@​efraimbart\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/978\"\u003ego-chi/chi#978\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cxjava\"\u003e\u003ccode\u003e@​cxjava\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/982\"\u003ego-chi/chi#982\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sglkc\"\u003e\u003ccode\u003e@​sglkc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/1001\"\u003ego-chi/chi#1001\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mrdomino\"\u003e\u003ccode\u003e@​mrdomino\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/992\"\u003ego-chi/chi#992\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-chi/chi/compare/v5.2.1...v5.2.2\"\u003ehttps://github.com/go-chi/chi/compare/v5.2.1...v5.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.1\u003c/h2\u003e\n\u003ch2\u003e⚠️  Chi supports Go 1.20+\u003c/h2\u003e\n\u003cp\u003eStarting this release, we will now support the four most recent major versions of Go. See \u003ca href=\"https://redirect.github.com/go-chi/chi/issues/963\"\u003ego-chi/chi#963\u003c/a\u003e for related discussion.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSupport the four most recent major versions of Go by \u003ca href=\"https://github.com/VojtechVitek\"\u003e\u003ccode\u003e@​VojtechVitek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/969\"\u003ego-chi/chi#969\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-chi/chi/compare/v5.2.0...v5.2.1\"\u003ehttps://github.com/go-chi/chi/compare/v5.2.0...v5.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eupdate credits section to link to goji license by \u003ca href=\"https://github.com/pkieltyka\"\u003e\u003ccode\u003e@​pkieltyka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/944\"\u003ego-chi/chi#944\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego 1.23 by \u003ca href=\"https://github.com/pkieltyka\"\u003e\u003ccode\u003e@​pkieltyka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/945\"\u003ego-chi/chi#945\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake Context.RoutePattern() nil-safe by \u003ca href=\"https://github.com/gaiaz-iusipov\"\u003e\u003ccode\u003e@​gaiaz-iusipov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/927\"\u003ego-chi/chi#927\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egovet: Fix non-constant format string by \u003ca href=\"https://github.com/marcofranssen\"\u003e\u003ccode\u003e@​marcofranssen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/952\"\u003ego-chi/chi#952\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFind\u003c/code\u003e to \u003ccode\u003eRoutes\u003c/code\u003e interface by \u003ca href=\"https://github.com/joeriddles\"\u003e\u003ccode\u003e@​joeriddles\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/872\"\u003ego-chi/chi#872\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix grammar error by \u003ca href=\"https://github.com/AntonC9018\"\u003e\u003ccode\u003e@​AntonC9018\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/917\"\u003ego-chi/chi#917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cdel\u003efeat(): add CF-Connecting-IP by \u003ca href=\"https://github.com/n33pm\"\u003e\u003ccode\u003e@​n33pm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/908\"\u003ego-chi/chi#908\u003c/a\u003e\u003c/del\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cdel\u003eRevert \u0026quot;feat(): add CF-Connecting-IP\u0026quot; by \u003ca href=\"https://github.com/VojtechVitek\"\u003e\u003ccode\u003e@​VojtechVitek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-chi/chi/pull/966\"\u003ego-chi/chi#966\u003c/a\u003e\u003c/del\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/23c395f8524a30334126ca16fb4d37b88745b9b9\"\u003e\u003ccode\u003e23c395f\u003c/code\u003e\u003c/a\u003e Correct documentation (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/992\"\u003e#992\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/5516d147c14a2b03824be7076fc6200bed906901\"\u003e\u003ccode\u003e5516d14\u003c/code\u003e\u003c/a\u003e docs: change install code to code block (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/1001\"\u003e#1001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/e235052c10146fb724439442fc9d9a23e19fe931\"\u003e\u003ccode\u003ee235052\u003c/code\u003e\u003c/a\u003e Make use of strings.Cut (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/1005\"\u003e#1005\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/1be7ad938cc9c5b39a9dea01a5c518848928ab65\"\u003e\u003ccode\u003e1be7ad9\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/d7034fdfdaefd10f1bc1a7b813bc979f2eda3a36\"\u003e\u003ccode\u003ed7034fd\u003c/code\u003e\u003c/a\u003e Exclude profiler when use tinygo (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/982\"\u003e#982\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/d04703412f631922c8dd1527c6500627174828c1\"\u003e\u003ccode\u003ed047034\u003c/code\u003e\u003c/a\u003e support tinygo (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/978\"\u003e#978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/fe2c065bc046056aecfa141022509a1e25bdd04b\"\u003e\u003ccode\u003efe2c065\u003c/code\u003e\u003c/a\u003e Fixed the typo (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/958\"\u003e#958\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/1aae5b2d2dc8f9e8ea1f68a7462693aaaa5f368c\"\u003e\u003ccode\u003e1aae5b2\u003c/code\u003e\u003c/a\u003e chore: delint ioutil usage (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/962\"\u003e#962\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/c6225e35a4880a9a884c135b5f847a74e1e3a01e\"\u003e\u003ccode\u003ec6225e3\u003c/code\u003e\u003c/a\u003e go 1.24 (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/977\"\u003e#977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-chi/chi/commit/e846b8304c769c4f1a51c9de06bebfaa4576bd88\"\u003e\u003ccode\u003ee846b83\u003c/code\u003e\u003c/a\u003e Apply fieldalignment fixes to optimize struct memory layout (\u003ca href=\"https://redirect.github.com/go-chi/chi/issues/974\"\u003e#974\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-chi/chi/compare/v5.1.0...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.6.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.6.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Hardonian/EvidenceVault/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Hardonian/EvidenceVault/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hardonian%2FEvidenceVault/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"5.8.0","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-24T17:50:29.000Z","version_change":"5.8.0 → 5.9.2","issue":{"uuid":"4512446883","node_id":"PR_kwDORlTy7c7e0VPC","number":35,"state":"open","title":"build(deps): bump the go-minor-and-patch group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-24T17:50:29.000Z","updated_at":"2026-05-31T14:35:59.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"go-minor-and-patch","update_count":2,"packages":[{"name":"github.com/gin-gonic/gin","old_version":"1.10.0","new_version":"1.12.0","repository_url":"https://github.com/gin-gonic/gin"},{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-minor-and-patch group with 2 updates in the / directory: [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/gin-gonic/gin` from 1.10.0 to 1.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/releases\"\u003egithub.com/gin-gonic/gin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e192ac89eefc1c30f7c97ae48a9ffb1c6f1c8c8bc: feat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4203\"\u003e#4203\u003c/a\u003e) (\u003ca href=\"https://github.com/takanuva15\"\u003e\u003ccode\u003e@​takanuva15\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e53410d2e07054369e0960fbe2eed97e1b9966f12: feat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4502\"\u003e#4502\u003c/a\u003e) (\u003ca href=\"https://github.com/raju-mechatronics\"\u003e\u003ccode\u003e@​raju-mechatronics\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eacc55e049e33b401e810dbd8c0d6dcb6b3ba2b05: feat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4423\"\u003e#4423\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e38e765119241d990705169bedb5002a29ae0cbd1: feat(context): implemented Delete method (\u003ca href=\"https://github.com/Spyder01\"\u003e\u003ccode\u003e@​Spyder01\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e771dcc6476d7bc6abb9ec0235ecefa4d38fe6fb0: feat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4420\"\u003e#4420\u003c/a\u003e) (\u003ca href=\"https://github.com/ldesauw\"\u003e\u003ccode\u003e@​ldesauw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4dec17afdff48e8018c83618fbbe69fceeb2b41d: feat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4146\"\u003e#4146\u003c/a\u003e) (\u003ca href=\"https://github.com/wsyqn6\"\u003e\u003ccode\u003e@​wsyqn6\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed7776de7d444935ea4385999711bd6331a98fecb: feat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4145\"\u003e#4145\u003c/a\u003e) (\u003ca href=\"https://github.com/laurentcau\"\u003e\u003ccode\u003e@​laurentcau\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb917b14ff9d189f16a7492be79d123a47806ee19: fix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/2169\"\u003e#2169\u003c/a\u003e) (\u003ca href=\"https://github.com/guonaihong\"\u003e\u003ccode\u003e@​guonaihong\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d1092b3b48addf6f9cd00fe274ec3bd14650eb: fix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4380\"\u003e#4380\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9914178584e42458ff7d23891463a880f58c9d86: fix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4472\"\u003e#4472\u003c/a\u003e) (\u003ca href=\"https://github.com/Nurysso\"\u003e\u003ccode\u003e@​Nurysso\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e2a794cd0b0faa7d829291375b27a3467ea972b0d: fix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4403\"\u003e#4403\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d5a28ed6d3849da820195b6774d212bcc038a9: fix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4422\"\u003e#4422\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5fad976b372e381312f8de69f0969f1284d229d3: fix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4415\"\u003e#4415\u003c/a\u003e) (\u003ca href=\"https://github.com/pawannn\"\u003e\u003ccode\u003e@​pawannn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e63dd3e60cab89c27fb66bce1423bd268d52abad1: fix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4336\"\u003e#4336\u003c/a\u003e) (\u003ca href=\"https://github.com/MondayCha\"\u003e\u003ccode\u003e@​MondayCha\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a: fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e) (\u003ca href=\"https://github.com/dengaleev\"\u003e\u003ccode\u003e@​dengaleev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e234a6d4c00cb77af9852aca0b8289745d5529b4b: fix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4373\"\u003e#4373\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e472d086af2acd924cb4b9d7be0525f7d790f69bc: fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8e07d37c63e5536eb25f4af4c91eabeee4011fba: fix: Correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4511\"\u003e#4511\u003c/a\u003e) (\u003ca href=\"https://github.com/mahanadh\"\u003e\u003ccode\u003e@​mahanadh\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eba093d19477b896ac89a7fc3246af23d290b8e26: chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e) (\u003ca href=\"https://github.com/BobDu\"\u003e\u003ccode\u003e@​BobDu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb2b489dbf4826c2c630717a77fd5e42774625410: chore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/3359\"\u003e#3359\u003c/a\u003e) (\u003ca href=\"https://github.com/WeidiDeng\"\u003e\u003ccode\u003e@​WeidiDeng\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eecb3f7b5e2f3915bf1db240ed5eee572f8dbea36: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4449\"\u003e#4449\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaf6e8b70b8261bb0c99ad094fe552ab92991620a: chore(deps): upgrade quic-go to v0.57.1 (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb309081bc5c137b2aa15701ef53f7f19788da25: chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e) (\u003ca href=\"https://github.com/USA-RedDragon\"\u003e\u003ccode\u003e@​USA-RedDragon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e26c3a628655cad2388380cb8102d6ce7d4875f3b: chore(response): prevent Flush() panic when \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4479\"\u003e#4479\u003c/a\u003e) (\u003ca href=\"https://github.com/Twacqwq\"\u003e\u003ccode\u003e@​Twacqwq\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5dd833f1f26de0eb30eae47b17e05ced2482dc41: chore: bump minimum Go version to 1.24 and update workflows (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4388\"\u003e#4388\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39858a0859c914bd26948fa950477e11bd8d3823: refactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4352\"\u003e#4352\u003c/a\u003e) (\u003ca href=\"https://github.com/russcoss\"\u003e\u003ccode\u003e@​russcoss\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0048f645ee945c4db30593afdea10123e2c30a6: refactor(context): omit the return value names (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4395\"\u003e#4395\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e915e4c90d28ec4cffc6eb146e208ab5a65eac772: refactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4481\"\u003e#4481\u003c/a\u003e) (\u003ca href=\"https://github.com/pauloappbr\"\u003e\u003ccode\u003e@​pauloappbr\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e414de60574449457f3192a7a1d5528940db2836d: refactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4333\"\u003e#4333\u003c/a\u003e) (\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59e9d4a794f12c4f9a6c7bed441b9644e5f6d99b: refactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4314\"\u003e#4314\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ab698dc5110af1977d57226e4995c57dd34c233: refactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4142\"\u003e#4142\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed1a15347b1e45a8ee816193d3578a93bfd73b70f: refactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4467\"\u003e#4467\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee3118cc378d263454098924ebbde7e8d1dd2e904: refactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4392\"\u003e#4392\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e488f8c3ffa579a8d19beb2bae95ff8ef36b3d53f: refactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4529\"\u003e#4529\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9968c4bf9d5a99edc3eee2c068a4c9160ece8915: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4389\"\u003e#4389\u003c/a\u003e) (\u003ca href=\"https://github.com/reddaisyy\"\u003e\u003ccode\u003e@​reddaisyy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea85ef5ce4d0cda8834c59c855068ed48b51192d1: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4432\"\u003e#4432\u003c/a\u003e) (\u003ca href=\"https://github.com/efcking\"\u003e\u003ccode\u003e@​efcking\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e61b67de522a189b568aced4c5c16917c558e3387: ci(bot): increase frequency and group updates for dependencies (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4367\"\u003e#4367\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efb27ef26c2fdfe25344b4c039d8a53551f9e912c: ci(lint): refactor test assertions and linter configuration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4436\"\u003e#4436\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e93ff771e6dbf10e432864b30f3719ac5c84a4d4a: ci(sec): improve type safety and server organization in HTTP middleware (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4437\"\u003e#4437\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee88fc8927a52b74f55bec0351604a56ac0aa1c51: ci(sec): schedule Trivy security scans to run daily at midnight UTC (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4439\"\u003e#4439\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e5ff3ace496a31b138b0820136a146bfb5de0ef: ci: replace vulnerability scanning workflow with Trivy integration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4421\"\u003e#4421\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e00900fb3e1ea9dde33985a0e4f6afec793d5e786: ci: update CI workflows and standardize Trivy config quotes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4531\"\u003e#4531\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eae3f524974fc4f55d18c9e7fae4614503c015226: ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md\"\u003egithub.com/gin-gonic/gin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGin v1.12.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4145\"\u003e#4145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4502\"\u003e#4502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4203\"\u003e#4203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4420\"\u003e#4420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4423\"\u003e#4423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): implemented Delete method (\u003ca href=\"https://github.com/gin-gonic/gin/commit/38e7651\"\u003e#38e7651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4146\"\u003e#4146\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eperf(tree): reduce allocations in findCaseInsensitivePath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4417\"\u003e#4417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(recovery): optimize line reading in stack function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4466\"\u003e#4466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(path): replace regex with custom functions in redirectTrailingSlash (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4414\"\u003e#4414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(tree): optimize path parsing using strings.Count (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4246\"\u003e#4246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/3359\"\u003e#3359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(response): prevent Flush() panic when the underlying ResponseWriter does not implement \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4479\"\u003e#4479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4142\"\u003e#4142\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4481\"\u003e#4481\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4467\"\u003e#4467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4352\"\u003e#4352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4333\"\u003e#4333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4314\"\u003e#4314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4529\"\u003e#4529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4392\"\u003e#4392\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4472\"\u003e#4472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/2169\"\u003e#2169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4336\"\u003e#4336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4415\"\u003e#4415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4422\"\u003e#4422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4373\"\u003e#4373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4380\"\u003e#4380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4403\"\u003e#4403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4511\"\u003e#4511\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates / CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eGin v1.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/73726dc606796a025971fe451f0aa6f1b9b847f6\"\u003e\u003ccode\u003e73726dc\u003c/code\u003e\u003c/a\u003e docs: update documentation to reflect Go version changes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4552\"\u003e#4552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/e292e5caa777bce70b66fe08c94cbe9cef3e2ec9\"\u003e\u003ccode\u003ee292e5c\u003c/code\u003e\u003c/a\u003e docs: document and finalize Gin v1.12.0 release (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4551\"\u003e#4551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ae3f524974fc4f55d18c9e7fae4614503c015226\"\u003e\u003ccode\u003eae3f524\u003c/code\u003e\u003c/a\u003e ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/38534e2bf98a06e1f62d6b24384e90b5f78699bf\"\u003e\u003ccode\u003e38534e2\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4548\"\u003e#4548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/472d086af2acd924cb4b9d7be0525f7d790f69bc\"\u003e\u003ccode\u003e472d086\u003c/code\u003e\u003c/a\u003e fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/fb2583442c4d9bccb75e6d26f1aa6e7c01950db6\"\u003e\u003ccode\u003efb25834\u003c/code\u003e\u003c/a\u003e test(context): use http.StatusContinue constant instead of magic number 100 (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/6f1d5fe3cdb171a08928c3c9dd3fbcfc9ee1b521\"\u003e\u003ccode\u003e6f1d5fe\u003c/code\u003e\u003c/a\u003e test(render): add comprehensive error handling tests (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4541\"\u003e#4541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a\"\u003e\u003ccode\u003e5c00df8\u003c/code\u003e\u003c/a\u003e fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/db309081bc5c137b2aa15701ef53f7f19788da25\"\u003e\u003ccode\u003edb30908\u003c/code\u003e\u003c/a\u003e chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ba093d19477b896ac89a7fc3246af23d290b8e26\"\u003e\u003ccode\u003eba093d1\u003c/code\u003e\u003c/a\u003e chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gin-gonic/gin/compare/v1.10.0...v1.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e","html_url":"https://github.com/isw2-unileon/hypermotionleague/pull/35","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/isw2-unileon%2Fhypermotionleague/issues/35","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/35/packages"}},{"old_version":"5.7.1","new_version":"5.9.2","update_type":"minor","path":"/services/submissions-go","pr_created_at":"2026-05-20T01:49:27.000Z","version_change":"5.7.1 → 5.9.2","issue":{"uuid":"4482460971","node_id":"PR_kwDOSfAg387dUtGa","number":43,"state":"open","title":"chore(deps): bump github.com/jackc/pgx/v5 from 5.7.1 to 5.9.2 in /services/submissions-go","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-20T01:49:27.000Z","updated_at":"2026-05-20T01:49:27.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.7.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"/services/submissions-go","ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.7.1 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.7.1\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/JasonTM17/Leetrank_Project/pull/43","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/JasonTM17%2FLeetrank_Project/issues/43","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/43/packages"}},{"old_version":"5.9.1","new_version":"5.9.2","update_type":"patch","path":null,"pr_created_at":"2026-05-19T02:43:10.000Z","version_change":"5.9.1 → 5.9.2","issue":{"uuid":"4473997408","node_id":"PR_kwDORUciPM7c5V8N","number":87,"state":"closed","title":"chore(deps): Bump the minor-and-patch group across 1 directory with 4 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-25T23:05:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-19T02:43:10.000Z","updated_at":"2026-05-25T23:05:52.000Z","time_to_close":591760,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"minor-and-patch","update_count":4,"packages":[{"name":"firebase.google.com/go/v4","old_version":"4.19.0","new_version":"4.20.0","repository_url":"https://github.com/firebase/firebase-admin-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.9.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"golang.org/x/crypto","old_version":"0.49.0","new_version":"0.51.0"},{"name":"google.golang.org/api","old_version":"0.276.0","new_version":"0.279.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the minor-and-patch group with 2 updates in the /backend directory: [firebase.google.com/go/v4](https://github.com/firebase/firebase-admin-go) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `firebase.google.com/go/v4` from 4.19.0 to 4.20.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/firebase/firebase-admin-go/releases\"\u003efirebase.google.com/go/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eFirebase Admin Go SDK v4.20.0\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(pnv): Add Firebase Phone Number Verification support (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(fcm): Add support for bandwidth constrained and restricted satellite APIs (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/750\"\u003e#750\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eMiscellaneous\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] Release v4.20.0 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: Upgrade Go versions to 1.25, 1.26 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: Revert release workflow changes to use merge commit (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/751\"\u003e#751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: Update to Go 1.25 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/743\"\u003e#743\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/e853b36e21643f8401d237a883b2b5e04f6ccfa5\"\u003e\u003ccode\u003ee853b36\u003c/code\u003e\u003c/a\u003e Merge remote-tracking branch 'origin/dev'\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/aa29809a9728bb91f2836efd971bdb56213f1217\"\u003e\u003ccode\u003eaa29809\u003c/code\u003e\u003c/a\u003e Merge dev into master to resolve release divergence\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/460da858c96ce20dc5296abf71f69c062d2414a8\"\u003e\u003ccode\u003e460da85\u003c/code\u003e\u003c/a\u003e [chore] Release v4.20.0 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/763\"\u003e#763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/646489a899911dd5b61b9c1ec587c8d0ee6b98f5\"\u003e\u003ccode\u003e646489a\u003c/code\u003e\u003c/a\u003e feat(pnv): Add Firebase Phone Number Verification support (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/f595f98427db15eb8a71d76d74fb0559b8bb32a6\"\u003e\u003ccode\u003ef595f98\u003c/code\u003e\u003c/a\u003e chore: Upgrade Go versions to 1.25, 1.26 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/c96d946777f260a1a4ac8395baccfd2e3fad64dd\"\u003e\u003ccode\u003ec96d946\u003c/code\u003e\u003c/a\u003e feat(fcm): Add support for bandwidth constrained and restricted satellite API...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/e1d2b468a900a52e719f67cb74797be0d5699231\"\u003e\u003ccode\u003ee1d2b46\u003c/code\u003e\u003c/a\u003e chore: Revert release workflow changes to use merge commit (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/751\"\u003e#751\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/128f8f425f0a72725e2f39832de6189a92a649db\"\u003e\u003ccode\u003e128f8f4\u003c/code\u003e\u003c/a\u003e chore: Update to Go 1.25 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/743\"\u003e#743\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/c06a67424bde05401339b9698be4d67adf0a36f2\"\u003e\u003ccode\u003ec06a674\u003c/code\u003e\u003c/a\u003e [chore] Release 4.19.0 Take 2 (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/746\"\u003e#746\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/firebase/firebase-admin-go/commit/6e297d467f6014c1756ba304f326c498d9a91e7c\"\u003e\u003ccode\u003e6e297d4\u003c/code\u003e\u003c/a\u003e chore: Update Release Workflows for Push triggers (\u003ca href=\"https://redirect.github.com/firebase/firebase-admin-go/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/firebase/firebase-admin-go/compare/v4.19.0...v4.20.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.9.1 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.49.0 to 0.51.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b8a14a8d65f88c0c79c139171f1354c69a6cdb8a\"\u003e\u003ccode\u003eb8a14a8\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/9d9d5078968ddb8a279092c665a24e7de4178778\"\u003e\u003ccode\u003e9d9d507\u003c/code\u003e\u003c/a\u003e x509roots/fallback/bundle: fix bundle test with Go 1.27+\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/fd0b90d21f9ab4b5dd398e9526b570bfea86e370\"\u003e\u003ccode\u003efd0b90d\u003c/code\u003e\u003c/a\u003e acme: include Problem in OrderError.Error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b9e53593a6073e6a786c49e9ad27956a9b77e54e\"\u003e\u003ccode\u003eb9e5359\u003c/code\u003e\u003c/a\u003e pbkdf2: turn into a wrapper for crypto/pbkdf2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/cc0e4fc1d49127130b0d00612a2eeed2ab745d40\"\u003e\u003ccode\u003ecc0e4fc\u003c/code\u003e\u003c/a\u003e hkdf: forward Extract to the standard library\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a8e9237a216b050e1b11e041863825104a6811db\"\u003e\u003ccode\u003ea8e9237\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/03ca0dcccbd37ba6be80adf74dde8d78a4d72817\"\u003e\u003ccode\u003e03ca0dc\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8400f4a938077a7a7817ab7d163d148e371b320b\"\u003e\u003ccode\u003e8400f4a\u003c/code\u003e\u003c/a\u003e ssh: respect signer's algorithm preference in pickSignatureAlgorithm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/81c6cb34a8fc386ed53293cd79e3c0c232ee7366\"\u003e\u003ccode\u003e81c6cb3\u003c/code\u003e\u003c/a\u003e ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/crypto/compare/v0.49.0...v0.51.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/api` from 0.276.0 to 0.279.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/google-api-go-client/releases\"\u003egoogle.golang.org/api's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.279.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.278.0...v0.279.0\"\u003e0.279.0\u003c/a\u003e (2026-05-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3585\"\u003e#3585\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/09db0e346a6b567747dceee3872229a62c95124c\"\u003e09db0e3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3587\"\u003e#3587\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e87e376dbd590cffb3632c378e1ade4a9dacf3ce\"\u003ee87e376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3590\"\u003e#3590\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/d4241eaef9ab3daad4fd4aaeccc118795cfc58a7\"\u003ed4241ea\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.278.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.277.0...v0.278.0\"\u003e0.278.0\u003c/a\u003e (2026-05-05)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3582\"\u003e#3582\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/76b1187e506ac0f48caac67907dd0805b253f74c\"\u003e76b1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3584\"\u003e#3584\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e36c88361d11545583325c3ac6bdbd9cf1f1a7d0\"\u003ee36c883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev0.277.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.277.0\"\u003e0.277.0\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3567\"\u003e#3567\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/39582952e4eac1b744499f8a8063a4a5f1ce7d6b\"\u003e3958295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3571\"\u003e#3571\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ca9851efc573231ca1ed9c6fea4bc77d6052d0bb\"\u003eca9851e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3574\"\u003e#3574\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8efb1afa0e5d9cc454f721124bba3881f3935e3c\"\u003e8efb1af\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3575\"\u003e#3575\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/de49bb519cab881f74e5b9ba11e263a2b9a4ad2e\"\u003ede49bb5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3577\"\u003e#3577\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ce68c87d9dc6c144b6df578df725470b30cf83d6\"\u003ece68c87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3578\"\u003e#3578\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8be033e24e0c6ddb08a3df72c0a8997d21623a22\"\u003e8be033e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3579\"\u003e#3579\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/bc6990e20803f2ff2fd1b77995f6e9180ab2302b\"\u003ebc6990e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3580\"\u003e#3580\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/2de1a5aff3f3b6e53dff00da297c5d249ac8d791\"\u003e2de1a5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3581\"\u003e#3581\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/0c219d90e90899c93215558f3ea309c9732bf7ea\"\u003e0c219d9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eidtoken:\u003c/strong\u003e Avoid double impersonation in tokenSourceFromBytes (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3576\"\u003e#3576\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/75172cf5cb7bfc260c22e481323355306f684a09\"\u003e75172cf\u003c/a\u003e), refs \u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/2301\"\u003e#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md\"\u003egoogle.golang.org/api's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.278.0...v0.279.0\"\u003e0.279.0\u003c/a\u003e (2026-05-12)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3585\"\u003e#3585\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/09db0e346a6b567747dceee3872229a62c95124c\"\u003e09db0e3\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3587\"\u003e#3587\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e87e376dbd590cffb3632c378e1ade4a9dacf3ce\"\u003ee87e376\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3590\"\u003e#3590\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/d4241eaef9ab3daad4fd4aaeccc118795cfc58a7\"\u003ed4241ea\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.277.0...v0.278.0\"\u003e0.278.0\u003c/a\u003e (2026-05-05)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3582\"\u003e#3582\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/76b1187e506ac0f48caac67907dd0805b253f74c\"\u003e76b1187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3584\"\u003e#3584\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e36c88361d11545583325c3ac6bdbd9cf1f1a7d0\"\u003ee36c883\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.277.0\"\u003e0.277.0\u003c/a\u003e (2026-04-29)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3567\"\u003e#3567\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/39582952e4eac1b744499f8a8063a4a5f1ce7d6b\"\u003e3958295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3571\"\u003e#3571\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ca9851efc573231ca1ed9c6fea4bc77d6052d0bb\"\u003eca9851e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3574\"\u003e#3574\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8efb1afa0e5d9cc454f721124bba3881f3935e3c\"\u003e8efb1af\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3575\"\u003e#3575\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/de49bb519cab881f74e5b9ba11e263a2b9a4ad2e\"\u003ede49bb5\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3577\"\u003e#3577\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/ce68c87d9dc6c144b6df578df725470b30cf83d6\"\u003ece68c87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3578\"\u003e#3578\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8be033e24e0c6ddb08a3df72c0a8997d21623a22\"\u003e8be033e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3579\"\u003e#3579\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/bc6990e20803f2ff2fd1b77995f6e9180ab2302b\"\u003ebc6990e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3580\"\u003e#3580\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/2de1a5aff3f3b6e53dff00da297c5d249ac8d791\"\u003e2de1a5a\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eall:\u003c/strong\u003e Auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3581\"\u003e#3581\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/0c219d90e90899c93215558f3ea309c9732bf7ea\"\u003e0c219d9\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eidtoken:\u003c/strong\u003e Avoid double impersonation in tokenSourceFromBytes (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3576\"\u003e#3576\u003c/a\u003e) (\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/75172cf5cb7bfc260c22e481323355306f684a09\"\u003e75172cf\u003c/a\u003e), refs \u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/2301\"\u003e#2301\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e446d4cdeb5e63cd6916051edd2c56588eede309\"\u003e\u003ccode\u003ee446d4c\u003c/code\u003e\u003c/a\u003e chore(main): release 0.279.0 (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3586\"\u003e#3586\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/d4241eaef9ab3daad4fd4aaeccc118795cfc58a7\"\u003e\u003ccode\u003ed4241ea\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3590\"\u003e#3590\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/8452ed1936bd40ed8a3e2dd8b06832a853ea45c7\"\u003e\u003ccode\u003e8452ed1\u003c/code\u003e\u003c/a\u003e chore(all): update module github.com/go-git/go-git/v5 to v5.19.0 [SECURITY] (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e87e376dbd590cffb3632c378e1ade4a9dacf3ce\"\u003e\u003ccode\u003ee87e376\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3587\"\u003e#3587\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/09db0e346a6b567747dceee3872229a62c95124c\"\u003e\u003ccode\u003e09db0e3\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3585\"\u003e#3585\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/07c758daacbc24e32753c3f1b537c7f6cce626f0\"\u003e\u003ccode\u003e07c758d\u003c/code\u003e\u003c/a\u003e chore(main): release 0.278.0 (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3583\"\u003e#3583\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/e36c88361d11545583325c3ac6bdbd9cf1f1a7d0\"\u003e\u003ccode\u003ee36c883\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3584\"\u003e#3584\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/76b1187e506ac0f48caac67907dd0805b253f74c\"\u003e\u003ccode\u003e76b1187\u003c/code\u003e\u003c/a\u003e feat(all): auto-regenerate discovery clients (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3582\"\u003e#3582\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/dd598a60e19f836bb7ad709311b21d303bbab6c8\"\u003e\u003ccode\u003edd598a6\u003c/code\u003e\u003c/a\u003e chore(main): release 0.277.0 (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3568\"\u003e#3568\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/googleapis/google-api-go-client/commit/b208a86db380e5e517451daa4e5f63fae1f723be\"\u003e\u003ccode\u003eb208a86\u003c/code\u003e\u003c/a\u003e chore(all): update all (\u003ca href=\"https://redirect.github.com/googleapis/google-api-go-client/issues/3573\"\u003e#3573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/googleapis/google-api-go-client/compare/v0.276.0...v0.279.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/karimiku/job-hunting-saas/pull/87","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/karimiku%2Fjob-hunting-saas/issues/87","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/87/packages"}},{"old_version":"5.8.0","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-16T07:02:55.000Z","version_change":"5.8.0 → 5.9.2","issue":{"uuid":"4459030060","node_id":"PR_kwDOSc6DT87cK4EB","number":2,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-20T05:29:07.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-16T07:02:55.000Z","updated_at":"2026-05-20T05:29:09.000Z","time_to_close":339972,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":2,"packages":[{"name":"github.com/in-toto/in-toto-golang","old_version":"0.10.0","new_version":"0.11.0","repository_url":"https://github.com/in-toto/in-toto-golang"},{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 2 updates in the / directory: [github.com/in-toto/in-toto-golang](https://github.com/in-toto/in-toto-golang) and [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/in-toto/in-toto-golang` from 0.10.0 to 0.11.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/in-toto/in-toto-golang/releases\"\u003egithub.com/in-toto/in-toto-golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump the all group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/453\"\u003ein-toto/in-toto-golang#453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump the all group across 1 directory with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/452\"\u003ein-toto/in-toto-golang#452\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/457\"\u003ein-toto/in-toto-golang#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/459\"\u003ein-toto/in-toto-golang#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ematch: Replace ^ with ! for negation in character classes by \u003ca href=\"https://github.com/adityasaky\"\u003e\u003ccode\u003e@​adityasaky\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/pull/462\"\u003ein-toto/in-toto-golang#462\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ehttps://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/36d782ffb2ca3adbffcdce1fd971c23319dd4469\"\u003e\u003ccode\u003e36d782f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/462\"\u003e#462\u003c/a\u003e from in-toto/fix-negation-character\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/4a09e3bbc44bc687577b6532e57e8a4abfa5ddf4\"\u003e\u003ccode\u003e4a09e3b\u003c/code\u003e\u003c/a\u003e match: Replace ^ with ! for negation in character classes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c3302e8bc36e46119f7ae17c07eb879ff3507caa\"\u003e\u003ccode\u003ec3302e8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/459\"\u003e#459\u003c/a\u003e from in-toto/dependabot/go_modules/github.com/go-jose...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/016e87efbb55c6dd8772ce227002eeb1b6e3f593\"\u003e\u003ccode\u003e016e87e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/5b9df76e685eaa0a950ea9ba3f4a5561e87e13ad\"\u003e\u003ccode\u003e5b9df76\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/457\"\u003e#457\u003c/a\u003e from in-toto/dependabot/go_modules/google.golang.org/...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/595b3fe0a13f481eb0ef898ccaff5e345e492a2f\"\u003e\u003ccode\u003e595b3fe\u003c/code\u003e\u003c/a\u003e chore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/e396d248c9cf19f9e144f4e90c476af88742bf35\"\u003e\u003ccode\u003ee396d24\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/452\"\u003e#452\u003c/a\u003e from in-toto/dependabot/github_actions/all-502588e1ca\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/142b779059713332fe5c7856e98f1c564c6d6a09\"\u003e\u003ccode\u003e142b779\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/in-toto/in-toto-golang/issues/453\"\u003e#453\u003c/a\u003e from in-toto/dependabot/go_modules/all-d8ef5820aa\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/f741bcc43330554606b813fa0f8fe0c284fcdaea\"\u003e\u003ccode\u003ef741bcc\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group with 2 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/in-toto/in-toto-golang/commit/c374dc9808137651fe8754eed363ec816cd59d2a\"\u003e\u003ccode\u003ec374dc9\u003c/code\u003e\u003c/a\u003e chore(deps): bump the all group across 1 directory with 2 updates\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/in-toto/in-toto-golang/compare/v0.10.0...v0.11.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.8.0...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/p5hzehxa/cosign/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/p5hzehxa/cosign/pull/2","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/p5hzehxa%2Fcosign/issues/2","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2/packages"}},{"old_version":"5.9.1","new_version":"5.9.2","update_type":"patch","path":null,"pr_created_at":"2026-05-16T06:33:58.000Z","version_change":"5.9.1 → 5.9.2","issue":{"uuid":"4458946693","node_id":"PR_kwDORdVxCc7cKocV","number":155,"state":"closed","title":"chore(shared): bump the gomod group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-16T20:08:42.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-16T06:33:58.000Z","updated_at":"2026-05-16T20:08:44.000Z","time_to_close":48884,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(shared): bump","group_name":"gomod","update_count":7,"packages":[{"name":"github.com/alicebob/miniredis/v2","old_version":"2.37.0","new_version":"2.38.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/jackc/pgx/v5","old_version":"5.9.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/redis/go-redis/extra/redisotel/v9","old_version":"9.18.0","new_version":"9.19.0","repository_url":"https://github.com/redis/go-redis"},{"name":"github.com/testcontainers/testcontainers-go","old_version":"0.29.1","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"github.com/testcontainers/testcontainers-go/modules/postgres","old_version":"0.29.1","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"google.golang.org/grpc","old_version":"1.80.0","new_version":"1.81.1","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the gomod group with 6 updates in the /shared directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.37.0` | `2.38.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.9.1` | `5.9.2` |\n| [github.com/redis/go-redis/extra/redisotel/v9](https://github.com/redis/go-redis) | `9.18.0` | `9.19.0` |\n| [github.com/testcontainers/testcontainers-go](https://github.com/testcontainers/testcontainers-go) | `0.29.1` | `0.42.0` |\n| [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) | `0.29.1` | `0.42.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.80.0` | `1.81.1` |\n\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.37.0 to 2.38.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDELEX and fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.38.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d67bfae4c370e8451561165eca6ddc50f056f083\"\u003e\u003ccode\u003ed67bfae\u003c/code\u003e\u003c/a\u003e update changelog for v2.38.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/2b1abd81e1c58fb6d440b4637287d3ee09f7f66a\"\u003e\u003ccode\u003e2b1abd8\u003c/code\u003e\u003c/a\u003e DELEX (partly) (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/452dd373d138f7ad858dd6e25e2a92753f83498e\"\u003e\u003ccode\u003e452dd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/440\"\u003e#440\u003c/a\u003e from infastin/server-alias\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b5b8ec2cfde407552ea028514409599dbd5e1600\"\u003e\u003ccode\u003eb5b8ec2\u003c/code\u003e\u003c/a\u003e feat: add 'server' alias to 'redis' in lua scripts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/ecc4af14f2444ea1a57d040185781fe197bdfc9d\"\u003e\u003ccode\u003eecc4af1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/439\"\u003e#439\u003c/a\u003e from TomBailey167/xinfo-stream-last-generated-id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/4a2a33e841b359a2569fe9a35d6d46414bf40aec\"\u003e\u003ccode\u003e4a2a33e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/435\"\u003e#435\u003c/a\u003e from evan-choi/fix/xadd-equals-trim-modifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d6261eff59117ccea7387f3a608caa1006b1adef\"\u003e\u003ccode\u003ed6261ef\u003c/code\u003e\u003c/a\u003e feat: add last-generated-id to XINFO STREAM response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/f4d8aa342425de1b740a6f22a7dd230f83e3712a\"\u003e\u003ccode\u003ef4d8aa3\u003c/code\u003e\u003c/a\u003e fix: accept = trim modifier in xadd\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.37.0...v2.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.9.1 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/redis/go-redis/extra/redisotel/v9` from 9.18.0 to 9.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/releases\"\u003egithub.com/redis/go-redis/extra/redisotel/v9's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.19.0\u003c/h2\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md\"\u003egithub.com/redis/go-redis/extra/redisotel/v9's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e9.19.0 (2026-04-27)\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/e7e9866e54f4423addca48ec804044cfca1b30d6\"\u003e\u003ccode\u003ee7e9866\u003c/code\u003e\u003c/a\u003e chore(release): v9.19.0 (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3796\"\u003e#3796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/22b26f4b3ea5c2ab58605092e0937b78a8673267\"\u003e\u003ccode\u003e22b26f4\u003c/code\u003e\u003c/a\u003e feat(ft.aggregate): Add Steps for query building (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3782\"\u003e#3782\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/d9d769491154d4da6d683b73e9dfff5c878c1890\"\u003e\u003ccode\u003ed9d7694\u003c/code\u003e\u003c/a\u003e fix(pool): two fixes for closed connection handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3764\"\u003e#3764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/44e8b7309cf547f620b9849a5a4dd9013cc3660a\"\u003e\u003ccode\u003e44e8b73\u003c/code\u003e\u003c/a\u003e fix(sch): auto hostname type detection (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3789\"\u003e#3789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/ad21622ce8dba26c4ac7dc0fbf74a0bd278d2c19\"\u003e\u003ccode\u003ead21622\u003c/code\u003e\u003c/a\u003e fix(hello): do not send maintnotifications handshake when hello fails (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/1a7ac744c3f98b415852b4c9842b97991e3e4d91\"\u003e\u003ccode\u003e1a7ac74\u003c/code\u003e\u003c/a\u003e fix(pool): suppress pool Close() errors for stale connections (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3778\"\u003e#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/903d6bd360af9ea53d4af4ca652d18b915398c7d\"\u003e\u003ccode\u003e903d6bd\u003c/code\u003e\u003c/a\u003e fix(retry): make dial tcp error redirectable (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3786\"\u003e#3786\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3787\"\u003e#3787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/00a551b3b468687e5e06b295b419292786bcdc99\"\u003e\u003ccode\u003e00a551b\u003c/code\u003e\u003c/a\u003e fix(credentials): leak in wrappedOnClose (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3785\"\u003e#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/b5a6f99b7a9d496bf2e3d68ad9c33e43c23c4df9\"\u003e\u003ccode\u003eb5a6f99\u003c/code\u003e\u003c/a\u003e refactor(pool): remove redundant Conn.closed atomic field (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3783\"\u003e#3783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/928f27aef850b3508b590e41a050f27d29fb14a2\"\u003e\u003ccode\u003e928f27a\u003c/code\u003e\u003c/a\u003e feat(hscan): add support for encoding.BinaryUnmarshaler (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/go-redis/compare/v9.18.0...v9.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/redis/go-redis/v9` from 9.18.0 to 9.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/releases\"\u003egithub.com/redis/go-redis/v9's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.19.0\u003c/h2\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md\"\u003egithub.com/redis/go-redis/v9's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e9.19.0 (2026-04-27)\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/e7e9866e54f4423addca48ec804044cfca1b30d6\"\u003e\u003ccode\u003ee7e9866\u003c/code\u003e\u003c/a\u003e chore(release): v9.19.0 (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3796\"\u003e#3796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/22b26f4b3ea5c2ab58605092e0937b78a8673267\"\u003e\u003ccode\u003e22b26f4\u003c/code\u003e\u003c/a\u003e feat(ft.aggregate): Add Steps for query building (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3782\"\u003e#3782\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/d9d769491154d4da6d683b73e9dfff5c878c1890\"\u003e\u003ccode\u003ed9d7694\u003c/code\u003e\u003c/a\u003e fix(pool): two fixes for closed connection handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3764\"\u003e#3764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/44e8b7309cf547f620b9849a5a4dd9013cc3660a\"\u003e\u003ccode\u003e44e8b73\u003c/code\u003e\u003c/a\u003e fix(sch): auto hostname type detection (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3789\"\u003e#3789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/ad21622ce8dba26c4ac7dc0fbf74a0bd278d2c19\"\u003e\u003ccode\u003ead21622\u003c/code\u003e\u003c/a\u003e fix(hello): do not send maintnotifications handshake when hello fails (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/1a7ac744c3f98b415852b4c9842b97991e3e4d91\"\u003e\u003ccode\u003e1a7ac74\u003c/code\u003e\u003c/a\u003e fix(pool): suppress pool Close() errors for stale connections (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3778\"\u003e#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/903d6bd360af9ea53d4af4ca652d18b915398c7d\"\u003e\u003ccode\u003e903d6bd\u003c/code\u003e\u003c/a\u003e fix(retry): make dial tcp error redirectable (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3786\"\u003e#3786\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3787\"\u003e#3787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/00a551b3b468687e5e06b295b419292786bcdc99\"\u003e\u003ccode\u003e00a551b\u003c/code\u003e\u003c/a\u003e fix(credentials): leak in wrappedOnClose (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3785\"\u003e#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/b5a6f99b7a9d496bf2e3d68ad9c33e43c23c4df9\"\u003e\u003ccode\u003eb5a6f99\u003c/code\u003e\u003c/a\u003e refactor(pool): remove redundant Conn.closed atomic field (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3783\"\u003e#3783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/928f27aef850b3508b590e41a050f27d29fb14a2\"\u003e\u003ccode\u003e928f27a\u003c/code\u003e\u003c/a\u003e feat(hscan): add support for encoding.BinaryUnmarshaler (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/go-redis/compare/v9.18.0...v9.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go` from 0.29.1 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71ff693f1fc\"\u003e\u003ccode\u003e75aa226\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/2f59938fb9ce365d974fe21a426ffffe7231caca\"\u003e\u003ccode\u003e2f59938\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/580abf68d44021bc7e54f8655a2fb66578205527\"\u003e\u003ccode\u003e580abf6\u003c/code\u003e\u003c/a\u003e chore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/testcontainers/testcontainers-go/compare/v0.29.1...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.29.1 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go/modules/postgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/depend...\n\n_Description has been truncated_","html_url":"https://github.com/BMogetta/recess/pull/155","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BMogetta%2Frecess/issues/155","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/155/packages"}},{"old_version":"5.5.3","new_version":"5.9.2","update_type":"minor","path":"/backend","pr_created_at":"2026-05-15T04:44:38.000Z","version_change":"5.5.3 → 5.9.2","issue":{"uuid":"4451321929","node_id":"PR_kwDOSeAiFc7byNsj","number":4,"state":"open","title":"deps(deps): bump the production-dependencies group in /backend with 6 updates","user":"dependabot[bot]","labels":[],"assignees":["nelsonelagunar"],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T04:44:38.000Z","updated_at":"2026-05-15T04:44:39.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"deps(deps): bump","group_name":"production-dependencies","update_count":6,"packages":[{"name":"github.com/gin-gonic/gin","old_version":"1.9.1","new_version":"1.12.0","repository_url":"https://github.com/gin-gonic/gin"},{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.2.0","new_version":"5.3.1","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/google/uuid","old_version":"1.5.0","new_version":"1.6.0","repository_url":"https://github.com/google/uuid"},{"name":"github.com/jackc/pgx/v5","old_version":"5.5.3","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/stretchr/testify","old_version":"1.8.4","new_version":"1.11.1","repository_url":"https://github.com/stretchr/testify"},{"name":"golang.org/x/crypto","old_version":"0.21.0","new_version":"0.48.0","repository_url":"https://github.com/golang/crypto"}],"path":"/backend","ecosystem":"go"},"body":"Bumps the production-dependencies group in /backend with 6 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) | `1.9.1` | `1.12.0` |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.2.0` | `5.3.1` |\n| [github.com/google/uuid](https://github.com/google/uuid) | `1.5.0` | `1.6.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.3` | `5.9.2` |\n| [github.com/stretchr/testify](https://github.com/stretchr/testify) | `1.8.4` | `1.11.1` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.21.0` | `0.48.0` |\n\nUpdates `github.com/gin-gonic/gin` from 1.9.1 to 1.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/releases\"\u003egithub.com/gin-gonic/gin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e192ac89eefc1c30f7c97ae48a9ffb1c6f1c8c8bc: feat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4203\"\u003e#4203\u003c/a\u003e) (\u003ca href=\"https://github.com/takanuva15\"\u003e\u003ccode\u003e@​takanuva15\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e53410d2e07054369e0960fbe2eed97e1b9966f12: feat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4502\"\u003e#4502\u003c/a\u003e) (\u003ca href=\"https://github.com/raju-mechatronics\"\u003e\u003ccode\u003e@​raju-mechatronics\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eacc55e049e33b401e810dbd8c0d6dcb6b3ba2b05: feat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4423\"\u003e#4423\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e38e765119241d990705169bedb5002a29ae0cbd1: feat(context): implemented Delete method (\u003ca href=\"https://github.com/Spyder01\"\u003e\u003ccode\u003e@​Spyder01\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e771dcc6476d7bc6abb9ec0235ecefa4d38fe6fb0: feat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4420\"\u003e#4420\u003c/a\u003e) (\u003ca href=\"https://github.com/ldesauw\"\u003e\u003ccode\u003e@​ldesauw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4dec17afdff48e8018c83618fbbe69fceeb2b41d: feat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4146\"\u003e#4146\u003c/a\u003e) (\u003ca href=\"https://github.com/wsyqn6\"\u003e\u003ccode\u003e@​wsyqn6\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed7776de7d444935ea4385999711bd6331a98fecb: feat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4145\"\u003e#4145\u003c/a\u003e) (\u003ca href=\"https://github.com/laurentcau\"\u003e\u003ccode\u003e@​laurentcau\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb917b14ff9d189f16a7492be79d123a47806ee19: fix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/2169\"\u003e#2169\u003c/a\u003e) (\u003ca href=\"https://github.com/guonaihong\"\u003e\u003ccode\u003e@​guonaihong\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d1092b3b48addf6f9cd00fe274ec3bd14650eb: fix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4380\"\u003e#4380\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9914178584e42458ff7d23891463a880f58c9d86: fix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4472\"\u003e#4472\u003c/a\u003e) (\u003ca href=\"https://github.com/Nurysso\"\u003e\u003ccode\u003e@​Nurysso\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e2a794cd0b0faa7d829291375b27a3467ea972b0d: fix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4403\"\u003e#4403\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d5a28ed6d3849da820195b6774d212bcc038a9: fix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4422\"\u003e#4422\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5fad976b372e381312f8de69f0969f1284d229d3: fix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4415\"\u003e#4415\u003c/a\u003e) (\u003ca href=\"https://github.com/pawannn\"\u003e\u003ccode\u003e@​pawannn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e63dd3e60cab89c27fb66bce1423bd268d52abad1: fix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4336\"\u003e#4336\u003c/a\u003e) (\u003ca href=\"https://github.com/MondayCha\"\u003e\u003ccode\u003e@​MondayCha\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a: fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e) (\u003ca href=\"https://github.com/dengaleev\"\u003e\u003ccode\u003e@​dengaleev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e234a6d4c00cb77af9852aca0b8289745d5529b4b: fix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4373\"\u003e#4373\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e472d086af2acd924cb4b9d7be0525f7d790f69bc: fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8e07d37c63e5536eb25f4af4c91eabeee4011fba: fix: Correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4511\"\u003e#4511\u003c/a\u003e) (\u003ca href=\"https://github.com/mahanadh\"\u003e\u003ccode\u003e@​mahanadh\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eba093d19477b896ac89a7fc3246af23d290b8e26: chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e) (\u003ca href=\"https://github.com/BobDu\"\u003e\u003ccode\u003e@​BobDu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb2b489dbf4826c2c630717a77fd5e42774625410: chore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/3359\"\u003e#3359\u003c/a\u003e) (\u003ca href=\"https://github.com/WeidiDeng\"\u003e\u003ccode\u003e@​WeidiDeng\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eecb3f7b5e2f3915bf1db240ed5eee572f8dbea36: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4449\"\u003e#4449\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaf6e8b70b8261bb0c99ad094fe552ab92991620a: chore(deps): upgrade quic-go to v0.57.1 (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb309081bc5c137b2aa15701ef53f7f19788da25: chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e) (\u003ca href=\"https://github.com/USA-RedDragon\"\u003e\u003ccode\u003e@​USA-RedDragon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e26c3a628655cad2388380cb8102d6ce7d4875f3b: chore(response): prevent Flush() panic when \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4479\"\u003e#4479\u003c/a\u003e) (\u003ca href=\"https://github.com/Twacqwq\"\u003e\u003ccode\u003e@​Twacqwq\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5dd833f1f26de0eb30eae47b17e05ced2482dc41: chore: bump minimum Go version to 1.24 and update workflows (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4388\"\u003e#4388\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39858a0859c914bd26948fa950477e11bd8d3823: refactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4352\"\u003e#4352\u003c/a\u003e) (\u003ca href=\"https://github.com/russcoss\"\u003e\u003ccode\u003e@​russcoss\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0048f645ee945c4db30593afdea10123e2c30a6: refactor(context): omit the return value names (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4395\"\u003e#4395\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e915e4c90d28ec4cffc6eb146e208ab5a65eac772: refactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4481\"\u003e#4481\u003c/a\u003e) (\u003ca href=\"https://github.com/pauloappbr\"\u003e\u003ccode\u003e@​pauloappbr\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e414de60574449457f3192a7a1d5528940db2836d: refactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4333\"\u003e#4333\u003c/a\u003e) (\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59e9d4a794f12c4f9a6c7bed441b9644e5f6d99b: refactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4314\"\u003e#4314\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ab698dc5110af1977d57226e4995c57dd34c233: refactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4142\"\u003e#4142\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed1a15347b1e45a8ee816193d3578a93bfd73b70f: refactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4467\"\u003e#4467\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee3118cc378d263454098924ebbde7e8d1dd2e904: refactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4392\"\u003e#4392\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e488f8c3ffa579a8d19beb2bae95ff8ef36b3d53f: refactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4529\"\u003e#4529\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9968c4bf9d5a99edc3eee2c068a4c9160ece8915: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4389\"\u003e#4389\u003c/a\u003e) (\u003ca href=\"https://github.com/reddaisyy\"\u003e\u003ccode\u003e@​reddaisyy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea85ef5ce4d0cda8834c59c855068ed48b51192d1: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4432\"\u003e#4432\u003c/a\u003e) (\u003ca href=\"https://github.com/efcking\"\u003e\u003ccode\u003e@​efcking\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e61b67de522a189b568aced4c5c16917c558e3387: ci(bot): increase frequency and group updates for dependencies (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4367\"\u003e#4367\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efb27ef26c2fdfe25344b4c039d8a53551f9e912c: ci(lint): refactor test assertions and linter configuration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4436\"\u003e#4436\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e93ff771e6dbf10e432864b30f3719ac5c84a4d4a: ci(sec): improve type safety and server organization in HTTP middleware (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4437\"\u003e#4437\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee88fc8927a52b74f55bec0351604a56ac0aa1c51: ci(sec): schedule Trivy security scans to run daily at midnight UTC (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4439\"\u003e#4439\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e5ff3ace496a31b138b0820136a146bfb5de0ef: ci: replace vulnerability scanning workflow with Trivy integration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4421\"\u003e#4421\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e00900fb3e1ea9dde33985a0e4f6afec793d5e786: ci: update CI workflows and standardize Trivy config quotes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4531\"\u003e#4531\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eae3f524974fc4f55d18c9e7fae4614503c015226: ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md\"\u003egithub.com/gin-gonic/gin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGin v1.12.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4145\"\u003e#4145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4502\"\u003e#4502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4203\"\u003e#4203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4420\"\u003e#4420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4423\"\u003e#4423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): implemented Delete method (\u003ca href=\"https://github.com/gin-gonic/gin/commit/38e7651\"\u003e#38e7651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4146\"\u003e#4146\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eperf(tree): reduce allocations in findCaseInsensitivePath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4417\"\u003e#4417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(recovery): optimize line reading in stack function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4466\"\u003e#4466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(path): replace regex with custom functions in redirectTrailingSlash (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4414\"\u003e#4414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(tree): optimize path parsing using strings.Count (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4246\"\u003e#4246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/3359\"\u003e#3359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(response): prevent Flush() panic when the underlying ResponseWriter does not implement \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4479\"\u003e#4479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4142\"\u003e#4142\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4481\"\u003e#4481\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4467\"\u003e#4467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4352\"\u003e#4352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4333\"\u003e#4333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4314\"\u003e#4314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4529\"\u003e#4529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4392\"\u003e#4392\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4472\"\u003e#4472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/2169\"\u003e#2169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4336\"\u003e#4336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4415\"\u003e#4415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4422\"\u003e#4422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4373\"\u003e#4373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4380\"\u003e#4380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4403\"\u003e#4403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4511\"\u003e#4511\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates / CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eGin v1.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/73726dc606796a025971fe451f0aa6f1b9b847f6\"\u003e\u003ccode\u003e73726dc\u003c/code\u003e\u003c/a\u003e docs: update documentation to reflect Go version changes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4552\"\u003e#4552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/e292e5caa777bce70b66fe08c94cbe9cef3e2ec9\"\u003e\u003ccode\u003ee292e5c\u003c/code\u003e\u003c/a\u003e docs: document and finalize Gin v1.12.0 release (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4551\"\u003e#4551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ae3f524974fc4f55d18c9e7fae4614503c015226\"\u003e\u003ccode\u003eae3f524\u003c/code\u003e\u003c/a\u003e ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/38534e2bf98a06e1f62d6b24384e90b5f78699bf\"\u003e\u003ccode\u003e38534e2\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4548\"\u003e#4548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/472d086af2acd924cb4b9d7be0525f7d790f69bc\"\u003e\u003ccode\u003e472d086\u003c/code\u003e\u003c/a\u003e fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/fb2583442c4d9bccb75e6d26f1aa6e7c01950db6\"\u003e\u003ccode\u003efb25834\u003c/code\u003e\u003c/a\u003e test(context): use http.StatusContinue constant instead of magic number 100 (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/6f1d5fe3cdb171a08928c3c9dd3fbcfc9ee1b521\"\u003e\u003ccode\u003e6f1d5fe\u003c/code\u003e\u003c/a\u003e test(render): add comprehensive error handling tests (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4541\"\u003e#4541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a\"\u003e\u003ccode\u003e5c00df8\u003c/code\u003e\u003c/a\u003e fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/db309081bc5c137b2aa15701ef53f7f19788da25\"\u003e\u003ccode\u003edb30908\u003c/code\u003e\u003c/a\u003e chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ba093d19477b896ac89a7fc3246af23d290b8e26\"\u003e\u003ccode\u003eba093d1\u003c/code\u003e\u003c/a\u003e chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gin-gonic/gin/compare/v1.9.1...v1.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.0 to 5.3.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.3.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003e🔐 Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd spellcheck Github action to catch common spelling mistakes by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithNotBeforeRequired\u003c/code\u003e parser option and add test coverage by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/456\"\u003egolang-jwt/jwt#456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate godoc example func to properly refer to \u003ccode\u003eNewWithClaims()\u003c/code\u003e by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/459\"\u003egolang-jwt/jwt#459\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate github workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/462\"\u003egolang-jwt/jwt#462\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional test for CustomClaims that validates unmarshalling behaviour by \u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/457\"\u003egolang-jwt/jwt#457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix early file close in jwt cli by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/472\"\u003egolang-jwt/jwt#472\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd TPM signature reference by \u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove misleading ParserOptions documentation in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/484\"\u003egolang-jwt/jwt#484\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSave signature to Token struct after successful signing by \u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSet token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e by \u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e👒 Dependencies\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eBump crate-ci/typos from 1.34.0 to 1.35.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/461\"\u003egolang-jwt/jwt#461\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.35.4 to 1.36.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/470\"\u003egolang-jwt/jwt#470\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/478\"\u003egolang-jwt/jwt#478\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.36.2 to 1.39.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/480\"\u003egolang-jwt/jwt#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/481\"\u003egolang-jwt/jwt#481\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/469\"\u003egolang-jwt/jwt#469\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.39.0 to 1.40.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/488\"\u003egolang-jwt/jwt#488\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/487\"\u003egolang-jwt/jwt#487\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.40.0 to 1.41.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/490\"\u003egolang-jwt/jwt#490\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump crate-ci/typos from 1.41.0 to 1.42.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/492\"\u003egolang-jwt/jwt#492\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/equalsgibson\"\u003e\u003ccode\u003e@​equalsgibson\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/458\"\u003egolang-jwt/jwt#458\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/salrashid123\"\u003e\u003ccode\u003e@​salrashid123\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/473\"\u003egolang-jwt/jwt#473\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/EgorSheff\"\u003e\u003ccode\u003e@​EgorSheff\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/417\"\u003egolang-jwt/jwt#417\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/slickwilli\"\u003e\u003ccode\u003e@​slickwilli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/414\"\u003egolang-jwt/jwt#414\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.3.0...v5.3.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.3.0\u003c/h2\u003e\n\u003cp\u003eThis release is almost identical to to \u003ccode\u003ev5.2.3\u003c/code\u003e but now correctly indicates Go 1.21 as minimum requirement.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate CODEOWNERS by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/449\"\u003egolang-jwt/jwt#449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version to indicate correct minimum requirement by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/452\"\u003egolang-jwt/jwt#452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.3...v5.3.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.2.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump GitHub workflows and Go versions by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/438\"\u003egolang-jwt/jwt#438\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplementing validation of multiple audiences by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/433\"\u003egolang-jwt/jwt#433\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 7 to 8 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/440\"\u003egolang-jwt/jwt#440\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7ceae619e739dc8a7bf577214aa8ebf26668e9db\"\u003e\u003ccode\u003e7ceae61\u003c/code\u003e\u003c/a\u003e Add release.yml for changelog configuration\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/dce8e4dddcc9dc812cdc0b9d2037512d0e4b3eb5\"\u003e\u003ccode\u003edce8e4d\u003c/code\u003e\u003c/a\u003e Set token.Signature in \u003ccode\u003eParseUnverified\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/414\"\u003e#414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/8889e208aa5c3736e5f7a856107ee70c046b803e\"\u003e\u003ccode\u003e8889e20\u003c/code\u003e\u003c/a\u003e Save signature to Token struct after successful signing (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/417\"\u003e#417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d237f8204b397bc008b5b07c4e081beb4ec2a7b1\"\u003e\u003ccode\u003ed237f82\u003c/code\u003e\u003c/a\u003e ci: update github-actions schedule interval to monthly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/d8dce95a406fc435aa3d11c5073f2f31a9449116\"\u003e\u003ccode\u003ed8dce95\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.41.0 to 1.42.1 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/492\"\u003e#492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e93180329eab078116176ff7dc4352760bc5f290\"\u003e\u003ccode\u003ee931803\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.40.0 to 1.41.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/490\"\u003e#490\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/e6a0afa839d74787501369217245b52bfc75f30d\"\u003e\u003ccode\u003ee6a0afa\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/487\"\u003e#487\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/9f85c9ec9f10fb6919d773cb8df07029639ec76e\"\u003e\u003ccode\u003e9f85c9e\u003c/code\u003e\u003c/a\u003e Bump crate-ci/typos from 1.39.0 to 1.40.0 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/488\"\u003e#488\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/60a8669e0221aed55a6abfd9b5cd20472f0c6ebd\"\u003e\u003ccode\u003e60a8669\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/469\"\u003e#469\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/76f582896da76978896d59ced995d7967c33c434\"\u003e\u003ccode\u003e76f5828\u003c/code\u003e\u003c/a\u003e Remove misleading ParserOptions documentation (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/484\"\u003e#484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.0...v5.3.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/uuid` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/uuid/releases\"\u003egithub.com/google/uuid's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.6.0\u003c/h2\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/google/uuid/compare/v1.5.0...v1.6.0\"\u003e1.6.0\u003c/a\u003e (2024-01-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd Max UUID constant (\u003ca href=\"https://redirect.github.com/google/uuid/issues/149\"\u003e#149\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3\"\u003ec58770e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in version 7 uuid documentation (\u003ca href=\"https://redirect.github.com/google/uuid/issues/153\"\u003e#153\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06\"\u003e016b199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMonotonicity in UUIDv7 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/150\"\u003e#150\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6\"\u003ea2b2b32\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/uuid/blob/master/CHANGELOG.md\"\u003egithub.com/google/uuid's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/google/uuid/compare/v1.5.0...v1.6.0\"\u003e1.6.0\u003c/a\u003e (2024-01-16)\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd Max UUID constant (\u003ca href=\"https://redirect.github.com/google/uuid/issues/149\"\u003e#149\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3\"\u003ec58770e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix typo in version 7 uuid documentation (\u003ca href=\"https://redirect.github.com/google/uuid/issues/153\"\u003e#153\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06\"\u003e016b199\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMonotonicity in UUIDv7 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/150\"\u003e#150\u003c/a\u003e) (\u003ca href=\"https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6\"\u003ea2b2b32\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/0f11ee6918f41a04c201eceeadf612a377bc7fbc\"\u003e\u003ccode\u003e0f11ee6\u003c/code\u003e\u003c/a\u003e chore(master): release 1.6.0 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/151\"\u003e#151\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/16939dafc37a38d2743810a8bdf60fdad6a0f3a3\"\u003e\u003ccode\u003e16939da\u003c/code\u003e\u003c/a\u003e chore(tests):  add strict monotonicity test case for uuid v7. (\u003ca href=\"https://redirect.github.com/google/uuid/issues/154\"\u003e#154\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/016b199544692f745ffc8867b914129ecb47ef06\"\u003e\u003ccode\u003e016b199\u003c/code\u003e\u003c/a\u003e fix: fix typo in version 7 uuid documentation (\u003ca href=\"https://redirect.github.com/google/uuid/issues/153\"\u003e#153\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/1d8b6ea0990d688105843a9a67b1d07222350502\"\u003e\u003ccode\u003e1d8b6ea\u003c/code\u003e\u003c/a\u003e ci: set token permissions to github workflows (\u003ca href=\"https://redirect.github.com/google/uuid/issues/143\"\u003e#143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/a2b2b32373ff0b1a312b7fdf6d38a977099698a6\"\u003e\u003ccode\u003ea2b2b32\u003c/code\u003e\u003c/a\u003e fix: Monotonicity in UUIDv7 (\u003ca href=\"https://redirect.github.com/google/uuid/issues/150\"\u003e#150\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/uuid/commit/c58770eb495f55fe2ced6284f93c5158a62e53e3\"\u003e\u003ccode\u003ec58770e\u003c/code\u003e\u003c/a\u003e feat: add Max UUID constant (\u003ca href=\"https://redirect.github.com/google/uuid/issues/149\"\u003e#149\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/uuid/compare/v1.5.0...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.5.3 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.3...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/stretchr/testify` from 1.8.4 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stretchr/testify/releases\"\u003egithub.com/stretchr/testify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1785\"\u003e#1785\u003c/a\u003e introduced in v1.11.0 where expected argument values implementing the stringer interface (\u003ccode\u003eString() string\u003c/code\u003e) with a method which mutates their value, when passed to mock.Mock.On (\u003ccode\u003em.On(\u0026quot;Method\u0026quot;, \u0026lt;expected\u0026gt;).Return()\u003c/code\u003e) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1788\"\u003estretchr/testify#1788\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\"\u003ehttps://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFunctional Changes\u003c/h3\u003e\n\u003cp\u003ev1.11.0 Includes a number of performance improvements.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCall stack perf change for CallerInfo by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1614\"\u003estretchr/testify#1614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLazily render mock diff output on successful match by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1615\"\u003estretchr/testify#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check early in Eventually, EventuallyWithT, and Never by \u003ca href=\"https://github.com/cszczepaniak\"\u003e\u003ccode\u003e@​cszczepaniak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1427\"\u003estretchr/testify#1427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: add IsNotType by \u003ca href=\"https://github.com/bartventer\"\u003e\u003ccode\u003e@​bartventer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1730\"\u003estretchr/testify#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.JSONEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1754\"\u003estretchr/testify#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.YAMLEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1755\"\u003estretchr/testify#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: faster and simpler isEmpty using reflect.Value.IsZero by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1761\"\u003estretchr/testify#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: faster methods filtering (internal refactor) by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1758\"\u003estretchr/testify#1758\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eassert.ErrorAs: log target type by \u003ca href=\"https://github.com/craig65535\"\u003e\u003ccode\u003e@​craig65535\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1345\"\u003estretchr/testify#1345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix failure message formatting for Positive and Negative asserts in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1062\"\u003estretchr/testify#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorIs message when error is nil but an error was expected by \u003ca href=\"https://github.com/tsioftas\"\u003e\u003ccode\u003e@​tsioftas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1681\"\u003estretchr/testify#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix Subset/NotSubset when calling with mixed input types by \u003ca href=\"https://github.com/siliconbrain\"\u003e\u003ccode\u003e@​siliconbrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1729\"\u003estretchr/testify#1729\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorAs failure message when error is nil by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1734\"\u003estretchr/testify#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock.AssertNumberOfCalls: improve error msg by \u003ca href=\"https://github.com/3scalation\"\u003e\u003ccode\u003e@​3scalation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1743\"\u003estretchr/testify#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation, Build \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Fix typo in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1688\"\u003estretchr/testify#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace deprecated io/ioutil with io and os by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1684\"\u003estretchr/testify#1684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument consequences of calling t.FailNow() by \u003ca href=\"https://github.com/greg0ire\"\u003e\u003ccode\u003e@​greg0ire\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1710\"\u003estretchr/testify#1710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update docs for Unset \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1621\"\u003e#1621\u003c/a\u003e by \u003ca href=\"https://github.com/techfg\"\u003e\u003ccode\u003e@​techfg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1709\"\u003estretchr/testify#1709\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: apply gofmt to examples by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1687\"\u003estretchr/testify#1687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: use %q and %T to simplify fmt.Sprintf by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1674\"\u003estretchr/testify#1674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePropose Christophe Colombier (ccoVeille) as approver by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1716\"\u003estretchr/testify#1716\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate documentation for the Error function in assert or require package by \u003ca href=\"https://github.com/architagr\"\u003e\u003ccode\u003e@​architagr\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1675\"\u003estretchr/testify#1675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: remove deprecated build constraints by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1671\"\u003estretchr/testify#1671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: apply gofumpt to internal test suite by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1739\"\u003estretchr/testify#1739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: fix shebang in .ci.*.sh scripts by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1746\"\u003estretchr/testify#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert,require: enable parallel testing on (almost) all top tests by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1747\"\u003estretchr/testify#1747\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite.Passed: add one more status test report by \u003ca href=\"https://github.com/Ararsa-Derese\"\u003e\u003ccode\u003e@​Ararsa-Derese\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1706\"\u003estretchr/testify#1706\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Helper() method in internal mocks and assert.CollectT by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1423\"\u003estretchr/testify#1423\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.Same/NotSame: improve usage of Sprintf by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1742\"\u003estretchr/testify#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock: enable parallel testing on internal testsuite by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1756\"\u003estretchr/testify#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: cleanup use of 'testing' internals at runtime by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1751\"\u003estretchr/testify#1751\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check test failure message for Empty and NotEmpty  by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1745\"\u003estretchr/testify#1745\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/2a57335dc9cd6833daa820bc94d9b40c26a7917d\"\u003e\u003ccode\u003e2a57335\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1788\"\u003e#1788\u003c/a\u003e from brackendawson/1785-backport-1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/af8c91234f184009f57ef29027b39ca89cb00100\"\u003e\u003ccode\u003eaf8c912\u003c/code\u003e\u003c/a\u003e Backport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/b7801fbf5cd58d201296d5d0e132d1849966dbd4\"\u003e\u003ccode\u003eb7801fb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1778\"\u003e#1778\u003c/a\u003e from stretchr/dependabot/github_actions/actions/chec...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/69831f3b08c40d56a09d0be93e9d5ae034f1590b\"\u003e\u003ccode\u003e69831f3\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 4 to 5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/a53be35c3b0cfcd5189cffcfd75df60ea581104c\"\u003e\u003ccode\u003ea53be35\u003c/code\u003e\u003c/a\u003e Improve captureTestingT helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/aafb604176db7e1f2c9810bc90d644291d057687\"\u003e\u003ccode\u003eaafb604\u003c/code\u003e\u003c/a\u003e mock: improve formatting of error message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7218e0390acd2aea3edb18574110ec2753c0aeef\"\u003e\u003ccode\u003e7218e03\u003c/code\u003e\u003c/a\u003e improve error msg\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/929a2126c2702df436312656a0304580b526c6e9\"\u003e\u003ccode\u003e929a212\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1758\"\u003e#1758\u003c/a\u003e from stretchr/dolmen/suite-faster-method-filtering\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/bc7459ec38128532ff32f23cfab4ea0b725210f2\"\u003e\u003ccode\u003ebc7459e\u003c/code\u003e\u003c/a\u003e suite: faster filtering of methods (-testify.m)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/stretchr/testify/commit/7d37b5c962954410bcd7a71ff3a77c79514056d1\"\u003e\u003ccode\u003e7d37b5c\u003c/code\u003e\u003c/a\u003e suite: refactor methodFilter\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/stretchr/testify/compare/v1.8.4...v1.11.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.21.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e08b06753d6a72f1fe375b6e0fefefb39917c165\"\u003e\u003ccode\u003ee08b067\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7d0074ccc6f17acbf2ebb10db06d492e08f887dc\"\u003e\u003ccode\u003e7d0074c\u003c/code\u003e\u003c/a\u003e scrypt: fix panic on parameters \u0026lt;= 0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/506e022208b864bc3c9c4a416fe56be75d10ad24\"\u003e\u003ccode\u003e506e022\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7dacc380ba001e8fe7c3c7a46bf3cbdaa5064df9\"\u003e\u003ccode\u003e7dacc38\u003c/code\u003e\u003c/a\u003e chacha20poly1305: error out in fips140=only mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.21.0...v0.48.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/nelsonelagunar/rh-platform-active/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/nelsonelagunar%2Frh-platform-active/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"5.7.4","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-15T03:10:08.000Z","version_change":"5.7.4 → 5.9.2","issue":{"uuid":"4450916153","node_id":"PR_kwDOSd7PR87bw5aP","number":7,"state":"open","title":"chore(deps)(deps): Bump the go-minor-and-patch group across 1 directory with 21 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":5,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T03:10:08.000Z","updated_at":"2026-05-15T03:52:08.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): Bump","group_name":"go-minor-and-patch","update_count":21,"packages":[{"name":"github.com/alicebob/miniredis/v2","old_version":"2.37.0","new_version":"2.38.0","repository_url":"https://github.com/alicebob/miniredis"},{"name":"github.com/jackc/pgx/v5","old_version":"5.7.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/onsi/ginkgo/v2","old_version":"2.27.2","new_version":"2.28.3","repository_url":"https://github.com/onsi/ginkgo"},{"name":"github.com/redis/go-redis/v9","old_version":"9.18.0","new_version":"9.19.0","repository_url":"https://github.com/redis/go-redis"},{"name":"github.com/spf13/cobra","old_version":"1.10.0","new_version":"1.10.2","repository_url":"https://github.com/spf13/cobra"},{"name":"go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc","old_version":"0.60.0","new_version":"0.68.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go-contrib"},{"name":"go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp","old_version":"0.61.0","new_version":"0.68.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go-contrib"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc","old_version":"1.34.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"golang.org/x/time","old_version":"0.9.0","new_version":"0.15.0","repository_url":"https://github.com/golang/time"},{"name":"k8s.io/api","old_version":"0.35.0","new_version":"0.36.1","repository_url":"https://github.com/kubernetes/api"},{"name":"k8s.io/client-go","old_version":"0.35.0","new_version":"0.36.1","repository_url":"https://github.com/kubernetes/client-go"},{"name":"modernc.org/sqlite","old_version":"1.46.1","new_version":"1.50.1"},{"name":"sigs.k8s.io/controller-runtime","old_version":"0.23.1","new_version":"0.24.1","repository_url":"https://github.com/kubernetes-sigs/controller-runtime"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-minor-and-patch group with 13 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/alicebob/miniredis/v2](https://github.com/alicebob/miniredis) | `2.37.0` | `2.38.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.7.4` | `5.9.2` |\n| [github.com/onsi/ginkgo/v2](https://github.com/onsi/ginkgo) | `2.27.2` | `2.28.3` |\n| [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) | `9.18.0` | `9.19.0` |\n| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.10.0` | `1.10.2` |\n| [go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc](https://github.com/open-telemetry/opentelemetry-go-contrib) | `0.60.0` | `0.68.0` |\n| [go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp](https://github.com/open-telemetry/opentelemetry-go-contrib) | `0.61.0` | `0.68.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.34.0` | `1.43.0` |\n| [golang.org/x/time](https://github.com/golang/time) | `0.9.0` | `0.15.0` |\n| [k8s.io/api](https://github.com/kubernetes/api) | `0.35.0` | `0.36.1` |\n| [k8s.io/client-go](https://github.com/kubernetes/client-go) | `0.35.0` | `0.36.1` |\n| [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) | `1.46.1` | `1.50.1` |\n| [sigs.k8s.io/controller-runtime](https://github.com/kubernetes-sigs/controller-runtime) | `0.23.1` | `0.24.1` |\n\n\nUpdates `github.com/alicebob/miniredis/v2` from 2.37.0 to 2.38.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/releases\"\u003egithub.com/alicebob/miniredis/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eDELEX and fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/alicebob/miniredis/blob/master/CHANGELOG.md\"\u003egithub.com/alicebob/miniredis/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.38.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eXADD TRIM (thanks \u003ca href=\"https://github.com/evan-choi\"\u003e\u003ccode\u003e@​evan-choi\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eupdate XINFO STREAM (thanks \u003ca href=\"https://github.com/TomBailey167\"\u003e\u003ccode\u003e@​TomBailey167\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elua fix (thanks \u003ca href=\"https://github.com/infastin\"\u003e\u003ccode\u003e@​infastin\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epartial support for DELEX\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d67bfae4c370e8451561165eca6ddc50f056f083\"\u003e\u003ccode\u003ed67bfae\u003c/code\u003e\u003c/a\u003e update changelog for v2.38.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/2b1abd81e1c58fb6d440b4637287d3ee09f7f66a\"\u003e\u003ccode\u003e2b1abd8\u003c/code\u003e\u003c/a\u003e DELEX (partly) (\u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/442\"\u003e#442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/452dd373d138f7ad858dd6e25e2a92753f83498e\"\u003e\u003ccode\u003e452dd37\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/440\"\u003e#440\u003c/a\u003e from infastin/server-alias\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/b5b8ec2cfde407552ea028514409599dbd5e1600\"\u003e\u003ccode\u003eb5b8ec2\u003c/code\u003e\u003c/a\u003e feat: add 'server' alias to 'redis' in lua scripts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/ecc4af14f2444ea1a57d040185781fe197bdfc9d\"\u003e\u003ccode\u003eecc4af1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/439\"\u003e#439\u003c/a\u003e from TomBailey167/xinfo-stream-last-generated-id\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/4a2a33e841b359a2569fe9a35d6d46414bf40aec\"\u003e\u003ccode\u003e4a2a33e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/alicebob/miniredis/issues/435\"\u003e#435\u003c/a\u003e from evan-choi/fix/xadd-equals-trim-modifier\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/d6261eff59117ccea7387f3a608caa1006b1adef\"\u003e\u003ccode\u003ed6261ef\u003c/code\u003e\u003c/a\u003e feat: add last-generated-id to XINFO STREAM response\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alicebob/miniredis/commit/f4d8aa342425de1b740a6f22a7dd230f83e3712a\"\u003e\u003ccode\u003ef4d8aa3\u003c/code\u003e\u003c/a\u003e fix: accept = trim modifier in xadd\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/alicebob/miniredis/compare/v2.37.0...v2.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/onsi/ginkgo/v2` from 2.27.2 to 2.28.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/ginkgo/releases\"\u003egithub.com/onsi/ginkgo/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.28.3\u003c/h2\u003e\n\u003ch2\u003e2.28.3\u003c/h2\u003e\n\u003ch3\u003eMaintenance\u003c/h3\u003e\n\u003cp\u003eBump all dependencies\u003c/p\u003e\n\u003ch2\u003ev2.28.2\u003c/h2\u003e\n\u003ch2\u003e2.28.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]\u003c/li\u003e\n\u003cli\u003eImplement shell completion [94151c8]\u003c/li\u003e\n\u003cli\u003eAdd asan CLI option mirroring msan implementation [4d21dbb]\u003c/li\u003e\n\u003cli\u003eBump uri from 1.0.3 to 1.0.4 in /docs (\u003ca href=\"https://redirect.github.com/onsi/ginkgo/issues/1630\"\u003e#1630\u003c/a\u003e) [c102161]\u003c/li\u003e\n\u003cli\u003efix aspect ratio [9619647]\u003c/li\u003e\n\u003cli\u003eupdate logos [5779304]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev2.28.1\u003c/h2\u003e\n\u003ch2\u003e2.28.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003ev2.28.0\u003c/h2\u003e\n\u003ch2\u003e2.28.0\u003c/h2\u003e\n\u003cp\u003eGinkgo's SemVer filter now supports filtering multiple components by SemVer version:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eIt(\u0026quot;should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)\u0026quot;, SemVerConstraint(\u0026quot;\u0026gt;= 3.2.0\u0026quot;), ComponentSemVerConstraint(\u0026quot;redis\u0026quot;, \u0026quot;\u0026gt;= 8.0.0\u0026quot;) func() {\n    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is \u0026gt;= 8.0.0\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003ecan be filtered in or out with an invocation like:\u003c/p\u003e\n\u003cpre lang=\"bash\"\u003e\u003ccode\u003eginkgo --sem-ver-filter=\u0026quot;2.1.1, redis=8.2.0\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eHuge thanks to \u003ca href=\"https://github.com/Icarus9913\"\u003e\u003ccode\u003e@​Icarus9913\u003c/code\u003e\u003c/a\u003e for working on this!\u003c/p\u003e\n\u003ch2\u003ev2.27.5\u003c/h2\u003e\n\u003ch2\u003e2.27.5\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003eDon't make a new formatter for each GinkgoT(); that's just silly and uses precious memory\u003c/p\u003e\n\u003ch2\u003ev2.27.4\u003c/h2\u003e\n\u003ch2\u003e2.27.4\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/ginkgo/blob/master/CHANGELOG.md\"\u003egithub.com/onsi/ginkgo/v2's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e2.28.3\u003c/h2\u003e\n\u003ch3\u003eMaintenance\u003c/h3\u003e\n\u003cp\u003eBump all dependencies\u003c/p\u003e\n\u003ch2\u003e2.28.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ArtifactDir() to support Go 1.26 testing.TB interface [f3a36b6]\u003c/li\u003e\n\u003cli\u003eImplement shell completion [94151c8]\u003c/li\u003e\n\u003cli\u003eAdd asan CLI option mirroring msan implementation [4d21dbb]\u003c/li\u003e\n\u003cli\u003eBump uri from 1.0.3 to 1.0.4 in /docs (\u003ca href=\"https://redirect.github.com/onsi/ginkgo/issues/1630\"\u003e#1630\u003c/a\u003e) [c102161]\u003c/li\u003e\n\u003cli\u003efix aspect ratio [9619647]\u003c/li\u003e\n\u003cli\u003eupdate logos [5779304]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.28.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003e2.28.0\u003c/h2\u003e\n\u003cp\u003eGinkgo's SemVer filter now supports filtering multiple components by SemVer version:\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eIt(\u0026quot;should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)\u0026quot;, SemVerConstraint(\u0026quot;\u0026gt;= 3.2.0\u0026quot;), ComponentSemVerConstraint(\u0026quot;redis\u0026quot;, \u0026quot;\u0026gt;= 8.0.0\u0026quot;) func() {\n    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is \u0026gt;= 8.0.0\n})\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003ecan be filtered in or out with an invocation like:\u003c/p\u003e\n\u003cpre lang=\"bash\"\u003e\u003ccode\u003eginkgo --sem-ver-filter=\u0026quot;2.1.1, redis=8.2.0\u0026quot;\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eHuge thanks to \u003ca href=\"https://github.com/Icarus9913\"\u003e\u003ccode\u003e@​Icarus9913\u003c/code\u003e\u003c/a\u003e for working on this!\u003c/p\u003e\n\u003ch2\u003e2.27.5\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003eDon't make a new formatter for each GinkgoT(); that's just silly and uses precious memory\u003c/p\u003e\n\u003ch2\u003e2.27.4\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e2.27.3\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003ereport exit result in case of failure [1c9f356]\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/5de9c152e440036fef089e065449ecaae64264f9\"\u003e\u003ccode\u003e5de9c15\u003c/code\u003e\u003c/a\u003e v2.28.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/7e2fa191179736dde68165bc101e99c4980fe124\"\u003e\u003ccode\u003e7e2fa19\u003c/code\u003e\u003c/a\u003e bump dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/1a819128ddbbcc39f57ac8716943d82c4bd6ef6f\"\u003e\u003ccode\u003e1a81912\u003c/code\u003e\u003c/a\u003e v2.28.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/f3a36b6dfbb5576e0f29fff37944a0b5f9aca079\"\u003e\u003ccode\u003ef3a36b6\u003c/code\u003e\u003c/a\u003e Add ArtifactDir() to support Go 1.26 testing.TB interface\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/94151c8fa4ecd9240c78548dcedfb7791b9c4e7e\"\u003e\u003ccode\u003e94151c8\u003c/code\u003e\u003c/a\u003e Implement shell completion\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/4d21dbbdf4285c1a76058f77aed1bb1adc4a77ed\"\u003e\u003ccode\u003e4d21dbb\u003c/code\u003e\u003c/a\u003e Add asan CLI option mirroring msan implementation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/c1021613df439a0d5d68fc04238c0fe06a201e89\"\u003e\u003ccode\u003ec102161\u003c/code\u003e\u003c/a\u003e Bump uri from 1.0.3 to 1.0.4 in /docs (\u003ca href=\"https://redirect.github.com/onsi/ginkgo/issues/1630\"\u003e#1630\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/96196475f2d8b069fa8e6a4529d7938e015fc2bf\"\u003e\u003ccode\u003e9619647\u003c/code\u003e\u003c/a\u003e fix aspect ratio\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/5779304bdba168d5e65680aee7f8a8ef2795eb41\"\u003e\u003ccode\u003e5779304\u003c/code\u003e\u003c/a\u003e update logos\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/ginkgo/commit/5d1d628ac86668c8f944c8c491c3d1ab86b3bed4\"\u003e\u003ccode\u003e5d1d628\u003c/code\u003e\u003c/a\u003e v2.28.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/onsi/ginkgo/compare/v2.27.2...v2.28.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/onsi/gomega` from 1.38.2 to 1.40.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/gomega/releases\"\u003egithub.com/onsi/gomega's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.40.0\u003c/h2\u003e\n\u003ch2\u003e1.40.0\u003c/h2\u003e\n\u003cp\u003eWe're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega.  It is a limitation of the go mod toolchain that \u003cem\u003etest\u003c/em\u003e subdependencies of your project's direct dependencies get pulled in as \u003cem\u003eindirect\u003c/em\u003e dependencies.  In the case of Gomega, this ends up pulling in all of Ginkgo into your \u003ccode\u003ego.mod\u003c/code\u003e even if you are only using Gomega (Gomega uses Ginkgo for its own tests).\u003c/p\u003e\n\u003cp\u003eGoing forward, releases will strip out all tests, tidy up the \u003ccode\u003ego.mod\u003c/code\u003e and then push this stripped down version to a new \u003ccode\u003emaster-lite\u003c/code\u003e branch.  These stripped-down versions will receive the \u003ccode\u003evx.y.z\u003c/code\u003e git tag and will be picked up by the go toolchain.\u003c/p\u003e\n\u003cp\u003ePlease open an issue if this new release process causes unexpected changes for your projects.\u003c/p\u003e\n\u003ch2\u003ev1.39.1\u003c/h2\u003e\n\u003ch2\u003e1.39.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003ev1.39.0\u003c/h2\u003e\n\u003ch2\u003e1.39.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cp\u003eAdd \u003ccode\u003eMatchErrorStrictly\u003c/code\u003e which only passes if \u003ccode\u003eerrors.Is(actual, expected)\u003c/code\u003e returns true.  \u003ccode\u003eMatchError\u003c/code\u003e, by contrast, will fallback to string comparison.\u003c/p\u003e\n\u003ch2\u003ev1.38.3\u003c/h2\u003e\n\u003ch2\u003e1.38.3\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003emake string formatitng more consistent for users who use format.Object directly\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/onsi/gomega/blob/master/CHANGELOG.md\"\u003egithub.com/onsi/gomega's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.40.0\u003c/h2\u003e\n\u003cp\u003eWe're adopting a new release strategy to minimize dependency bloat in projects that consume Gomega.  It is a limitation of the go mod toolchain that \u003cem\u003etest\u003c/em\u003e subdependencies of your project's direct dependencies get pulled in as \u003cem\u003eindirect\u003c/em\u003e dependencies.  In the case of Gomega, this ends up pulling in all of Ginkgo into your \u003ccode\u003ego.mod\u003c/code\u003e even if you are only using Gomega (Gomega uses Ginkgo for its own tests).\u003c/p\u003e\n\u003cp\u003eGoing forward, releases will strip out all tests, tidy up the \u003ccode\u003ego.mod\u003c/code\u003e and then push this stripped down version to a new \u003ccode\u003emaster-lite\u003c/code\u003e branch.  These stripped-down versions will receive the \u003ccode\u003evx.y.z\u003c/code\u003e git tag and will be picked up by the go toolchain.\u003c/p\u003e\n\u003cp\u003ePlease open an issue if this new release process causes unexpected changes for your projects.\u003c/p\u003e\n\u003ch2\u003e1.39.1\u003c/h2\u003e\n\u003cp\u003eUpdate all dependencies.  This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.\u003c/p\u003e\n\u003ch2\u003e1.39.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cp\u003eAdd \u003ccode\u003eMatchErrorStrictly\u003c/code\u003e which only passes if \u003ccode\u003eerrors.Is(actual, expected)\u003c/code\u003e returns true.  \u003ccode\u003eMatchError\u003c/code\u003e, by contrast, will fallback to string comparison.\u003c/p\u003e\n\u003ch2\u003e1.38.3\u003c/h2\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cp\u003emake string formatitng more consistent for users who use format.Object directly\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/87ee9d3caabba627e5951958be800828b85f0370\"\u003e\u003ccode\u003e87ee9d3\u003c/code\u003e\u003c/a\u003e v1.40.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/ea660274df4319411eea463c942d1d3a56e6c2e6\"\u003e\u003ccode\u003eea66027\u003c/code\u003e\u003c/a\u003e v1.40.0 (full)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/e3fd789576a5f5b9a35847683804349bb4bbc761\"\u003e\u003ccode\u003ee3fd789\u003c/code\u003e\u003c/a\u003e update docs to reflect new versioning strategy\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/7d4ee309b2c28ab1854424f70c99a173650ab2f6\"\u003e\u003ccode\u003e7d4ee30\u003c/code\u003e\u003c/a\u003e first push to master-lite\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/e4a82d1a2de91721bb249fe9532c4d9211920363\"\u003e\u003ccode\u003ee4a82d1\u003c/code\u003e\u003c/a\u003e Bump github/codeql-action from 3 to 4 (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/875\"\u003e#875\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/af627234340a2e1d40074d6e6860a1b41dc03204\"\u003e\u003ccode\u003eaf62723\u003c/code\u003e\u003c/a\u003e Bump rexml from 3.4.0 to 3.4.2 in /docs (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/870\"\u003e#870\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/e1642211b3906ab5456d9d3ed7cfd9edd11f2d63\"\u003e\u003ccode\u003ee164221\u003c/code\u003e\u003c/a\u003e Bump github.com/onsi/ginkgo/v2 from 2.28.0 to 2.28.1 (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/895\"\u003e#895\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/334a282f9d59760a3e737e5b61400a3162997803\"\u003e\u003ccode\u003e334a282\u003c/code\u003e\u003c/a\u003e Bump faraday from 2.12.2 to 2.14.1 in /docs (\u003ca href=\"https://redirect.github.com/onsi/gomega/issues/896\"\u003e#896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/1a25a36414f51967615277623eed3b85b0ca6ce8\"\u003e\u003ccode\u003e1a25a36\u003c/code\u003e\u003c/a\u003e v1.39.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/onsi/gomega/commit/406faee2de82aa2584ea4d76b0e2662f70ae4d2c\"\u003e\u003ccode\u003e406faee\u003c/code\u003e\u003c/a\u003e bump all deps\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/onsi/gomega/compare/v1.38.2...v1.40.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/redis/go-redis/v9` from 9.18.0 to 9.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/releases\"\u003egithub.com/redis/go-redis/v9's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e9.19.0\u003c/h2\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md\"\u003egithub.com/redis/go-redis/v9's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e9.19.0 (2026-04-27)\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003ch3\u003eFIPS-Compatible Script Helper\u003c/h3\u003e\n\u003cp\u003e\u003ccode\u003eScript\u003c/code\u003e now supports a FIPS-safe execution mode that avoids client-side SHA-1 computation, which is blocked in strict FIPS environments. A new \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e constructor uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain and cache the digest from the server, then runs commands via \u003ccode\u003eEVALSHA\u003c/code\u003e/\u003ccode\u003eEVALSHA_RO\u003c/code\u003e. Falls back to \u003ccode\u003eEVAL\u003c/code\u003e/\u003ccode\u003eEVALRO\u003c/code\u003e if loading fails, and transparently retries once on \u003ccode\u003eNOSCRIPT\u003c/code\u003e. The default behavior is unchanged for existing users.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFT.AGGREGATE Step-Based Pipeline Builder\u003c/h3\u003e\n\u003cp\u003eAdded a new step-based \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e pipeline API via \u003ccode\u003eFTAggregateOptions.Steps\u003c/code\u003e, allowing \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e (with per-step \u003ccode\u003eMAX\u003c/code\u003e) to be repeated and interleaved in arbitrary order — matching Redis's native multi-stage aggregation semantics. The legacy \u003ccode\u003eLoad\u003c/code\u003e/\u003ccode\u003eApply\u003c/code\u003e/\u003ccode\u003eGroupBy\u003c/code\u003e/\u003ccode\u003eSortBy\u003c/code\u003e/\u003ccode\u003eSortByMax\u003c/code\u003e fields are now deprecated.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eRaw RESP Protocol Access\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e methods for executing arbitrary commands and reading the raw RESP response. Useful for proxying, custom protocol inspection, and working with commands not yet wrapped by go-redis.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eConfigurable Dial Retry Backoff\u003c/h3\u003e\n\u003cp\u003eAdded \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e option (plumbed through \u003ccode\u003eOptions\u003c/code\u003e, \u003ccode\u003eClusterOptions\u003c/code\u003e, \u003ccode\u003eRingOptions\u003c/code\u003e, \u003ccode\u003eFailoverOptions\u003c/code\u003e) to let callers customize the delay between failed dial attempts. Helpers \u003ccode\u003eDialRetryBackoffConstant\u003c/code\u003e and \u003ccode\u003eDialRetryBackoffExponential\u003c/code\u003e (with jitter and cap) are provided out of the box. Dial timeout is now also applied \u003cstrong\u003eper attempt\u003c/strong\u003e rather than across all retries.\u003c/p\u003e\n\u003cp\u003e(\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3705\"\u003e#3705\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e✨ New Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eFT.AGGREGATE Steps\u003c/strong\u003e: Step-based pipeline builder for \u003ccode\u003eFT.AGGREGATE\u003c/code\u003e with support for repeated/interleaved \u003ccode\u003eLOAD\u003c/code\u003e, \u003ccode\u003eAPPLY\u003c/code\u003e, \u003ccode\u003eGROUPBY\u003c/code\u003e, and \u003ccode\u003eSORTBY\u003c/code\u003e stages (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3782\"\u003e#3782\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorSet commands\u003c/strong\u003e: Added \u003ccode\u003eVISMEMBER\u003c/code\u003e and \u003ccode\u003eWITHATTRIBS\u003c/code\u003e support (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3753\"\u003e#3753\u003c/a\u003e) by \u003ca href=\"https://github.com/romanpovol\"\u003e\u003ccode\u003e@​romanpovol\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIPS-safe Script\u003c/strong\u003e: \u003ccode\u003eNewScriptServerSHA\u003c/code\u003e uses \u003ccode\u003eSCRIPT LOAD\u003c/code\u003e to obtain the digest from the server, avoiding client-side SHA-1 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3700\"\u003e#3700\u003c/a\u003e) by \u003ca href=\"https://github.com/chaitanyabodlapati\"\u003e\u003ccode\u003e@​chaitanyabodlapati\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eRaw RESP access\u003c/strong\u003e: \u003ccode\u003eDoRaw\u003c/code\u003e and \u003ccode\u003eDoRawWriteTo\u003c/code\u003e for raw RESP protocol access (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3713\"\u003e#3713\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial retry backoff\u003c/strong\u003e: \u003ccode\u003eDialerRetryBackoff\u003c/code\u003e function option with constant and exponential helpers (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3706\"\u003e#3706\u003c/a\u003e) by \u003ca href=\"https://github.com/mwhooker\"\u003e\u003ccode\u003e@​mwhooker\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eTyped NOSCRIPT error\u003c/strong\u003e: Redis \u003ccode\u003eNOSCRIPT\u003c/code\u003e replies are now surfaced as a typed error for easier handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3738\"\u003e#3738\u003c/a\u003e) by \u003ca href=\"https://github.com/LINKIWI\"\u003e\u003ccode\u003e@​LINKIWI\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePubSub ClientSetName\u003c/strong\u003e: Added \u003ccode\u003eClientSetName\u003c/code\u003e method to \u003ccode\u003ePubSub\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3727\"\u003e#3727\u003c/a\u003e) by \u003ca href=\"https://github.com/Flack74\"\u003e\u003ccode\u003e@​Flack74\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eReplicaOf\u003c/strong\u003e: New \u003ccode\u003eReplicaOf\u003c/code\u003e method replaces the deprecated \u003ccode\u003eSlaveOf\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3720\"\u003e#3720\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHSCAN BinaryUnmarshaler\u003c/strong\u003e: \u003ccode\u003eHScan\u003c/code\u003e now supports types implementing \u003ccode\u003eencoding.BinaryUnmarshaler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3768\"\u003e#3768\u003c/a\u003e) by \u003ca href=\"https://github.com/Aaditya-dubey1\"\u003e\u003ccode\u003e@​Aaditya-dubey1\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eAuto hostname type detection\u003c/strong\u003e: Improved endpoint type detection for maintenance notifications using DNS-based classification; handles empty hosts and expanded private-IP ranges (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3789\"\u003e#3789\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eHELLO fallback\u003c/strong\u003e: Don't send \u003ccode\u003eCLIENT MAINT_NOTIFICATIONS\u003c/code\u003e handshake when \u003ccode\u003eHELLO\u003c/code\u003e fails and connection falls back to RESP2; fail fast when explicitly enabled with RESP3 (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3788\"\u003e#3788\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eDial TCP retry\u003c/strong\u003e: \u003ccode\u003eShouldRetry\u003c/code\u003e now treats \u003ccode\u003enet.OpError\u003c/code\u003e with \u003ccode\u003eOp == \u0026quot;dial\u0026quot;\u003c/code\u003e timeout errors as safe to retry since no command was sent (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3787\"\u003e#3787\u003c/a\u003e) by \u003ca href=\"https://github.com/vladisa88\"\u003e\u003ccode\u003e@​vladisa88\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ewrappedOnClose leak\u003c/strong\u003e: Fixed resource leak caused by repeatedly wrapping \u003ccode\u003ebaseClient\u003c/code\u003e close logic; replaced with a bounded, concurrency-safe named-hook registry (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3785\"\u003e#3785\u003c/a\u003e) by \u003ca href=\"https://github.com/ndyakov\"\u003e\u003ccode\u003e@​ndyakov\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ePool Close() on stale connections\u003c/strong\u003e: Suppress close errors (e.g., TLS \u003ccode\u003ecloseNotify\u003c/code\u003e timeouts) for connections already dropped by the server due to idle timeout (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3778\"\u003e#3778\u003c/a\u003e) by \u003ca href=\"https://github.com/ofekshenawa\"\u003e\u003ccode\u003e@​ofekshenawa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFIFO waiter ordering\u003c/strong\u003e: Fixed race in \u003ccode\u003eConnStateMachine.notifyWaiters\u003c/code\u003e that could wake multiple waiters under a single mutex hold and violate FIFO ordering (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3777\"\u003e#3777\u003c/a\u003e) by \u003ca href=\"https://github.com/0x48core\"\u003e\u003ccode\u003e@​0x48core\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eLua READONLY detection\u003c/strong\u003e: Detect \u003ccode\u003eREADONLY\u003c/code\u003e errors embedded in Lua script error messages on read-only replicas so commands are correctly retried (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3769\"\u003e#3769\u003c/a\u003e) by \u003ca href=\"https://github.com/zhengjilei\"\u003e\u003ccode\u003e@​zhengjilei\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eVectorScoreSliceCmd RESP2\u003c/strong\u003e: Fixed \u003ccode\u003eVSimWithScores\u003c/code\u003e, \u003ccode\u003eVSimWithArgsWithScores\u003c/code\u003e, and \u003ccode\u003eVLinksWithScores\u003c/code\u003e which were broken on RESP2 connections returning flat arrays instead of maps (\u003ca href=\"https://redirect.github.com/redis/go-redis/pull/3767\"\u003e#3767\u003c/a\u003e) by \u003ca href=\"https://github.com/apps/copilot-swe-agent\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/e7e9866e54f4423addca48ec804044cfca1b30d6\"\u003e\u003ccode\u003ee7e9866\u003c/code\u003e\u003c/a\u003e chore(release): v9.19.0 (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3796\"\u003e#3796\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/22b26f4b3ea5c2ab58605092e0937b78a8673267\"\u003e\u003ccode\u003e22b26f4\u003c/code\u003e\u003c/a\u003e feat(ft.aggregate): Add Steps for query building (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3782\"\u003e#3782\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/d9d769491154d4da6d683b73e9dfff5c878c1890\"\u003e\u003ccode\u003ed9d7694\u003c/code\u003e\u003c/a\u003e fix(pool): two fixes for closed connection handling (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3764\"\u003e#3764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/44e8b7309cf547f620b9849a5a4dd9013cc3660a\"\u003e\u003ccode\u003e44e8b73\u003c/code\u003e\u003c/a\u003e fix(sch): auto hostname type detection (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3789\"\u003e#3789\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/ad21622ce8dba26c4ac7dc0fbf74a0bd278d2c19\"\u003e\u003ccode\u003ead21622\u003c/code\u003e\u003c/a\u003e fix(hello): do not send maintnotifications handshake when hello fails (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3788\"\u003e#3788\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/1a7ac744c3f98b415852b4c9842b97991e3e4d91\"\u003e\u003ccode\u003e1a7ac74\u003c/code\u003e\u003c/a\u003e fix(pool): suppress pool Close() errors for stale connections (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3778\"\u003e#3778\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/903d6bd360af9ea53d4af4ca652d18b915398c7d\"\u003e\u003ccode\u003e903d6bd\u003c/code\u003e\u003c/a\u003e fix(retry): make dial tcp error redirectable (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3786\"\u003e#3786\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3787\"\u003e#3787\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/00a551b3b468687e5e06b295b419292786bcdc99\"\u003e\u003ccode\u003e00a551b\u003c/code\u003e\u003c/a\u003e fix(credentials): leak in wrappedOnClose (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3785\"\u003e#3785\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/b5a6f99b7a9d496bf2e3d68ad9c33e43c23c4df9\"\u003e\u003ccode\u003eb5a6f99\u003c/code\u003e\u003c/a\u003e refactor(pool): remove redundant Conn.closed atomic field (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3783\"\u003e#3783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/redis/go-redis/commit/928f27aef850b3508b590e41a050f27d29fb14a2\"\u003e\u003ccode\u003e928f27a\u003c/code\u003e\u003c/a\u003e feat(hscan): add support for encoding.BinaryUnmarshaler (\u003ca href=\"https://redirect.github.com/redis/go-redis/issues/3768\"\u003e#3768\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/redis/go-redis/compare/v9.18.0...v9.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cobra` from 1.10.0 to 1.10.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cobra/releases\"\u003egithub.com/spf13/cobra's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.2\u003c/h2\u003e\n\u003ch2\u003e🔧 Dependencies\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: Migrate from \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e to \u003ccode\u003ego.yaml.in/yaml/v3\u003c/code\u003e by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e - the \u003ccode\u003egopkg.in/yaml.v3\u003c/code\u003e package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of \u003ccode\u003espf13/cobra\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📈 CI/CD\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix linter and allow CI to pass by \u003ca href=\"https://github.com/marckhouzam\"\u003e\u003ccode\u003e@​marckhouzam\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2327\"\u003espf13/cobra#2327\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: actions/setup-go v6 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2337\"\u003espf13/cobra#2337\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔥✍🏼 Docs\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd documentation for repeated flags functionality by \u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🍂 Refactors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace several vars with consts by \u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: change minUsagePadding from var to const by \u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🤗 New Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rvergis\"\u003e\u003ccode\u003e@​rvergis\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2316\"\u003espf13/cobra#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/htoyoda18\"\u003e\u003ccode\u003e@​htoyoda18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2328\"\u003espf13/cobra#2328\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ssam18\"\u003e\u003ccode\u003e@​ssam18\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2325\"\u003espf13/cobra#2325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2336\"\u003espf13/cobra#2336\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\"\u003ehttps://github.com/spf13/cobra/compare/v1.10.1...v1.10.2\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eThank you to our amazing contributors!!!!! 🐍 🚀\u003c/p\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch3\u003e🐛 Fix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003echore: upgrade pflags v1.0.9 by \u003ca href=\"https://github.com/jpmcb\"\u003e\u003ccode\u003e@​jpmcb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cobra/pull/2305\"\u003espf13/cobra#2305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ev1.0.9 of pflags brought back \u003ccode\u003eParseErrorsWhitelist\u003c/code\u003e and marked it as deprecated\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.0...v1.10.1\"\u003ehttps://github.com/spf13/cobra/compare/v1.10.0...v1.10.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/88b30ab89da2d0d0abb153818746c5a2d30eccec\"\u003e\u003ccode\u003e88b30ab\u003c/code\u003e\u003c/a\u003e chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2336\"\u003e#2336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/346d408fe7d4be00ff9481ea4d43c4abb5e5f77d\"\u003e\u003ccode\u003e346d408\u003c/code\u003e\u003c/a\u003e fix: actions/setup-go v6 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2337\"\u003e#2337\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/fc81d2003469e2a5c440306d04a6d82a54065979\"\u003e\u003ccode\u003efc81d20\u003c/code\u003e\u003c/a\u003e refactor: change minUsagePadding from var to const (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2325\"\u003e#2325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/117698a604b65e80a1ad5b76df67b604bcd992e0\"\u003e\u003ccode\u003e117698a\u003c/code\u003e\u003c/a\u003e refactor: replace several vars with consts (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/e2dd29ddc39acacf3af13013b06e1fe58b5c3599\"\u003e\u003ccode\u003ee2dd29d\u003c/code\u003e\u003c/a\u003e Add documentation for repeated flags functionality (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2316\"\u003e#2316\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/062989255670f5e100abf70fa5e291a394915f89\"\u003e\u003ccode\u003e0629892\u003c/code\u003e\u003c/a\u003e Fix linter (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cobra/commit/7da941c3547e93b8c9f70bbd3befca79c6335388\"\u003e\u003ccode\u003e7da941c\u003c/code\u003e\u003c/a\u003e chore: Bump pflag to v1.0.9 (\u003ca href=\"https://redirect.github.com/spf13/cobra/issues/2305\"\u003e#2305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/spf13/cobra/compare/v1.10.0...v1.10.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc` from 0.60.0 to 0.68.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/releases\"\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.43.0/v2.5.0/v0.68.0/v0.37.0/v0.23.0/v0.18.0/v0.16.0/v0.15.0\u003c/h2\u003e\n\u003ch2\u003eAdded\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eResource\u003c/code\u003e method to \u003ccode\u003eSDK\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/v0.3.0\u003c/code\u003e to expose the resolved SDK resource from declarative configuration. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8660\"\u003e#8660\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support to set the configuration file via \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eservice\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8674\"\u003e#8674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in tracer provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8687\"\u003e#8687\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in logger provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8686\"\u003e#8686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eOTEL_SEMCONV_STABILITY_OPT_IN\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. Supported values are \u003ccode\u003erpc\u003c/code\u003e (default), \u003ccode\u003erpc/dup\u003c/code\u003e and \u003ccode\u003erpc/old\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8726\"\u003e#8726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003ehttp.route\u003c/code\u003e metric attribute to \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/net/http/otelhttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8632\"\u003e#8632\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChanged\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ePrepend \u003ccode\u003e_\u003c/code\u003e to the normalized environment variable name when the key starts with a digit in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, ensuring POSIX compliance. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8678\"\u003e#8678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove experimental types from \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/x\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8529\"\u003e#8529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNormalize cached environment variable names in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, aligning \u003ccode\u003eCarrier.Keys\u003c/code\u003e output with the carrier's normalized key format. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFixed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e Prometheus reader converting OTel dot-style label names (e.g. \u003ccode\u003eservice.name\u003c/code\u003e) to underscore-style (\u003ccode\u003eservice_name\u003c/code\u003e) in \u003ccode\u003etarget_info\u003c/code\u003e when both \u003ccode\u003ewithout_type_suffix\u003c/code\u003e and \u003ccode\u003ewithout_units\u003c/code\u003e are set. Use \u003ccode\u003eNoTranslation\u003c/code\u003e instead of \u003ccode\u003eUnderscoreEscapingWithoutSuffixes\u003c/code\u003e to preserve dot-style label names while still suppressing metric name suffixes. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8763\"\u003e#8763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit the request body size at 1MB in \u003ccode\u003ego.opentelemetry.io/contrib/zpages\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8656\"\u003e#8656\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix server spans using the client's address and port for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRemoved\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHost ID resource detector has been removed when configuring the \u003ccode\u003ehost\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecated\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eOTEL_EXPERIMENTAL_CONFIG_FILE\u003c/code\u003e in favour of \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): update module github.com/jgautheron/goconst to v1.9.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8651\"\u003eopen-telemetry/opentelemetry-go-contrib#8651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module go.yaml.in/yaml/v2 to v2.4.4 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8652\"\u003eopen-telemetry/opentelemetry-go-contrib#8652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update golang.org/x/telemetry digest to e526e8a by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8647\"\u003eopen-telemetry/opentelemetry-go-contrib#8647\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module k8s.io/klog/v2 to v2.140.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8650\"\u003eopen-telemetry/opentelemetry-go-contrib#8650\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/mgechev/revive to v1.14.0 by \u003ca href=\"https://github.com/mmorel-35\"\u003e\u003ccode\u003e@​mmorel-35\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8646\"\u003eopen-telemetry/opentelemetry-go-contrib#8646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/mgechev/revive to v1.15.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8539\"\u003eopen-telemetry/opentelemetry-go-contrib#8539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix noctx issues by \u003ca href=\"https://github.com/mmorel-35\"\u003e\u003ccode\u003e@​mmorel-35\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8645\"\u003eopen-telemetry/opentelemetry-go-contrib#8645\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update golang.org/x by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8655\"\u003eopen-telemetry/opentelemetry-go-contrib#8655\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module codeberg.org/chavacava/garif to v0.2.1 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8654\"\u003eopen-telemetry/opentelemetry-go-contrib#8654\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/mattn/go-runewidth to v0.0.21 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8653\"\u003eopen-telemetry/opentelemetry-go-contrib#8653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): update module go.opentelemetry.io/proto/otlp to v1.10.0 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8657\"\u003eopen-telemetry/opentelemetry-go-contrib#8657\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLimit the number of bytes read from the zpages body by \u003ca href=\"https://github.com/dmathieu\"\u003e\u003ccode\u003e@​dmathieu\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8656\"\u003eopen-telemetry/opentelemetry-go-contrib#8656\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): update module github.com/golangci/golangci-lint/v2 to v2.11.2 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8648\"\u003eopen-telemetry/opentelemetry-go-contrib#8648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): update module github.com/golangci/golangci-lint/v2 to v2.11.3 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8661\"\u003eopen-telemetry/opentelemetry-go-contrib#8661\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update github.com/securego/gosec/v2 digest to 8895462 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8663\"\u003eopen-telemetry/opentelemetry-go-contrib#8663\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eotelconf: support OTEL_CONFIG_FILE as it is no longer experimental by \u003ca href=\"https://github.com/codeboten\"\u003e\u003ccode\u003e@​codeboten\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8639\"\u003eopen-telemetry/opentelemetry-go-contrib#8639\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): update module github.com/sonatard/noctx to v0.5.1 by \u003ca href=\"https://github.com/renovate\"\u003e\u003ccode\u003e@​renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/pull/8664\"\u003eopen-telemetry/opentelemetry-go-contrib#8664\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/2.5.0/0.68.0/0.37.0/0.23.0/0.18.0/0.16.0/0.15.0] - 2026-04-03\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eResource\u003c/code\u003e method to \u003ccode\u003eSDK\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/v0.3.0\u003c/code\u003e to expose the resolved SDK resource from declarative configuration. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8660\"\u003e#8660\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support to set the configuration file via \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eservice\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8674\"\u003e#8674\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in tracer provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8687\"\u003e#8687\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eattribute_count_limit\u003c/code\u003e and \u003ccode\u003eattribute_value_length_limit\u003c/code\u003e in logger provider configuration in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8686\"\u003e#8686\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for \u003ccode\u003eOTEL_SEMCONV_STABILITY_OPT_IN\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. Supported values are \u003ccode\u003erpc\u003c/code\u003e (default), \u003ccode\u003erpc/dup\u003c/code\u003e and \u003ccode\u003erpc/old\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8726\"\u003e#8726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd the \u003ccode\u003ehttp.route\u003c/code\u003e metric attribute to \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/net/http/otelhttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8632\"\u003e#8632\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ePrepend \u003ccode\u003e_\u003c/code\u003e to the normalized environment variable name when the key starts with a digit in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, ensuring POSIX compliance. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8678\"\u003e#8678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eMove experimental types from \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/contrib/otelconf/x\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8529\"\u003e#8529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eNormalize cached environment variable names in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e, aligning \u003ccode\u003eCarrier.Keys\u003c/code\u003e output with the carrier's normalized key format. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e Prometheus reader converting OTel dot-style label names (e.g. \u003ccode\u003eservice.name\u003c/code\u003e) to underscore-style (\u003ccode\u003eservice_name\u003c/code\u003e) in \u003ccode\u003etarget_info\u003c/code\u003e when both \u003ccode\u003ewithout_type_suffix\u003c/code\u003e and \u003ccode\u003ewithout_units\u003c/code\u003e are set. Use \u003ccode\u003eNoTranslation\u003c/code\u003e instead of \u003ccode\u003eUnderscoreEscapingWithoutSuffixes\u003c/code\u003e to preserve dot-style label names while still suppressing metric name suffixes. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8763\"\u003e#8763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit the request body size at 1MB in \u003ccode\u003ego.opentelemetry.io/contrib/zpages\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8656\"\u003e#8656\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix server spans using the client's address and port for \u003ccode\u003eserver.address\u003c/code\u003e and \u003ccode\u003eserver.port\u003c/code\u003e attributes in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eHost ID resource detector has been removed when configuring the \u003ccode\u003ehost\u003c/code\u003e resource detector in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8581\"\u003e#8581\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eOTEL_EXPERIMENTAL_CONFIG_FILE\u003c/code\u003e in favour of \u003ccode\u003eOTEL_CONFIG_FILE\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/contrib/otelconf\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8639\"\u003e#8639\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/2.4.0/0.67.0/0.36.0/0.22.0/0.17.0/0.15.0/0.14.0] - 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd environment variables propagation carrier in \u003ccode\u003ego.opentelemetry.io/contrib/propagators/envcar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8442\"\u003e#8442\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eUpgrade \u003ccode\u003ego.opentelemetry.io/otel/semconv\u003c/code\u003e to \u003ccode\u003ev1.40.0\u003c/code\u003e, including updates across instrumentation and detector modules. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8631\"\u003e#8631\u003c/a\u003e)\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eThe semantic conventions v1.40.0 release introduces RPC breaking changes applied in this repository:\n\u003cul\u003e\n\u003cli\u003eRPC spans and metrics no longer include \u003ccode\u003enetwork.protocol.name\u003c/code\u003e, \u003ccode\u003enetwork.protocol.version\u003c/code\u003e, or \u003ccode\u003enetwork.transport\u003c/code\u003e attributes.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003erpc.client.request.size\u003c/code\u003e, \u003ccode\u003erpc.client.response.size\u003c/code\u003e, \u003ccode\u003erpc.server.request.size\u003c/code\u003e, and \u003ccode\u003erpc.server.response.size\u003c/code\u003e are no longer emitted in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003erpc.message\u003c/code\u003e span events and their message attributes are no longer emitted in \u003ccode\u003ego.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc\u003c/code\u003e (including when \u003ccode\u003eWithMessageEvents\u003c/code\u003e is configured).\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/open-telemetry/semantic-conventions/releases/tag/v1.40.0\"\u003esemantic-conventions v1.40.0 release\u003c/a\u003e for complete details.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/45977a4b9cf4a60effd1ee07367043f7e9bcae66\"\u003e\u003ccode\u003e45977a4\u003c/code\u003e\u003c/a\u003e Release v1.43.0/v2.5.0/v0.68.0/v0.37.0/v0.23.0/v0.18.0/v0.16.0/v0.15.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8769\"\u003e#8769\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/0fcc1524d1a740b3632db418f73236d29536f119\"\u003e\u003ccode\u003e0fcc152\u003c/code\u003e\u003c/a\u003e fix(deps): update module github.com/googlecloudplatform/opentelemetry-operati...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/eaba3cdaa1559cc7425644e21a389f227e30dc86\"\u003e\u003ccode\u003eeaba3cd\u003c/code\u003e\u003c/a\u003e chore(deps): update googleapis to 6f92a3b (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8776\"\u003e#8776\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/6df430c48045ad1221f203c01f6656367dd46fd1\"\u003e\u003ccode\u003e6df430c\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/jgautheron/goconst to v1.10.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8771\"\u003e#8771\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/ae90e3237e8d8f14bc3f181e1f82feb1686604f0\"\u003e\u003ccode\u003eae90e32\u003c/code\u003e\u003c/a\u003e Fix otelconf prometheus label escaping (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8763\"\u003e#8763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/f202c3f8000fe3e681621808b5e316fe4749850a\"\u003e\u003ccode\u003ef202c3f\u003c/code\u003e\u003c/a\u003e otelconf: move experimental types to otelconf/x (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8529\"\u003e#8529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/8ddaecee1cc531ae753d4812842745bdfb805208\"\u003e\u003ccode\u003e8ddaece\u003c/code\u003e\u003c/a\u003e fix(deps): update aws-sdk-go-v2 monorepo (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8764\"\u003e#8764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/c7c03a47d4cf7252728b11efd78e2159b437dbd2\"\u003e\u003ccode\u003ec7c03a4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8766\"\u003e#8766\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/717a85a20313ac21712dd055ba2ede71205889e8\"\u003e\u003ccode\u003e717a85a\u003c/code\u003e\u003c/a\u003e envcar: normalize cached environment variable names (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go-contrib/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go-contrib/commit/ad990b6d55811953d06ec88720fa373931fa1a27\"\u003e\u003ccode\u003ead990b6\u003c/code\u003e\u003c/a\u003e fix(deps): update module github.com/aws/smithy-go to v1.24.3 (\u003c...\n\n_Description has been truncated_","html_url":"https://github.com/smittysmee/kybernos/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/smittysmee%2Fkybernos/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"}},{"old_version":"5.5.5","new_version":"5.9.2","update_type":"minor","path":"/services/fleet","pr_created_at":"2026-05-15T02:29:43.000Z","version_change":"5.5.5 → 5.9.2","issue":{"uuid":"4450749074","node_id":"PR_kwDOSd8Bi87bwWxV","number":15,"state":"open","title":"chore(deps): bump github.com/jackc/pgx/v5 from 5.5.5 to 5.9.2 in /services/fleet","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-15T02:29:43.000Z","updated_at":"2026-05-15T02:29:43.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.5.5","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"/services/fleet","ecosystem":"go"},"body":"Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.5.5 to 5.9.2.\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.5...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.5.5\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/sophie-nguyenthuthuy/fdi-iiot-gateway/pull/15","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/sophie-nguyenthuthuy%2Ffdi-iiot-gateway/issues/15","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/15/packages"}},{"old_version":"5.7.4","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-14T07:47:22.000Z","version_change":"5.7.4 → 5.9.2","issue":{"uuid":"4444177689","node_id":"PR_kwDOPfH5sc7bbZxs","number":4,"state":"open","title":"Bump the go_modules group across 6 directories with 7 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T07:47:22.000Z","updated_at":"2026-05-15T00:54:17.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":7,"packages":[{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.39.0","new_version":"1.43.0"},{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.7.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/ydb-platform/ydb-go-sdk/v3","old_version":"3.104.7","new_version":"3.134.2","repository_url":"https://github.com/ydb-platform/ydb-go-sdk"},{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel","old_version":"1.39.0","new_version":"1.41.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the /packages/clickhouse directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 3 updates in the /packages/db directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go), [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) and [github.com/ydb-platform/ydb-go-sdk/v3](https://github.com/ydb-platform/ydb-go-sdk).\nBumps the go_modules group with 1 update in the /packages/docker-reverse-proxy directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 1 update in the /packages/orchestrator directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 3 updates in the /packages/shared directory: [github.com/grafana/loki](https://github.com/grafana/loki), [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) and [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go).\nBumps the go_modules group with 1 update in the /tests/integration directory: [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go).\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4575a9774dd9415ffc858dd34955493b0031065a\"\u003e\u003ccode\u003e4575a97\u003c/code\u003e\u003c/a\u003e Release 1.41.0/0.63.0/0.17.0/0.0.15 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7977\"\u003e#7977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/66fc10d9dff9653c65bcca111b965137d06f09aa\"\u003e\u003ccode\u003e66fc10d\u003c/code\u003e\u003c/a\u003e fix: add error handling for insecure HTTP endpoints with TLS client configura...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/76e6eec88f186f06a0708b5620324d2b002d9a97\"\u003e\u003ccode\u003e76e6eec\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.5 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7980\"\u003e#7980\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0d50f9008c8c93fe49a7caa45c88c30370479d27\"\u003e\u003ccode\u003e0d50f90\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Generate semconv/v1.40.0\u0026quot; (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7978\"\u003e#7978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c38a4a57c320b6098ca5c92f0a85201034780b1f\"\u003e\u003ccode\u003ec38a4a5\u003c/code\u003e\u003c/a\u003e Generate semconv/v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7929\"\u003e#7929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0f1a22484ec52d6beb1efdb0fa1b63a31e7405af\"\u003e\u003ccode\u003e0f1a224\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7899\"\u003e#7899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c79ebf43eb1cff6dd76a33bb1549f2c082dab604\"\u003e\u003ccode\u003ec79ebf4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/daixiang0/gci to v0.14.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7973\"\u003e#7973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/f75815746541d0d4ac84e1c5955bdcd1a2df2d7d\"\u003e\u003ccode\u003ef758157\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/sonatard/noctx to v0.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7968\"\u003e#7968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/92a11645724515630187def073ae39f1b6cb3c69\"\u003e\u003ccode\u003e92a1164\u003c/code\u003e\u003c/a\u003e fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3cd7c27e840ea3114115459db2e299a27fffaff8\"\u003e\u003ccode\u003e3cd7c27\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7969\"\u003e#7969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.39.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4575a9774dd9415ffc858dd34955493b0031065a\"\u003e\u003ccode\u003e4575a97\u003c/code\u003e\u003c/a\u003e Release 1.41.0/0.63.0/0.17.0/0.0.15 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7977\"\u003e#7977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/66fc10d9dff9653c65bcca111b965137d06f09aa\"\u003e\u003ccode\u003e66fc10d\u003c/code\u003e\u003c/a\u003e fix: add error handling for insecure HTTP endpoints with TLS client configura...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/76e6eec88f186f06a0708b5620324d2b002d9a97\"\u003e\u003ccode\u003e76e6eec\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.5 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7980\"\u003e#7980\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0d50f9008c8c93fe49a7caa45c88c30370479d27\"\u003e\u003ccode\u003e0d50f90\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Generate semconv/v1.40.0\u0026quot; (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7978\"\u003e#7978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c38a4a57c320b6098ca5c92f0a85201034780b1f\"\u003e\u003ccode\u003ec38a4a5\u003c/code\u003e\u003c/a\u003e Generate semconv/v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7929\"\u003e#7929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0f1a22484ec52d6beb1efdb0fa1b63a31e7405af\"\u003e\u003ccode\u003e0f1a224\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7899\"\u003e#7899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c79ebf43eb1cff6dd76a33bb1549f2c082dab604\"\u003e\u003ccode\u003ec79ebf4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/daixiang0/gci to v0.14.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7973\"\u003e#7973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/f75815746541d0d4ac84e1c5955bdcd1a2df2d7d\"\u003e\u003ccode\u003ef758157\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/sonatard/noctx to v0.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7968\"\u003e#7968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/92a11645724515630187def073ae39f1b6cb3c69\"\u003e\u003ccode\u003e92a1164\u003c/code\u003e\u003c/a\u003e fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3cd7c27e840ea3114115459db2e299a27fffaff8\"\u003e\u003ccode\u003e3cd7c27\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7969\"\u003e#7969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ydb-platform/ydb-go-sdk/v3` from 3.104.7 to 3.134.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/releases\"\u003egithub.com/ydb-platform/ydb-go-sdk/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.134.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003etable.Session.Execute\u003c/code\u003e ignoring \u003ccode\u003eoptions.WithCommit()\u003c/code\u003e so transactions were not committed when the option was passed\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.134.1...v3.134.2\"\u003ev3.134.1...v3.134.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.134.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged multi-partition topic writer (\u003ccode\u003etopicoptions.WithWriteToManyPartitions\u003c/code\u003e) so \u003ccode\u003eWrite\u003c/code\u003e and \u003ccode\u003eFlush\u003c/code\u003e block until internal initialization completes, consistent with single-partition writers\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.134.0...v3.134.1\"\u003ev3.134.0...v3.134.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.134.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esugar.RemoveRecursive()\u003c/code\u003e for directories containing external data sources or external tables\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etable.DescribeExternalDataSource()\u003c/code\u003e and \u003ccode\u003etable.DescribeExternalTable()\u003c/code\u003e methods for describing external data sources and external tables\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.133.1...v3.134.0\"\u003ev3.133.1...v3.134.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.133.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eTopicListener.ReadSessionID()\u003c/code\u003e getter\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.133.0...v3.133.1\"\u003ev3.133.0...v3.133.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.133.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithIssuesHandler\u003c/code\u003e context option for surfacing YDB \u003ccode\u003eQueryService\u003c/code\u003e issues to \u003ccode\u003edatabase/sql\u003c/code\u003e callers\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.132.0...v3.133.0\"\u003ev3.132.0...v3.133.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.132.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003etopic.Client.CommitOffset()\u003c/code\u003e method for committing a consumer offset without an active read session\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etopicreader.Reader.ReadSessionID()\u003c/code\u003e method for obtaining the current read session identifier\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.131.0...v3.132.0\"\u003ev3.131.0...v3.132.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.131.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithStatsModeBasic\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeFull\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeProfile\u003c/code\u003e context options for collecting query statistics via \u003ccode\u003edatabase/sql\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.130.0...v3.131.0\"\u003ev3.130.0...v3.131.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.130.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged default for \u003ccode\u003edatabase/sql\u003c/code\u003e driver from \u003ccode\u003eTABLE\u003c/code\u003e service to \u003ccode\u003eQUERY\u003c/code\u003e service\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003e__ydb_partition_key\u003c/code\u003e metadata key to messages for topic writer to store the key used to choose the partition\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.129.0...v3.130.0\"\u003ev3.129.0...v3.130.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.129.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig.WithBuildInfo\u003c/code\u003e option to append child frameworks to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header for all API requests\u003c/li\u003e\n\u003cli\u003eAutomatically added (if used) \u003ccode\u003edatabase/sql\u003c/code\u003e framework to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.128.4...v3.129.0\"\u003ev3.128.4...v3.129.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.128.4\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/blob/master/CHANGELOG.md\"\u003egithub.com/ydb-platform/ydb-go-sdk/v3's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.134.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003etable.Session.Execute\u003c/code\u003e ignoring \u003ccode\u003eoptions.WithCommit()\u003c/code\u003e so transactions were not committed when the option was passed\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.134.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged multi-partition topic writer (\u003ccode\u003etopicoptions.WithWriteToManyPartitions\u003c/code\u003e) so \u003ccode\u003eWrite\u003c/code\u003e and \u003ccode\u003eFlush\u003c/code\u003e block until internal initialization completes, consistent with single-partition writers\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.134.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003esugar.RemoveRecursive()\u003c/code\u003e for directories containing external data sources or external tables\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etable.DescribeExternalDataSource()\u003c/code\u003e and \u003ccode\u003etable.DescribeExternalTable()\u003c/code\u003e methods for describing external data sources and external tables\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.133.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eTopicListener.ReadSessionID()\u003c/code\u003e getter\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.133.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithIssuesHandler\u003c/code\u003e context option for surfacing YDB \u003ccode\u003eQueryService\u003c/code\u003e issues to \u003ccode\u003edatabase/sql\u003c/code\u003e callers\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.132.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003etopic.Client.CommitOffset()\u003c/code\u003e method for committing a consumer offset without an active read session\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003etopicreader.Reader.ReadSessionID()\u003c/code\u003e method for obtaining the current read session identifier\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.131.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003eydb.WithStatsModeBasic\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeFull\u003c/code\u003e, \u003ccode\u003eydb.WithStatsModeProfile\u003c/code\u003e context options for collecting query statistics via \u003ccode\u003edatabase/sql\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.130.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eChanged default for \u003ccode\u003edatabase/sql\u003c/code\u003e driver from \u003ccode\u003eTABLE\u003c/code\u003e service to \u003ccode\u003eQUERY\u003c/code\u003e service\u003c/li\u003e\n\u003cli\u003eAdded \u003ccode\u003e__ydb_partition_key\u003c/code\u003e metadata key to messages for topic writer to store the key used to choose the partition\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.129.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdded \u003ccode\u003econfig.WithBuildInfo\u003c/code\u003e option to append child frameworks to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header for all API requests\u003c/li\u003e\n\u003cli\u003eAutomatically added (if used) \u003ccode\u003edatabase/sql\u003c/code\u003e framework to \u003ccode\u003ex-ydb-sdk-build-info\u003c/code\u003e header\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.4\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed panic when topic writer is closed unexpectedly\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.3\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed panic and \u003ccode\u003eunsupported type\u003c/code\u003e error when passing a nil pointer to a \u003ccode\u003ejson.Marshaler\u003c/code\u003e-implementing type as a \u003ccode\u003edatabase/sql\u003c/code\u003e query parameter (\u003ccode\u003etoType\u003c/code\u003e now handles \u003ccode\u003ejson.Marshaler\u003c/code\u003e and returns \u003ccode\u003etypes.JSON\u003c/code\u003e, matching the existing \u003ccode\u003etoValue\u003c/code\u003e behaviour)\u003c/li\u003e\n\u003cli\u003eSupported pool of decoders, which implement ResettableReader interface\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDowngraded direct dependency \u003ccode\u003egoogle.golang.org/grpc\u003c/code\u003e to v1.78.0\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ccode\u003ego_query_mode\u003c/code\u003e / \u003ccode\u003equery_mode\u003c/code\u003e DSN parameters for table-backed modes (\u003ccode\u003edata\u003c/code\u003e, \u003ccode\u003escan\u003c/code\u003e, \u003ccode\u003escheme\u003c/code\u003e, \u003ccode\u003escripting\u003c/code\u003e) to select the TABLE processor so the default query mode applies\u003c/li\u003e\n\u003cli\u003eFixed a bug where the topic writer was not able to resend messages when the partition was split\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev3.128.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew options for topicwriter:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eWithProducerIDPrefix\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithPartitioningKeyHasher\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithPartitionChooserStrategy\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/6f1e6e33415ae1eb510998c3822cb729e66edf60\"\u003e\u003ccode\u003e6f1e6e3\u003c/code\u003e\u003c/a\u003e Release v3.134.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/25dcff4c41153f1f9413512ba12999b40bf7154d\"\u003e\u003ccode\u003e25dcff4\u003c/code\u003e\u003c/a\u003e Fix table.Session.Execute ignoring options.WithCommit() (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2091\"\u003e#2091\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/66fc52ecf59f2468d428a9e5005d9fb926dad043\"\u003e\u003ccode\u003e66fc52e\u003c/code\u003e\u003c/a\u003e Release v3.134.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/042c9243cd61cecd8a53b092c1da0983bd7ec9e3\"\u003e\u003ccode\u003e042c924\u003c/code\u003e\u003c/a\u003e LOGBROKER-10368 Add wait init to multiwriter (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2088\"\u003e#2088\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/c1ddb52f3fc7808eb95614dcaf8a460b5d0e8ec1\"\u003e\u003ccode\u003ec1ddb52\u003c/code\u003e\u003c/a\u003e Remove unused code in database/sql connector (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2085\"\u003e#2085\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/d9d2943eb28cde8ac0e038045870bf08e2c20de8\"\u003e\u003ccode\u003ed9d2943\u003c/code\u003e\u003c/a\u003e LOGBROKER-10206 Add tests (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2075\"\u003e#2075\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/f3aeeb14d9aa27769be738a396b89407368e4256\"\u003e\u003ccode\u003ef3aeeb1\u003c/code\u003e\u003c/a\u003e Modernize Go codebase: adopt modern idioms and upgrade CI tooling (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2082\"\u003e#2082\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/f2452c1545d78452231445f03264e89c18e9ea9f\"\u003e\u003ccode\u003ef2452c1\u003c/code\u003e\u003c/a\u003e Release v3.134.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/de3907a808e40ccdf1c94e50d28e11c45da6e94b\"\u003e\u003ccode\u003ede3907a\u003c/code\u003e\u003c/a\u003e Describe external data source / external table (\u003ca href=\"https://redirect.github.com/ydb-platform/ydb-go-sdk/issues/2079\"\u003e#2079\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/commit/589dacfe18eee68b6ca650b48d6e84d7460f9d49\"\u003e\u003ccode\u003e589dacf\u003c/code\u003e\u003c/a\u003e Release v3.133.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ydb-platform/ydb-go-sdk/compare/v3.104.7...v3.134.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4575a9774dd9415ffc858dd34955493b0031065a\"\u003e\u003ccode\u003e4575a97\u003c/code\u003e\u003c/a\u003e Release 1.41.0/0.63.0/0.17.0/0.0.15 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7977\"\u003e#7977\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/66fc10d9dff9653c65bcca111b965137d06f09aa\"\u003e\u003ccode\u003e66fc10d\u003c/code\u003e\u003c/a\u003e fix: add error handling for insecure HTTP endpoints with TLS client configura...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/76e6eec88f186f06a0708b5620324d2b002d9a97\"\u003e\u003ccode\u003e76e6eec\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.5 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7980\"\u003e#7980\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0d50f9008c8c93fe49a7caa45c88c30370479d27\"\u003e\u003ccode\u003e0d50f90\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;Generate semconv/v1.40.0\u0026quot; (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7978\"\u003e#7978\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c38a4a57c320b6098ca5c92f0a85201034780b1f\"\u003e\u003ccode\u003ec38a4a5\u003c/code\u003e\u003c/a\u003e Generate semconv/v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7929\"\u003e#7929\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0f1a22484ec52d6beb1efdb0fa1b63a31e7405af\"\u003e\u003ccode\u003e0f1a224\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.23.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7899\"\u003e#7899\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c79ebf43eb1cff6dd76a33bb1549f2c082dab604\"\u003e\u003ccode\u003ec79ebf4\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/daixiang0/gci to v0.14.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7973\"\u003e#7973\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/f75815746541d0d4ac84e1c5955bdcd1a2df2d7d\"\u003e\u003ccode\u003ef758157\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/sonatard/noctx to v0.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7968\"\u003e#7968\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/92a11645724515630187def073ae39f1b6cb3c69\"\u003e\u003ccode\u003e92a1164\u003c/code\u003e\u003c/a\u003e fix(deps): update github.com/opentracing-contrib/go-grpc/test digest to d566b...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3cd7c27e840ea3114115459db2e299a27fffaff8\"\u003e\u003ccode\u003e3cd7c27\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/protonmail/go-crypto to v1.4.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7969\"\u003e#7969\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.39.0...v1.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel` from 1.39.0 to 1.41.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n...\n\n_Description has been truncated_\n\n---\n\n📦 This PR updates Go module dependencies across 6 directories, bumping 7 different packages including OpenTelemetry libraries, PostgreSQL driver, and other core dependencies to their latest versions. The update also upgrades the Go version requirement from 1.24.3 to 1.25.0 across all modules.\n\n\u003cdetails\u003e\n\u003csummary\u003e🔍 \u003cstrong\u003eDetailed Analysis\u003c/strong\u003e\u003c/summary\u003e\n\n### Key Changes\n- **Go Version Upgrade**: Updated from Go 1.24.3 to 1.25.0 across all 6 directories (clickhouse, db, docker-reverse-proxy, orchestrator, shared, tests/integration)\n- **OpenTelemetry Updates**: Major version bump from 1.39.0 to 1.43.0 for core OpenTelemetry packages including otel, otel/sdk, otel/metric, and otel/trace\n- **Database Dependencies**: Updated PostgreSQL driver (pgx/v5) from 5.7.4 to 5.9.2 and YDB SDK from 3.104.7 to 3.134.2\n- **Supporting Libraries**: Updated various Google Cloud, gRPC, protobuf, and other infrastructure dependencies to latest versions\n\n### Technical Implementation\n```mermaid\nflowchart TD\n    A[Dependabot Scan] --\u003e B[Identify Outdated Dependencies]\n    B --\u003e C[Generate Updates for 6 Directories]\n    C --\u003e D[Update go.mod Files]\n    C --\u003e E[Update go.sum Files]\n    D --\u003e F[Bump Go Version to 1.25.0]\n    D --\u003e G[Update OpenTelemetry 1.39.0 → 1.43.0]\n    D --\u003e H[Update PostgreSQL pgx/v5 5.7.4 → 5.9.2]\n    D --\u003e I[Update YDB SDK 3.104.7 → 3.134.2]\n    F --\u003e J[Maintain Compatibility]\n    G --\u003e J\n    H --\u003e J\n    I --\u003e J\n```\n\n### Impact\n- **Security Improvements**: Updates include security fixes, particularly in pgx/v5 which addresses SQL injection vulnerabilities (GHSA-j88v-2chj-qfwx)\n- **Performance Enhancements**: OpenTelemetry 1.43.0 includes significant performance improvements for concurrent operations and reduced memory usage\n- **Feature Additions**: New capabilities like W3C Trace Context Level 2 support, improved error handling, and enhanced observability features\n- **Maintenance Benefits**: Keeps the codebase current with latest stable releases, ensuring continued support and bug fixes\n\n\u003c/details\u003e\n\n_Created with [Palmier](https://www.palmier.io)_","html_url":"https://github.com/GlacierEQ/infra/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GlacierEQ%2Finfra/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"5.9.1","new_version":"5.9.2","update_type":"patch","path":null,"pr_created_at":"2026-05-14T04:07:25.000Z","version_change":"5.9.1 → 5.9.2","issue":{"uuid":"4443072892","node_id":"PR_kwDORmVBy87bX8J1","number":11,"state":"open","title":"chore(deps)(deps): Bump the go-minor-and-patch group with 19 updates","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-14T04:07:25.000Z","updated_at":"2026-05-14T04:07:26.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps): Bump","group_name":"go-minor-and-patch","update_count":19,"packages":[{"name":"github.com/aws/aws-sdk-go-v2","old_version":"1.41.6","new_version":"1.41.7","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/config","old_version":"1.32.16","new_version":"1.32.17","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/credentials","old_version":"1.19.15","new_version":"1.19.16","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/aws/aws-sdk-go-v2/service/s3","old_version":"1.100.0","new_version":"1.101.0","repository_url":"https://github.com/aws/aws-sdk-go-v2"},{"name":"github.com/blevesearch/bleve/v2","old_version":"2.5.7","new_version":"2.6.0","repository_url":"https://github.com/blevesearch/bleve"},{"name":"github.com/blevesearch/bleve_index_api","old_version":"1.2.11","new_version":"1.3.11","repository_url":"https://github.com/blevesearch/bleve_index_api"},{"name":"github.com/go-git/go-git/v5","old_version":"5.18.0","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/google/cel-go","old_version":"0.28.0","new_version":"0.28.1","repository_url":"https://github.com/google/cel-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.9.1","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/nats-io/nats.go","old_version":"1.49.0","new_version":"1.52.0","repository_url":"https://github.com/nats-io/nats.go"},{"name":"github.com/pquerna/otp","old_version":"1.4.0","new_version":"1.5.0","repository_url":"https://github.com/pquerna/otp"},{"name":"github.com/segmentio/kafka-go","old_version":"0.4.49","new_version":"0.4.51","repository_url":"https://github.com/segmentio/kafka-go"},{"name":"github.com/testcontainers/testcontainers-go","old_version":"0.41.0","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"github.com/testcontainers/testcontainers-go/modules/postgres","old_version":"0.41.0","new_version":"0.42.0","repository_url":"https://github.com/testcontainers/testcontainers-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc","old_version":"1.41.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp","old_version":"1.41.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"golang.org/x/crypto","old_version":"0.48.0","new_version":"0.50.0","repository_url":"https://github.com/golang/crypto"},{"name":"golang.org/x/term","old_version":"0.40.0","new_version":"0.42.0","repository_url":"https://github.com/golang/term"},{"name":"golang.org/x/time","old_version":"0.12.0","new_version":"0.15.0","repository_url":"https://github.com/golang/time"}],"path":null,"ecosystem":"go"},"body":"Bumps the go-minor-and-patch group with 19 updates:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/aws/aws-sdk-go-v2](https://github.com/aws/aws-sdk-go-v2) | `1.41.6` | `1.41.7` |\n| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.32.16` | `1.32.17` |\n| [github.com/aws/aws-sdk-go-v2/credentials](https://github.com/aws/aws-sdk-go-v2) | `1.19.15` | `1.19.16` |\n| [github.com/aws/aws-sdk-go-v2/service/s3](https://github.com/aws/aws-sdk-go-v2) | `1.100.0` | `1.101.0` |\n| [github.com/blevesearch/bleve/v2](https://github.com/blevesearch/bleve) | `2.5.7` | `2.6.0` |\n| [github.com/blevesearch/bleve_index_api](https://github.com/blevesearch/bleve_index_api) | `1.2.11` | `1.3.11` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.18.0` | `5.19.0` |\n| [github.com/google/cel-go](https://github.com/google/cel-go) | `0.28.0` | `0.28.1` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.9.1` | `5.9.2` |\n| [github.com/nats-io/nats.go](https://github.com/nats-io/nats.go) | `1.49.0` | `1.52.0` |\n| [github.com/pquerna/otp](https://github.com/pquerna/otp) | `1.4.0` | `1.5.0` |\n| [github.com/segmentio/kafka-go](https://github.com/segmentio/kafka-go) | `0.4.49` | `0.4.51` |\n| [github.com/testcontainers/testcontainers-go](https://github.com/testcontainers/testcontainers-go) | `0.41.0` | `0.42.0` |\n| [github.com/testcontainers/testcontainers-go/modules/postgres](https://github.com/testcontainers/testcontainers-go) | `0.41.0` | `0.42.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.41.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) | `1.41.0` | `1.43.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.48.0` | `0.50.0` |\n| [golang.org/x/term](https://github.com/golang/term) | `0.40.0` | `0.42.0` |\n| [golang.org/x/time](https://github.com/golang/time) | `0.12.0` | `0.15.0` |\n\nUpdates `github.com/aws/aws-sdk-go-v2` from 1.41.6 to 1.41.7\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2223642aeafb3b46ae924667ee47d31a1cf5a9d5\"\u003e\u003ccode\u003e2223642\u003c/code\u003e\u003c/a\u003e Release 2026-04-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/04c7e460121eafa42577be08289bd0da0de091b2\"\u003e\u003ccode\u003e04c7e46\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5f5692571a7afce76e1573da3fbf2180a2c297cc\"\u003e\u003ccode\u003e5f56925\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aac6d2b8fefd47203d3b4bd5f229ca275272ec62\"\u003e\u003ccode\u003eaac6d2b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdaead7d2074e479fc56da77491fe65737413664\"\u003e\u003ccode\u003ebdaead7\u003c/code\u003e\u003c/a\u003e upgrade to smithy-go v1.25.1 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3399\"\u003e#3399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/008e12cf64f41c37faeb705f6ce4b77471756f9f\"\u003e\u003ccode\u003e008e12c\u003c/code\u003e\u003c/a\u003e Release 2026-04-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ef109d91f0b772aaebc472633edf13ec0fd907ce\"\u003e\u003ccode\u003eef109d9\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6411e6379e509956413b866481ee2362a7cdfc68\"\u003e\u003ccode\u003e6411e63\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e5bf970956db306bf7b5b1bdd8ca71e8cca766b5\"\u003e\u003ccode\u003ee5bf970\u003c/code\u003e\u003c/a\u003e Release 2026-04-24\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdbb88c9400c80ed2487f7b498a54c6206b5c62a\"\u003e\u003ccode\u003ebdbb88c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/v1.41.6...v1.41.7\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/config` from 1.32.16 to 1.32.17\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2223642aeafb3b46ae924667ee47d31a1cf5a9d5\"\u003e\u003ccode\u003e2223642\u003c/code\u003e\u003c/a\u003e Release 2026-04-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/04c7e460121eafa42577be08289bd0da0de091b2\"\u003e\u003ccode\u003e04c7e46\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5f5692571a7afce76e1573da3fbf2180a2c297cc\"\u003e\u003ccode\u003e5f56925\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aac6d2b8fefd47203d3b4bd5f229ca275272ec62\"\u003e\u003ccode\u003eaac6d2b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdaead7d2074e479fc56da77491fe65737413664\"\u003e\u003ccode\u003ebdaead7\u003c/code\u003e\u003c/a\u003e upgrade to smithy-go v1.25.1 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3399\"\u003e#3399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/008e12cf64f41c37faeb705f6ce4b77471756f9f\"\u003e\u003ccode\u003e008e12c\u003c/code\u003e\u003c/a\u003e Release 2026-04-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ef109d91f0b772aaebc472633edf13ec0fd907ce\"\u003e\u003ccode\u003eef109d9\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6411e6379e509956413b866481ee2362a7cdfc68\"\u003e\u003ccode\u003e6411e63\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e5bf970956db306bf7b5b1bdd8ca71e8cca766b5\"\u003e\u003ccode\u003ee5bf970\u003c/code\u003e\u003c/a\u003e Release 2026-04-24\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdbb88c9400c80ed2487f7b498a54c6206b5c62a\"\u003e\u003ccode\u003ebdbb88c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/config/v1.32.16...config/v1.32.17\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/credentials` from 1.19.15 to 1.19.16\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2223642aeafb3b46ae924667ee47d31a1cf5a9d5\"\u003e\u003ccode\u003e2223642\u003c/code\u003e\u003c/a\u003e Release 2026-04-29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/04c7e460121eafa42577be08289bd0da0de091b2\"\u003e\u003ccode\u003e04c7e46\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5f5692571a7afce76e1573da3fbf2180a2c297cc\"\u003e\u003ccode\u003e5f56925\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/aac6d2b8fefd47203d3b4bd5f229ca275272ec62\"\u003e\u003ccode\u003eaac6d2b\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdaead7d2074e479fc56da77491fe65737413664\"\u003e\u003ccode\u003ebdaead7\u003c/code\u003e\u003c/a\u003e upgrade to smithy-go v1.25.1 (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/3399\"\u003e#3399\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/008e12cf64f41c37faeb705f6ce4b77471756f9f\"\u003e\u003ccode\u003e008e12c\u003c/code\u003e\u003c/a\u003e Release 2026-04-27\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/ef109d91f0b772aaebc472633edf13ec0fd907ce\"\u003e\u003ccode\u003eef109d9\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6411e6379e509956413b866481ee2362a7cdfc68\"\u003e\u003ccode\u003e6411e63\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e5bf970956db306bf7b5b1bdd8ca71e8cca766b5\"\u003e\u003ccode\u003ee5bf970\u003c/code\u003e\u003c/a\u003e Release 2026-04-24\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bdbb88c9400c80ed2487f7b498a54c6206b5c62a\"\u003e\u003ccode\u003ebdbb88c\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/credentials/v1.19.15...credentials/v1.19.16\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.100.0 to 1.101.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/84ddd08980744ac0f3bacfe7d2796c861671accc\"\u003e\u003ccode\u003e84ddd08\u003c/code\u003e\u003c/a\u003e Release 2026-05-06\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/23645b402c11575a32d1af93ec237f2f121dd285\"\u003e\u003ccode\u003e23645b4\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/848eb597bd63cb770bcd11ee230f9dca68ce1ffe\"\u003e\u003ccode\u003e848eb59\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/1d7b13420ed32f0809a5a4a35c630d19bfd0b6d4\"\u003e\u003ccode\u003e1d7b134\u003c/code\u003e\u003c/a\u003e Release 2026-05-05\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5bbbc97fcab2086757060561ccd1f34101ba7b57\"\u003e\u003ccode\u003e5bbbc97\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/8dbb93618325675f55eb0c3eb0c7a766806dadbc\"\u003e\u003ccode\u003e8dbb936\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/369e6498c716c7e02ca7aef318ef311edd5efcbf\"\u003e\u003ccode\u003e369e649\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/dc2d13fa6f1db25f1c6d804567e1ecfcdff4f040\"\u003e\u003ccode\u003edc2d13f\u003c/code\u003e\u003c/a\u003e Release 2026-05-04\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/da4bcffa913dc4ba46e1ce10a6268bf075547a8d\"\u003e\u003ccode\u003eda4bcff\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/a8b1180254cba3e23aa6baece26783395e884d81\"\u003e\u003ccode\u003ea8b1180\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/s3/v1.100.0...service/s3/v1.101.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/blevesearch/bleve/v2` from 2.5.7 to 2.6.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/blevesearch/bleve/releases\"\u003egithub.com/blevesearch/bleve/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.6.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMB-69881: Improved APIs and perf optimizations for vector search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2270\"\u003eblevesearch/bleve#2270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-27666: Hierarchy Search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/hierarchy.md\"\u003edocs/hierarchy.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove legacy vendor folder by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2271\"\u003eblevesearch/bleve#2271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade several dependencies - roaring/v2, mmap-go etc. by \u003ca href=\"https://github.com/abhinavdangeti\"\u003e\u003ccode\u003e@​abhinavdangeti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2275\"\u003eblevesearch/bleve#2275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-59633: Improve performance of Geospatial Search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2268\"\u003eblevesearch/bleve#2268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-70388: Add forced docvalues for geopoint fields by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2278\"\u003eblevesearch/bleve#2278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-70410: Simplify \u003ccode\u003eCoalesceQueue\u003c/code\u003e in hierarchical nested search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2283\"\u003eblevesearch/bleve#2283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-61890 - Introducing config for zap layer by \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2066\"\u003eblevesearch/bleve#2066\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHandle \u003ccode\u003enil\u003c/code\u003e multiSearchParams properly for \u003ccode\u003eMultiSearch\u003c/code\u003e by \u003ca href=\"https://github.com/capemox\"\u003e\u003ccode\u003e@​capemox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2286\"\u003eblevesearch/bleve#2286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-59633: Disable DocValues Chunking \u0026amp; Compression for Geo Fields by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2269\"\u003eblevesearch/bleve#2269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImproved geo spatial search accuracy by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/geo/pull/29\"\u003eblevesearch/geo#29\u003c/a\u003e \u0026amp; \u003ca href=\"https://redirect.github.com/blevesearch/geo/pull/30\"\u003eblevesearch/geo#30\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-62985: Support for Binary quantized vector indexes \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/vectors.md\"\u003edocs/vectors.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-62182: New merge approach that avoids re-training of vector indexes \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/fast_merge.md\"\u003edocs/fast_merge.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71041: avoid updating \u003ccode\u003eroot.bolt\u003c/code\u003e with in-memory segment's data by \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2296\"\u003eblevesearch/bleve#2296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-65018 add custom_filter/custom_score query support with context-driven callback hooks by \u003ca href=\"https://github.com/maneuvertomars\"\u003e\u003ccode\u003e@​maneuvertomars\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2289\"\u003eblevesearch/bleve#2289\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/custom_query.md\"\u003edocs/custom_query.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-65860: Introducing support for fileIO Callbacks by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2209\"\u003eblevesearch/bleve#2209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e(perf) pool queryStringLex to reuse bufio.Reader across query parses by \u003ca href=\"https://github.com/huynhanx03\"\u003e\u003ccode\u003e@​huynhanx03\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2300\"\u003eblevesearch/bleve#2300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003enull\u003c/code\u003e issue when parsing search request attributes by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2312\"\u003eblevesearch/bleve#2312\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71375: Bolt Wrappers for File Callbacks by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2309\"\u003eblevesearch/bleve#2309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAbsorb fixes for filtering vector search, update workflows by \u003ca href=\"https://github.com/abhinavdangeti\"\u003e\u003ccode\u003e@​abhinavdangeti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2314\"\u003eblevesearch/bleve#2314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-59670: GPU-Accelerated Vector Search by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e \u0026amp; \u003ca href=\"https://github.com/capemox\"\u003e\u003ccode\u003e@​capemox\u003c/code\u003e\u003c/a\u003e ; see \u003ca href=\"https://github.com/blevesearch/bleve/blob/v2.6.0/docs/vectors.md\"\u003edocs/vectors.md\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71383: Expose vector field stats in scorch by \u003ca href=\"https://github.com/capemox\"\u003e\u003ccode\u003e@​capemox\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2316\"\u003eblevesearch/bleve#2316\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded check for in-memory segment merge by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2319\"\u003eblevesearch/bleve#2319\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71607: Fixed data corruption in bolt by \u003ca href=\"https://github.com/Likith101\"\u003e\u003ccode\u003e@​Likith101\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2324\"\u003eblevesearch/bleve#2324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix metrics involving NestedDocuments by \u003ca href=\"https://github.com/CascadingRadium\"\u003e\u003ccode\u003e@​CascadingRadium\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2325\"\u003eblevesearch/bleve#2325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMB-71216, MB-71650: Implement fast merge over binary index classes by \u003ca href=\"https://github.com/Thejas-bhat\"\u003e\u003ccode\u003e@​Thejas-bhat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2326\"\u003eblevesearch/bleve#2326\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpgrade to go-faiss@v1.1.0; Fix formatting, typos, etc. in docs/ by \u003ca href=\"https://github.com/abhinavdangeti\"\u003e\u003ccode\u003e@​abhinavdangeti\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/blevesearch/bleve/pull/2328\"\u003eblevesearch/bleve#2328\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIntroduced new file format - \u003ca href=\"https://github.com/blevesearch/zapx/tree/v17.1.2\"\u003ezapx@v17\u003c/a\u003e\u003c/h3\u003e\n\u003cp\u003e\u003cstrong\u003eMilestone\u003c/strong\u003e: \u003ca href=\"https://github.com/blevesearch/bleve/milestone/29\"\u003ehttps://github.com/blevesearch/bleve/milestone/29\u003c/a\u003e\n\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/blevesearch/bleve/compare/v2.5.7...v2.6.0\"\u003ehttps://github.com/blevesearch/bleve/compare/v2.5.7...v2.6.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/d8f2ab9a11166223bc4997143efda40ec98045e7\"\u003e\u003ccode\u003ed8f2ab9\u003c/code\u003e\u003c/a\u003e Upgrade to go-faiss@v1.1.0; Fix formatting, typos, etc. in docs/ (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2328\"\u003e#2328\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/71b13fe1cf1dbe8d0dd2115f2c1570d0a1340654\"\u003e\u003ccode\u003e71b13fe\u003c/code\u003e\u003c/a\u003e go fmt ./... (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2327\"\u003e#2327\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/2a4804932d06267104bbad8b4601a320e746ba5d\"\u003e\u003ccode\u003e2a48049\u003c/code\u003e\u003c/a\u003e MB-71216, MB-71650: Implement fast merge over binary index classes (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2326\"\u003e#2326\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/a9e101a9947fa5dbffea3f3727e4e27ea6aed9b9\"\u003e\u003ccode\u003ea9e101a\u003c/code\u003e\u003c/a\u003e Fix metrics involving NestedDocuments (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2325\"\u003e#2325\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/2c7269ac3e11a4fb5baebd5ca34895b4babb69d2\"\u003e\u003ccode\u003e2c7269a\u003c/code\u003e\u003c/a\u003e v2.6.0 doc fixes (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2323\"\u003e#2323\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/e5e7e9e7a77a0205e2f695b61e8779a5bd9ed0f6\"\u003e\u003ccode\u003ee5e7e9e\u003c/code\u003e\u003c/a\u003e MB-71607: Fixed data corruption in bolt (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2324\"\u003e#2324\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/08e551fc149f59aee99e99732b66e95d50607871\"\u003e\u003ccode\u003e08e551f\u003c/code\u003e\u003c/a\u003e Updates to docs/vectors.md for v2.6.0 (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2320\"\u003e#2320\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/7cb486d98c678a0561fb94851367f5197f27353b\"\u003e\u003ccode\u003e7cb486d\u003c/code\u003e\u003c/a\u003e Add a document for fast merge (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2321\"\u003e#2321\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/d3a4022ed0979907ae42dbea66f0d201304d062b\"\u003e\u003ccode\u003ed3a4022\u003c/code\u003e\u003c/a\u003e Added check for in-memory segment merge (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2319\"\u003e#2319\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve/commit/77af9c88ecded5c284d10954b81f729771e10646\"\u003e\u003ccode\u003e77af9c8\u003c/code\u003e\u003c/a\u003e Update docs/vectors.md  (\u003ca href=\"https://redirect.github.com/blevesearch/bleve/issues/2318\"\u003e#2318\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/blevesearch/bleve/compare/v2.5.7...v2.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/blevesearch/bleve_index_api` from 1.2.11 to 1.3.11\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/5704d2d51ef6666e8db95a321072a24519e816af\"\u003e\u003ccode\u003e5704d2d\u003c/code\u003e\u003c/a\u003e MB-71216: Added Support for IVFRaBitQ Indexes (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/bef04bf5fb03405a33aa2e7ffd9694082f82df7d\"\u003e\u003ccode\u003ebef04bf\u003c/code\u003e\u003c/a\u003e MB-59670: GPU-Accelerated Vector Search (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/77\"\u003e#77\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/c26154f6f7f896ec42acdf872797e65c3fd91a58\"\u003e\u003ccode\u003ec26154f\u003c/code\u003e\u003c/a\u003e introduce and use \u003ccode\u003eTrainedIndexCallbackFn\u003c/code\u003e signature (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/90\"\u003e#90\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/32831684c6e36397c5a9f80358141e9ad7a9200c\"\u003e\u003ccode\u003e3283168\u003c/code\u003e\u003c/a\u003e MB-65860: Adding Support for File Callbacks (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/89\"\u003e#89\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/dd1f3c75ec988849586af84061e3354306384d96\"\u003e\u003ccode\u003edd1f3c7\u003c/code\u003e\u003c/a\u003e Relocating \u003ccode\u003eIndexFileCopyable\u003c/code\u003e interface (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/88\"\u003e#88\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/a43513abee1584649c85ba765930bb92427f9c5f\"\u003e\u003ccode\u003ea43513a\u003c/code\u003e\u003c/a\u003e move TrainableIndex interface to the right place (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/87\"\u003e#87\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/589b597288d510e424ffa58eea2500d8b44d4f4a\"\u003e\u003ccode\u003e589b597\u003c/code\u003e\u003c/a\u003e MB-62182: centroid index transfer APIs (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/84\"\u003e#84\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/60ef5e2c9245dda6de7863c9a8c66521181b9537\"\u003e\u003ccode\u003e60ef5e2\u003c/code\u003e\u003c/a\u003e MB-62985: Update index optimization naming and desc for Bivf (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/86\"\u003e#86\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/62a5343ee2d167a502903a596f011a5a23d15cd7\"\u003e\u003ccode\u003e62a5343\u003c/code\u003e\u003c/a\u003e MB-62958: Changed backing index for bivf (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/85\"\u003e#85\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/blevesearch/bleve_index_api/commit/697ce4cee94de0b801a6888f7ea0ff81a4e2eeb0\"\u003e\u003ccode\u003e697ce4c\u003c/code\u003e\u003c/a\u003e MB:59633: Adding snappy and chunk options for indexing (\u003ca href=\"https://redirect.github.com/blevesearch/bleve_index_api/issues/80\"\u003e#80\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/blevesearch/bleve_index_api/compare/v1.2.11...v1.3.11\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.18.0 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/cel-go` from 0.28.0 to 0.28.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/cel-go/releases\"\u003egithub.com/google/cel-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v0.28.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload by \u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport shorthand types in env yaml and REPL  by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1301\"\u003egoogle/cel-go#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreserve operation interrupted in ContextEval error by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse shorthand type specifiers in env yaml files by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1305\"\u003egoogle/cel-go#1305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCost estimation and tracking for strings extension by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1307\"\u003egoogle/cel-go#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repl type string for doubles by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1308\"\u003egoogle/cel-go#1308\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/cel-go/compare/v0.28.0...v0.28.1\"\u003ehttps://github.com/google/cel-go/compare/v0.28.0...v0.28.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/a82c68b770ac0cb67f7b4f76166827c14b145eb8\"\u003e\u003ccode\u003ea82c68b\u003c/code\u003e\u003c/a\u003e Update repl type assessment for doubles (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1308\"\u003e#1308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/c9d70486a872fbfaf9c4cb383a005de56e499368\"\u003e\u003ccode\u003ec9d7048\u003c/code\u003e\u003c/a\u003e Cost estimation and tracking for strings extension (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1307\"\u003e#1307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/646cdc1728643aec9499e3a00236ef1007a5d3fa\"\u003e\u003ccode\u003e646cdc1\u003c/code\u003e\u003c/a\u003e Use shorthand type specifiers in env yaml files (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1305\"\u003e#1305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/7263793b453228e8a47ca742afd124b3eaa8fc68\"\u003e\u003ccode\u003e7263793\u003c/code\u003e\u003c/a\u003e Preserve operation interrupted in ContextEval error (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/b826162b7b6ac7ae048fbf23b6123ab5c99da11b\"\u003e\u003ccode\u003eb826162\u003c/code\u003e\u003c/a\u003e Support shorthand types in env yaml and REPL  (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/339269b44af7c3cd477b55530e9cc1fe534c7f09\"\u003e\u003ccode\u003e339269b\u003c/code\u003e\u003c/a\u003e fix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1300\"\u003e#1300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/google/cel-go/compare/v0.28.0...v0.28.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.9.1 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.9.1...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/nats-io/nats.go` from 1.49.0 to 1.52.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/nats-io/nats.go/releases\"\u003egithub.com/nats-io/nats.go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.52.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003eThis release focuses on 2.14 nats-server features support.\u003c/p\u003e\n\u003ch3\u003eADDED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eJetStream:\n\u003cul\u003e\n\u003cli\u003eAdded fast batch stream config field (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2052\"\u003e#2052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded message scheduling headers and publish opts (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2051\"\u003e#2051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdated \u003ccode\u003eStreamConfig\u003c/code\u003e with \u003ccode\u003eConsumer\u003c/code\u003e field and added \u003ccode\u003eAckFlowControlPolicy\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdded reset consumer API (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2069\"\u003e#2069\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFIXED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCore NATS:\n\u003cul\u003e\n\u003cli\u003eFix Subscription.StatusChanged channel closure on Closed Subscription. Thanks \u003ca href=\"https://github.com/nithimani38-prog\"\u003e\u003ccode\u003e@​nithimani38-prog\u003c/code\u003e\u003c/a\u003e for the contribution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2034\"\u003e#2034\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFixed Flaky JS cluster tests (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2062\"\u003e#2062\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eComplete Changes\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/nats-io/nats.go/compare/v1.51.0...v1.52.0\"\u003ehttps://github.com/nats-io/nats.go/compare/v1.51.0...v1.52.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v1.51.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eADDED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCore NATS:\n\u003cul\u003e\n\u003cli\u003eOption to customize write buffer size (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2057\"\u003e#2057\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eOption to automatically reconnect on write error (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2055\"\u003e#2055\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAccessors for JetStream API level and \u003ccode\u003eIsSysAccount\u003c/code\u003e from \u003ccode\u003eServerInfo\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2060\"\u003e#2060\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFIXED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eCore NATS:\n\u003cul\u003e\n\u003cli\u003eMake websocket frame validation more robust (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2050\"\u003e#2050\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eJetStream:\n\u003cul\u003e\n\u003cli\u003eFix deadlock in \u003ccode\u003eConsume()\u003c/code\u003e when calling \u003ccode\u003eStop\u003c/code\u003e/\u003ccode\u003eDrain\u003c/code\u003e from \u003ccode\u003eConsumeErrHandler\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2059\"\u003e#2059\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVED\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix typos in tests. Thanks \u003ca href=\"https://github.com/deining\"\u003e\u003ccode\u003e@​deining\u003c/code\u003e\u003c/a\u003e for the contribution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2049\"\u003e#2049\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix deprecation warnings by bumping GH actions to their latest versions. Thanks \u003ca href=\"https://github.com/deining\"\u003e\u003ccode\u003e@​deining\u003c/code\u003e\u003c/a\u003e for the contibution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2048\"\u003e#2048\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eCode linting: remove functions min and max. Thanks \u003ca href=\"https://github.com/deining\"\u003e\u003ccode\u003e@​deining\u003c/code\u003e\u003c/a\u003e for the contribution (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2047\"\u003e#2047\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eComplete Changes\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/e9f2a36e31b1065f69b252ea090c01e8869eab0b\"\u003e\u003ccode\u003ee9f2a36\u003c/code\u003e\u003c/a\u003e Release v1.52.0 (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2074\"\u003e#2074\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/609274f8c57b65c9d11b01b008b0e40fadfc9d5b\"\u003e\u003ccode\u003e609274f\u003c/code\u003e\u003c/a\u003e [FIXED] Subscription.StatusChanged channel closure on Closed Subscription (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2\"\u003e#2\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/f7cde748abc86c2981cb1391ca828fceea02af66\"\u003e\u003ccode\u003ef7cde74\u003c/code\u003e\u003c/a\u003e [IMPROVED] Use latest release build for badge in README (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2064\"\u003e#2064\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/c7476ea556818d561945e78863adab422f00de03\"\u003e\u003ccode\u003ec7476ea\u003c/code\u003e\u003c/a\u003e [IMPROVED] Reject empty consumer info in CONSUMER.RESET response (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2072\"\u003e#2072\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/8fde36fd10a34224e22f4f8a8ad1f61ecaedd18f\"\u003e\u003ccode\u003e8fde36f\u003c/code\u003e\u003c/a\u003e [ADDED] ResetConsumer JetStream API (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2069\"\u003e#2069\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/dcfd0fcc6f63c4a2e4436e5aa3ecd4e1dcc598df\"\u003e\u003ccode\u003edcfd0fc\u003c/code\u003e\u003c/a\u003e [ADDED] StreamSource.Consumer config field and AckFlowControlPolicy (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2070\"\u003e#2070\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/7a28503b5d5d633d2caaa2639571e5f19c8eebec\"\u003e\u003ccode\u003e7a28503\u003c/code\u003e\u003c/a\u003e [ADDED] Publish options and consts for message scheduling (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2051\"\u003e#2051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/6c91a518e305e56c6481cf63ba52416300b7f5d3\"\u003e\u003ccode\u003e6c91a51\u003c/code\u003e\u003c/a\u003e [ADDED] AllowBatchPublish stream config field (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2052\"\u003e#2052\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/a614d0be24c7e9a22a406572bee44d897cff27c3\"\u003e\u003ccode\u003ea614d0b\u003c/code\u003e\u003c/a\u003e [FIXED] Flaky JS cluster tests due to race in setupJSClusterWithSize (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2062\"\u003e#2062\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nats-io/nats.go/commit/17b6fd141ba960bdc07278101f8b6381293bbfe1\"\u003e\u003ccode\u003e17b6fd1\u003c/code\u003e\u003c/a\u003e Release v1.51.0 (\u003ca href=\"https://redirect.github.com/nats-io/nats.go/issues/2061\"\u003e#2061\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nats-io/nats.go/compare/v1.49.0...v1.52.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/pquerna/otp` from 1.4.0 to 1.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/pquerna/otp/releases\"\u003egithub.com/pquerna/otp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReplace deprecated ioutil by \u003ca href=\"https://github.com/erfan-khadem\"\u003e\u003ccode\u003e@​erfan-khadem\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/91\"\u003epquerna/otp#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat: Steam TOTP encoding by \u003ca href=\"https://github.com/nikicat\"\u003e\u003ccode\u003e@​nikicat\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/96\"\u003epquerna/otp#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(security): Ensure the entire secret is random by \u003ca href=\"https://github.com/alfrunes\"\u003e\u003ccode\u003e@​alfrunes\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/100\"\u003epquerna/otp#100\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/erfan-khadem\"\u003e\u003ccode\u003e@​erfan-khadem\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/91\"\u003epquerna/otp#91\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nikicat\"\u003e\u003ccode\u003e@​nikicat\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/96\"\u003epquerna/otp#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alfrunes\"\u003e\u003ccode\u003e@​alfrunes\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/pquerna/otp/pull/100\"\u003epquerna/otp#100\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/pquerna/otp/compare/v1.4.0...v1.5.0\"\u003ehttps://github.com/pquerna/otp/compare/v1.4.0...v1.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pquerna/otp/commit/5971b1ef1d6652fec2caed37f11e5cacd9249f78\"\u003e\u003ccode\u003e5971b1e\u003c/code\u003e\u003c/a\u003e fix(security): Ensure the entire secret is random (\u003ca href=\"https://redirect.github.com/pquerna/otp/issues/100\"\u003e#100\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pquerna/otp/commit/c95b6974670cfbfe88ed5c0643a66ede01a90547\"\u003e\u003ccode\u003ec95b697\u003c/code\u003e\u003c/a\u003e feat: steam totp encoding (\u003ca href=\"https://redirect.github.com/pquerna/otp/issues/96\"\u003e#96\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/pquerna/otp/commit/3357de7c04813a328d6a1e4a514854213e0f8ce8\"\u003e\u003ccode\u003e3357de7\u003c/code\u003e\u003c/a\u003e Replace deprecated ioutil (\u003ca href=\"https://redirect.github.com/pquerna/otp/issues/91\"\u003e#91\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/pquerna/otp/compare/v1.4.0...v1.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/segmentio/kafka-go` from 0.4.49 to 0.4.51\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/segmentio/kafka-go/releases\"\u003egithub.com/segmentio/kafka-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.4.51\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: describe groups should not fail on an issue with a single group by \u003ca href=\"https://github.com/petedannemann\"\u003e\u003ccode\u003e@​petedannemann\u003c/code\u003e\u003c/a\u003e and \u003ca href=\"https://github.com/pazhang-25\"\u003e\u003ccode\u003e@​pazhang-25\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/segmentio/kafka-go/pull/1431\"\u003esegmentio/kafka-go#1431\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/segmentio/kafka-go/compare/v0.4.50...v0.4.51\"\u003ehttps://github.com/segmentio/kafka-go/compare/v0.4.50...v0.4.51\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.4.50\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: support describegroups v5 by \u003ca href=\"https://github.com/petedannemann\"\u003e\u003ccode\u003e@​petedannemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/segmentio/kafka-go/pull/1421\"\u003esegmentio/kafka-go#1421\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/segmentio/kafka-go/compare/v0.4.49...v0.4.50\"\u003ehttps://github.com/segmentio/kafka-go/compare/v0.4.49...v0.4.50\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/segmentio/kafka-go/commit/2e0b3968aa51b16beb4e221876499a6ff816cd91\"\u003e\u003ccode\u003e2e0b396\u003c/code\u003e\u003c/a\u003e fix: describe groups should not fail on an issue with a single group (\u003ca href=\"https://redirect.github.com/segmentio/kafka-go/issues/1431\"\u003e#1431\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/segmentio/kafka-go/commit/3ce29796ef96c7f55bfb64b505c0fcb3c2fd233e\"\u003e\u003ccode\u003e3ce2979\u003c/code\u003e\u003c/a\u003e feat: support describegroups v5 (\u003ca href=\"https://redirect.github.com/segmentio/kafka-go/issues/1421\"\u003e#1421\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/segmentio/kafka-go/compare/v0.4.49...v0.4.51\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go` from 0.41.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71ff693f1fc\"\u003e\u003ccode\u003e75aa226\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/2f59938fb9ce365d974fe21a426ffffe7231caca\"\u003e\u003ccode\u003e2f59938\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/sdk in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/580abf68d44021bc7e54f8655a2fb66578205527\"\u003e\u003ccode\u003e580abf6\u003c/code\u003e\u003c/a\u003e chore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/testcontainers/testcontainers-go/compare/v0.41.0...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/testcontainers/testcontainers-go/modules/postgres` from 0.41.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/testcontainers/testcontainers-go/releases\"\u003egithub.com/testcontainers/testcontainers-go/modules/postgres's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.42.0\u003c/h2\u003e\n\u003ch1\u003eWhat's Changed\u003c/h1\u003e\n\u003ch2\u003e⚠️ Breaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore!: migrate to moby modules (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3591\"\u003e#3591\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🔒 Security\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐛 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e) \u003ca href=\"https://github.com/ash2k\"\u003e\u003ccode\u003e@​ash2k\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🧹 Housekeeping\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: gitignore Gas Town agent artifacts (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3633\"\u003e#3633\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): include last release in the legend pop over (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3630\"\u003e#3630\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update usage metrics (2026-04) (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3621\"\u003e#3621\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/github-actions\"\u003egithub-actions[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): order of actions matters (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3623\"\u003e#3623\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics): reduce rate-limit cascade errors (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3622\"\u003e#3622\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(usage-metrics):  replace the per-version inline retry with a multi-pass approach (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3620\"\u003e#3620\u003c/a\u003e) \u003ca href=\"https://github.com/mdelapenya\"\u003e\u003ccode\u003e@​mdelapenya\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e📦 Dependency updates\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.28.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3639\"\u003e#3639\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3641\"\u003e#3641\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.42.0 to 1.43.0 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3645\"\u003e#3645\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.51.2 to 1.97.3 in /modules/localstack (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp from 1.41.0 to 1.43.0 in /modules/grafana-lgtm (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3643\"\u003e#3643\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump go.opentelemetry.io/otel/sdk from 1.41.0 to 1.43.0 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3644\"\u003e#3644\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update to Go 1.25.9, 1.26.9 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3647\"\u003e#3647\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps):  bump bump github.com/klauspost/compress v1.18.5, github.com/docker/compose v5.1.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3646\"\u003e#3646\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump moby/client v0.4.0, moby/api v1.54.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3634\"\u003e#3634\u003c/a\u003e) \u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump golang.org/x/sys from 0.41.0 to 0.42.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3629\"\u003e#3629\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/patternmatcher from 0.6.0 to 0.6.1 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3628\"\u003e#3628\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/shirou/gopsutil/v4 from 4.26.2 to 4.26.3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3627\"\u003e#3627\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(localstack): accept community-archive as a valid tag (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3601\"\u003e#3601\u003c/a\u003e) \u003ca href=\"https://github.com/johnduhart\"\u003e\u003ccode\u003e@​johnduhart\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 in /modules/gcloud (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3632\"\u003e#3632\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump actions/upload-artifact from 6.0.0 to 7.0.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3625\"\u003e#3625\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump pygments from 2.19.2 to 2.20.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3615\"\u003e#3615\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/milvus (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3612\"\u003e#3612\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/etcd (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3611\"\u003e#3611\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/ollama (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3610\"\u003e#3610\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/pinecone (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3609\"\u003e#3609\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.67.0 to 1.79.3 in /modules/couchbase (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3608\"\u003e#3608\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump requests from 2.32.4 to 2.33.0 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3604\"\u003e#3604\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump google.golang.org/grpc from 1.79.1 to 1.79.3 in /modules/meilisearch (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3607\"\u003e#3607\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore(deps): bump github.com/moby/buildkit from 0.27.1 to 0.28.1 in /modules/compose (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3605\"\u003e#3605\u003c/a\u003e) @\u003ca href=\"https://github.com/apps/dependabot\"\u003edependabot[bot]\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/6e584183e1623fb83a78db902462eb9ee255327b\"\u003e\u003ccode\u003e6e58418\u003c/code\u003e\u003c/a\u003e chore: use new version (v0.42.0) in modules and examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/f713dc0c78c37558ed13c985f5ed15101a6cba08\"\u003e\u003ccode\u003ef713dc0\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/300827abcec0b6e2d8c10c8360d335f29962f701\"\u003e\u003ccode\u003e300827a\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetr...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/7a15ac1b7214c0bc5cb14c31a979a166ac5c088c\"\u003e\u003ccode\u003e7a15ac1\u003c/code\u003e\u003c/a\u003e chore(deps): bump go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptrace...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/5bae3d2aa7281a71d1c24b5f8bde1391e2e8dfcb\"\u003e\u003ccode\u003e5bae3d2\u003c/code\u003e\u003c/a\u003e fix: return an error when docker host cannot be retrieved (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3613\"\u003e#3613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/fc19484a8ae088b714a9e9d7d9bba2ae383e3e69\"\u003e\u003ccode\u003efc19484\u003c/code\u003e\u003c/a\u003e chore(deps): bump mkdocs-include-markdown-plugin from 7.2.1 to 7.2.2 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3626\"\u003e#3626\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/95bdc0c4a0b368564f052bd7a533f055adab694a\"\u003e\u003ccode\u003e95bdc0c\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/service/s3 (\u003ca href=\"https://redirect.github.com/testcontainers/testcontainers-go/issues/3638\"\u003e#3638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/testcontainers/testcontainers-go/commit/75aa22665b03ec8d597341575001d71...\n\n_Description has been truncated_","html_url":"https://github.com/AlbertLee1/Weave/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/AlbertLee1%2FWeave/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"}},{"old_version":"5.8.0","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-14T03:27:18.000Z","version_change":"5.8.0 → 5.9.2","issue":{"uuid":"4442874238","node_id":"PR_kwDORLnSB87bXYmv","number":120,"state":"closed","title":"chore(deps): bump the golang group across 1 directory with 24 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-28T03:26:55.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-14T03:27:18.000Z","updated_at":"2026-05-28T03:26:57.000Z","time_to_close":1209577,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"golang","update_count":24,"packages":[{"name":"github.com/andybalholm/brotli","old_version":"1.2.0","new_version":"1.2.1","repository_url":"https://github.com/andybalholm/brotli"},{"name":"github.com/anthropics/anthropic-sdk-go","old_version":"1.27.1","new_version":"1.43.0","repository_url":"https://github.com/anthropics/anthropic-sdk-go"},{"name":"github.com/fsnotify/fsnotify","old_version":"1.9.0","new_version":"1.10.1","repository_url":"https://github.com/fsnotify/fsnotify"},{"name":"github.com/fxamacker/cbor/v2","old_version":"2.9.0","new_version":"2.9.2","repository_url":"https://github.com/fxamacker/cbor"},{"name":"github.com/go-git/go-git/v6","old_version":"6.0.0-20260305211659-2083cf940afa","new_version":"6.0.0-alpha.3","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-sql-driver/mysql","old_version":"1.9.3","new_version":"1.10.0","repository_url":"https://github.com/go-sql-driver/mysql"},{"name":"github.com/google/cel-go","old_version":"0.27.0","new_version":"0.28.1","repository_url":"https://github.com/google/cel-go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.8.0","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"},{"name":"github.com/klauspost/compress","old_version":"1.18.4","new_version":"1.18.6","repository_url":"https://github.com/klauspost/compress"},{"name":"github.com/mark3labs/mcp-go","old_version":"0.45.0","new_version":"0.54.0","repository_url":"https://github.com/mark3labs/mcp-go"},{"name":"github.com/minio/minio-go/v7","old_version":"7.0.99","new_version":"7.1.0","repository_url":"https://github.com/minio/minio-go"},{"name":"github.com/tidwall/gjson","old_version":"1.18.0","new_version":"1.19.0","repository_url":"https://github.com/tidwall/gjson"},{"name":"go.opentelemetry.io/otel","old_version":"1.42.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc","old_version":"1.42.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc","old_version":"1.42.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"go.opentelemetry.io/otel/exporters/prometheus","old_version":"0.64.0","new_version":"0.65.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"google.golang.org/genai","old_version":"1.51.0","new_version":"1.57.0","repository_url":"https://github.com/googleapis/go-genai"}],"path":null,"ecosystem":"go"},"body":"Bumps the golang group with 17 updates in the /apps/worker directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/andybalholm/brotli](https://github.com/andybalholm/brotli) | `1.2.0` | `1.2.1` |\n| [github.com/anthropics/anthropic-sdk-go](https://github.com/anthropics/anthropic-sdk-go) | `1.27.1` | `1.43.0` |\n| [github.com/fsnotify/fsnotify](https://github.com/fsnotify/fsnotify) | `1.9.0` | `1.10.1` |\n| [github.com/fxamacker/cbor/v2](https://github.com/fxamacker/cbor) | `2.9.0` | `2.9.2` |\n| [github.com/go-git/go-git/v6](https://github.com/go-git/go-git) | `6.0.0-20260305211659-2083cf940afa` | `6.0.0-alpha.3` |\n| [github.com/go-sql-driver/mysql](https://github.com/go-sql-driver/mysql) | `1.9.3` | `1.10.0` |\n| [github.com/google/cel-go](https://github.com/google/cel-go) | `0.27.0` | `0.28.1` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.8.0` | `5.9.2` |\n| [github.com/klauspost/compress](https://github.com/klauspost/compress) | `1.18.4` | `1.18.6` |\n| [github.com/mark3labs/mcp-go](https://github.com/mark3labs/mcp-go) | `0.45.0` | `0.54.0` |\n| [github.com/minio/minio-go/v7](https://github.com/minio/minio-go) | `7.0.99` | `7.1.0` |\n| [github.com/tidwall/gjson](https://github.com/tidwall/gjson) | `1.18.0` | `1.19.0` |\n| [go.opentelemetry.io/otel](https://github.com/open-telemetry/opentelemetry-go) | `1.42.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.42.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc](https://github.com/open-telemetry/opentelemetry-go) | `1.42.0` | `1.43.0` |\n| [go.opentelemetry.io/otel/exporters/prometheus](https://github.com/open-telemetry/opentelemetry-go) | `0.64.0` | `0.65.0` |\n| [google.golang.org/genai](https://github.com/googleapis/go-genai) | `1.51.0` | `1.57.0` |\n\n\nUpdates `github.com/andybalholm/brotli` from 1.2.0 to 1.2.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/0675b242cf45dcdd51ed6fb600876b570bea329b\"\u003e\u003ccode\u003e0675b24\u003c/code\u003e\u003c/a\u003e Remove unnecessary nil checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/946c3e4071198a86d6c037ffcd138968dd4fc68e\"\u003e\u003ccode\u003e946c3e4\u003c/code\u003e\u003c/a\u003e matchfinder: verify candidate matches against source data\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/014fb9c9e8f7e87e7996309844260b1f8d890528\"\u003e\u003ccode\u003e014fb9c\u003c/code\u003e\u003c/a\u003e Add Bargain3 MatchFinder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/deb905c53b5bcb9fa2d20ccb66890fa941c883cf\"\u003e\u003ccode\u003edeb905c\u003c/code\u003e\u003c/a\u003e Trio: vary hash table sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/b84bddd64ee4c9ca21b98009bc212e14fd7b5bd4\"\u003e\u003ccode\u003eb84bddd\u003c/code\u003e\u003c/a\u003e M4: fix updating chain for long history\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/a7ad41202f4421be4299ea5c911b41396c6170bf\"\u003e\u003ccode\u003ea7ad412\u003c/code\u003e\u003c/a\u003e Bargain1 \u0026amp; Bargain2: check for matches less often\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/6c6ca8c2a86a6448ef2b7986e6c8ecf5e8a9e29c\"\u003e\u003ccode\u003e6c6ca8c\u003c/code\u003e\u003c/a\u003e Add Bargain1 MatchFinder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/01c485509d026342053502adc6c3b692dcbf2003\"\u003e\u003ccode\u003e01c4855\u003c/code\u003e\u003c/a\u003e Add Bargain2 MatchFinder\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/b70ce549fa67fc350e2051de343a06d00e16a264\"\u003e\u003ccode\u003eb70ce54\u003c/code\u003e\u003c/a\u003e Add HTTPCompressorWithLevel\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andybalholm/brotli/commit/f8935d5c2aed358527994b3f3c16c3229f228c70\"\u003e\u003ccode\u003ef8935d5\u003c/code\u003e\u003c/a\u003e Add a flate encoder using the matchfinder package.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/andybalholm/brotli/compare/v1.2.0...v1.2.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/anthropics/anthropic-sdk-go` from 1.27.1 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/releases\"\u003egithub.com/anthropics/anthropic-sdk-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.43.0\u003c/h2\u003e\n\u003ch2\u003e1.43.0 (2026-05-13)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.42.0...v1.43.0\"\u003ev1.42.0...v1.43.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add BetaManagedAgentsSearchResultBlock types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/498fafcadd46be3a53e24ca2e7c40d00da6361bd\"\u003e498fafc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add support for cache diagnostics beta (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/eac032f440e19fe9407d856dc4494029c606cd3d\"\u003eeac032f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/38e1f89eeffeb40295a5796c97d9966ab1a8703b\"\u003e38e1f89\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/a98b0fb44693ee6c4bcd7575414b1cab0fc114c7\"\u003ea98b0fb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e optimize json encoder for internal types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/f379c4255c6485a02afb8136d84f1cf995794a08\"\u003ef379c42\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003estructured outputs:\u003c/strong\u003e allowlist enum, const, pattern, allOf in transformSchema (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/823\"\u003e#823\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/d3687868eb9c40427c731b12e9291ddeeb74f557\"\u003ed368786\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e spec updates (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/502b9f13f72a691c3b440c66d964a25caf2db8e1\"\u003e502b9f1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix standard webhooks version (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/842\"\u003e#842\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fdda46d63004bfec8c977319554cb609a0b4041\"\u003e1fdda46\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e simplify release-please config (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/69da3d60e46540256c75fc2a0d1b1814ed608dfc\"\u003e69da3d6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.42.0\u003c/h2\u003e\n\u003ch2\u003e1.42.0 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.41.0...v1.42.0\"\u003ev1.41.0...v1.42.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaws:\u003c/strong\u003e Add AWS client for Claude Platform on AWS (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/596baf4d3811bc48d24f3e298573581c861384b1\"\u003e596baf4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexamples:\u003c/strong\u003e update examples dependencies (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/e832b79299ddee8c48cc8f77c83203f58e17b9ec\"\u003ee832b79\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ego:\u003c/strong\u003e avoid panic when http.DefaultTransport is wrapped (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6b75bef5a2cd15a969b5d787498e550f6f039719\"\u003e6b75bef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e update dependency checksums (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/64c1d9502775801539ea492f29784a89535226bd\"\u003e64c1d95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ego mod tidy (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/816\"\u003e#816\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/09b5f9cc4965ed3ca5b458996db3c030d66482c4\"\u003e09b5f9c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6e83495da8dfb2efb905213204627483b4afc3e2\"\u003e6e83495\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/34d1379207570fd26f7a262a960c424adf8d265d\"\u003e34d1379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/c068475a5c67c7b0d544195b4a62187c4e35c578\"\u003ec068475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/46a074f588c30c2a88e6f46093be606b37dd3fef\"\u003e46a074f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fe2ebbb5d1f458f7013aec5c61e31ae2b52e619\"\u003e1fe2ebb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/blob/main/CHANGELOG.md\"\u003egithub.com/anthropics/anthropic-sdk-go's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.43.0 (2026-05-13)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.42.0...v1.43.0\"\u003ev1.42.0...v1.43.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add BetaManagedAgentsSearchResultBlock types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/498fafcadd46be3a53e24ca2e7c40d00da6361bd\"\u003e498fafc\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e Add support for cache diagnostics beta (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/eac032f440e19fe9407d856dc4494029c606cd3d\"\u003eeac032f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/38e1f89eeffeb40295a5796c97d9966ab1a8703b\"\u003e38e1f89\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e add compatibility aliases for old type names (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/a98b0fb44693ee6c4bcd7575414b1cab0fc114c7\"\u003ea98b0fb\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e optimize json encoder for internal types (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/f379c4255c6485a02afb8136d84f1cf995794a08\"\u003ef379c42\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003estructured outputs:\u003c/strong\u003e allowlist enum, const, pattern, allOf in transformSchema (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/823\"\u003e#823\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/d3687868eb9c40427c731b12e9291ddeeb74f557\"\u003ed368786\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eapi:\u003c/strong\u003e spec updates (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/502b9f13f72a691c3b440c66d964a25caf2db8e1\"\u003e502b9f1\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix standard webhooks version (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/842\"\u003e#842\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fdda46d63004bfec8c977319554cb609a0b4041\"\u003e1fdda46\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e simplify release-please config (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/69da3d60e46540256c75fc2a0d1b1814ed608dfc\"\u003e69da3d6\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.42.0 (2026-05-11)\u003c/h2\u003e\n\u003cp\u003eFull Changelog: \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.41.0...v1.42.0\"\u003ev1.41.0...v1.42.0\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eaws:\u003c/strong\u003e Add AWS client for Claude Platform on AWS (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/596baf4d3811bc48d24f3e298573581c861384b1\"\u003e596baf4\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eexamples:\u003c/strong\u003e update examples dependencies (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/e832b79299ddee8c48cc8f77c83203f58e17b9ec\"\u003ee832b79\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003ego:\u003c/strong\u003e avoid panic when http.DefaultTransport is wrapped (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6b75bef5a2cd15a969b5d787498e550f6f039719\"\u003e6b75bef\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChores\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eclient:\u003c/strong\u003e update dependency checksums (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/64c1d9502775801539ea492f29784a89535226bd\"\u003e64c1d95\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ego mod tidy (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/816\"\u003e#816\u003c/a\u003e) (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/09b5f9cc4965ed3ca5b458996db3c030d66482c4\"\u003e09b5f9c\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/6e83495da8dfb2efb905213204627483b4afc3e2\"\u003e6e83495\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/34d1379207570fd26f7a262a960c424adf8d265d\"\u003e34d1379\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003einternal:\u003c/strong\u003e codegen related update (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/c068475a5c67c7b0d544195b4a62187c4e35c578\"\u003ec068475\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/46a074f588c30c2a88e6f46093be606b37dd3fef\"\u003e46a074f\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eredact api-key headers in debug logs (\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/1fe2ebbb5d1f458f7013aec5c61e31ae2b52e619\"\u003e1fe2ebb\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e1.41.0 (2026-05-06)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/05700ac0b3d9d09dc8c71b39f2844cdfc48db5e9\"\u003e\u003ccode\u003e05700ac\u003c/code\u003e\u003c/a\u003e release: 1.43.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/c5a8272f9b0de45352fde3b8b0cd8f9ea30e9205\"\u003e\u003ccode\u003ec5a8272\u003c/code\u003e\u003c/a\u003e feat(api): Add support for cache diagnostics beta\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/a23541600e165e1b01f4e7d3d6e6fec6185d41e3\"\u003e\u003ccode\u003ea235416\u003c/code\u003e\u003c/a\u003e feat(client): optimize json encoder for internal types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/2892c45680c2fb294b479f4eb7700c99ec31ad2f\"\u003e\u003ccode\u003e2892c45\u003c/code\u003e\u003c/a\u003e chore(api): spec updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/e02171b273286bdfd97d2deb307b0cb99e8cbf94\"\u003e\u003ccode\u003ee02171b\u003c/code\u003e\u003c/a\u003e codegen metadata\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/8a4cbf0b040588dc6b3cb3ec5c735767183ef36c\"\u003e\u003ccode\u003e8a4cbf0\u003c/code\u003e\u003c/a\u003e feat(api): Add BetaManagedAgentsSearchResultBlock types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/3036341beb9026a31f4f5fd9d1c818f8f1cffb50\"\u003e\u003ccode\u003e3036341\u003c/code\u003e\u003c/a\u003e ci: pin GitHub Actions to commit SHAs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/81dd299705cce0981faaeaf14149b9583e0f6554\"\u003e\u003ccode\u003e81dd299\u003c/code\u003e\u003c/a\u003e chore: fix standard webhooks version (\u003ca href=\"https://redirect.github.com/anthropics/anthropic-sdk-go/issues/842\"\u003e#842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/438f43d217fa7693eaa9d5f0a03a4ed32cd393a2\"\u003e\u003ccode\u003e438f43d\u003c/code\u003e\u003c/a\u003e feat(client): add compatibility aliases for old type names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/commit/0ece20f557c19f765e79dacc80aed082f40ba1ef\"\u003e\u003ccode\u003e0ece20f\u003c/code\u003e\u003c/a\u003e fix(structured outputs): allowlist enum, const, pattern, allOf in transformSc...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anthropics/anthropic-sdk-go/compare/v1.27.1...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fsnotify/fsnotify` from 1.9.0 to 1.10.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/releases\"\u003egithub.com/fsnotify/fsnotify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.1\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a bad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak when recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix a race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fsnotify/fsnotify/blob/main/CHANGELOG.md\"\u003egithub.com/fsnotify/fsnotify's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e1.10.1 2026-05-04\u003c/h2\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify, windows: don't rename sibling watches sharing a path prefix\n(\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/754\"\u003efsnotify/fsnotify#754\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/755\"\u003efsnotify/fsnotify#755\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e1.10.0 2026-04-30\u003c/h2\u003e\n\u003cp\u003eThis version of fsnotify needs Go 1.23.\u003c/p\u003e\n\u003ch3\u003eChanges and fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003einotify: improve initialization error message (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: send Rename event if recursive watch is renamed (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003einotify: avoid copying event buffers when reading names (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: skip dangling symlinks (ENOENT) in watchDirectoryFiles, so a\nbad entry no longer aborts Watcher.Add for the whole directory (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ekqueue: drop watches directly in Close() to fix a file descriptor leak\nwhen recycling watchers (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: fix nil pointer dereference in remWatch (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003ewindows: lock watch field updates against concurrent WatchList to fix\na race introduced in v1.9.0 (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/696\"\u003e#696\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/696\"\u003efsnotify/fsnotify#696\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/709\"\u003efsnotify/fsnotify#709\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/731\"\u003e#731\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/731\"\u003efsnotify/fsnotify#731\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/736\"\u003e#736\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/736\"\u003efsnotify/fsnotify#736\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/740\"\u003e#740\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/740\"\u003efsnotify/fsnotify#740\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/741\"\u003e#741\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/741\"\u003efsnotify/fsnotify#741\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/748\"\u003efsnotify/fsnotify#748\u003c/a\u003e\n\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/pull/749\"\u003efsnotify/fsnotify#749\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/76b01a6e8f502187fecedea8b025e79e5a86085c\"\u003e\u003ccode\u003e76b01a6\u003c/code\u003e\u003c/a\u003e Release 1.10.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/fec150b807510e54e5b25def4b6e5fb001b4898c\"\u003e\u003ccode\u003efec150b\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/162b4216ab8f92ecd26425530bee198972c9b3cb\"\u003e\u003ccode\u003e162b421\u003c/code\u003e\u003c/a\u003e inotify, windows: don't rename sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/755\"\u003e#755\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/224257f23b2f3a96509b316c5cead71dd4a9099a\"\u003e\u003ccode\u003e224257f\u003c/code\u003e\u003c/a\u003e inotify: don't remove sibling watches sharing a path prefix (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/754\"\u003e#754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/e0c956c0ccaf51562fee30ef5c055c74e6ae2104\"\u003e\u003ccode\u003ee0c956c\u003c/code\u003e\u003c/a\u003e windows: document directory Write events and stabilize tests (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/745\"\u003e#745\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/8d01d7b9cbe0199e4a1e60fbd965fb05dbb42123\"\u003e\u003ccode\u003e8d01d7b\u003c/code\u003e\u003c/a\u003e Release 1.10.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/602284e4a8cadd488d7a5fa07c48462dfac25108\"\u003e\u003ccode\u003e602284e\u003c/code\u003e\u003c/a\u003e Update changelog\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/7f03e59f9659552d8a084e03024cb9b983748ed7\"\u003e\u003ccode\u003e7f03e59\u003c/code\u003e\u003c/a\u003e kqueue: skip ENOENT entries in watchDirectoryFiles (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/748\"\u003e#748\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/dab9dde2fc9ba4d0c1076318f81cabcc8fdb2ec9\"\u003e\u003ccode\u003edab9dde\u003c/code\u003e\u003c/a\u003e windows: lock watch field updates against concurrent WatchList (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/709\"\u003e#709\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/fsnotify/fsnotify/issues/749\"\u003e#749\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fsnotify/fsnotify/commit/eadf267ce152b5e62d48cc2c13bb08bd4062b6c7\"\u003e\u003ccode\u003eeadf267\u003c/code\u003e\u003c/a\u003e kqueue: drop watches directly in Close() instead of going through remove() (#...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fsnotify/fsnotify/compare/v1.9.0...v1.10.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/fxamacker/cbor/v2` from 2.9.0 to 2.9.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/fxamacker/cbor/releases\"\u003egithub.com/fxamacker/cbor/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.9.2\u003c/h2\u003e\n\u003cp\u003eThis release refactors and hardens the streaming encoder by adding stricter checks for encoding CBOR indefinite-length data. Other changes include minor bugfixes, defensive checks, and more tests.\u003c/p\u003e\n\u003cp\u003eProjects that don't use CBOR indefinite-length data may also want to upgrade (\u003ca href=\"https://github.com/fxamacker/cbor#prior-releases\"\u003esummary of prior releases\u003c/a\u003e).\u003c/p\u003e\n\u003cp\u003eThe stricter checks in the encoder prevent improper use of the library and bad inputs from producing malformed CBOR indefinite-length data that would be rejected by the decoder.\u003c/p\u003e\n\u003cp\u003eThis release passed fuzz tests (billions of execs) and it is production quality.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eReject encoding indefinite-length map with odd item count by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/764\"\u003efxamacker/cbor#764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject encoding indefinite-length data item as a chunk inside indefinite-length byte string or text string by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/765\"\u003efxamacker/cbor#765\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMake TagSet.Remove a no-op when contentType is nil by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/766\"\u003efxamacker/cbor#766\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor indefinite-length encoding and improve chunk validation during encoding by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/767\"\u003efxamacker/cbor#767\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd more tests, fix a nit in unreachable panic message, update docs \u0026amp; ci by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/768\"\u003efxamacker/cbor#768\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eCI / GitHub Actions and Docs\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003eBump actions/setup-go from 6.3.0 to 6.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/760\"\u003efxamacker/cbor#760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 4.34.1 to 4.35.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/761\"\u003efxamacker/cbor#761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 4.35.1 to 4.35.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/763\"\u003efxamacker/cbor#763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README for v2.9.2 release by \u003ca href=\"https://github.com/fxamacker\"\u003e\u003ccode\u003e@​fxamacker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/fxamacker/cbor/pull/769\"\u003efxamacker/cbor#769\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/fxamacker/cbor/compare/v2.9.1...v2.9.2\"\u003ehttps://github.com/fxamacker/cbor/compare/v2.9.1...v2.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.9.1\u003c/h2\u003e\n\u003cp\u003eThis release includes important bugfixes, defensive checks, improved code quality, and more tests.  Although not public, the fuzzer was also improved by adding more fuzz tests.\u003c/p\u003e\n\u003ch3\u003e:lady_beetle: Bug fixes related to the \u003ccode\u003ekeyasint\u003c/code\u003e feature\u003c/h3\u003e\n\u003cp\u003eThese changes only affect Go struct fields tagged with \u003ccode\u003ekeyasint\u003c/code\u003e:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[Decoding] Reject integer keys that exceed \u003ccode\u003emath.MaxInt64\u003c/code\u003e when decoding CBOR map to a struct with \u003ccode\u003ekeyasint\u003c/code\u003e field (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Decoding] Prevent string representation of an integer key from matching the struct field tagged by keyasint (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Encoding \u0026amp; Decoding] Deduplicate struct fields with the same normalized \u003ccode\u003ekeyasint\u003c/code\u003e tag values (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/757\"\u003e#757\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003e:lady_beetle: Other bug fixes and defensive checks\u003c/h3\u003e\n\u003cp\u003eSome of the bugs fixed are related to decoding extreme values that cannot be encoded with this library.  For example, the decoder checks if epoch time encoded as CBOR float value representing hundreds of billions of years overflows int64(seconds).\u003c/p\u003e\n\u003cp\u003eNOTE: It is generally good practice to \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/687#issue-3245597787\"\u003eavoid using floating point to store epoch time\u003c/a\u003e (even when not using CBOR).\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e[Decoding] Reject decoding epoch time encoded as floats that overflow int64 (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Encoding] Return a cloned slice for an empty \u003ccode\u003eRawMessage\u003c/code\u003e from \u003ccode\u003eRawMessage.MarshalCBOR\u003c/code\u003e (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/753\"\u003e#753\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[Encoding] Reject encoding nil inside indefinite-length strings (PR \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/750\"\u003e#750\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/45589abe5c63bea2db4d311e0d0fcc551cd772ae\"\u003e\u003ccode\u003e45589ab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/769\"\u003e#769\u003c/a\u003e from fxamacker/fxamacker/update-readme-release-status\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/8e98ea5c30a02488e35ddccf5483eac48d48695e\"\u003e\u003ccode\u003e8e98ea5\u003c/code\u003e\u003c/a\u003e Update README for v2.9.2 release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/e501aca8d56fc022ac9abe62106577ecad4d70e2\"\u003e\u003ccode\u003ee501aca\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/768\"\u003e#768\u003c/a\u003e from fxamacker/fxamacker/update-docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/e6af0aa00756c8e9e9fbc3152ca4f3fd6284d8e5\"\u003e\u003ccode\u003ee6af0aa\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/767\"\u003e#767\u003c/a\u003e from fxamacker/fxamacker/refactor-indefinite-length-e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/57f1601726dcaac2e52bcbc8b4d97c701fcdc7eb\"\u003e\u003ccode\u003e57f1601\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/fxamacker/cbor/issues/766\"\u003e#766\u003c/a\u003e from fxamacker/fxamacker/no-opt-to-remove-nil-type-in...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/0cdb674b5e4ad98b16d97c1536f4d8359052b606\"\u003e\u003ccode\u003e0cdb674\u003c/code\u003e\u003c/a\u003e Fix indefinite-length string chunk validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/c0db60f014902819fe9ae4187588d0741f256743\"\u003e\u003ccode\u003ec0db60f\u003c/code\u003e\u003c/a\u003e Improve GitHub Workflow code coverage regex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/63937fea6a1d13fead671932c9cf1f624ff2c8f7\"\u003e\u003ccode\u003e63937fe\u003c/code\u003e\u003c/a\u003e Fix panic message to print the unrecognized tag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/f0352a59dc05458e2c520021691254a806a47758\"\u003e\u003ccode\u003ef0352a5\u003c/code\u003e\u003c/a\u003e Add more tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fxamacker/cbor/commit/0c20a0f03f502d1fc447cfa341e3f1d65f3c7ee7\"\u003e\u003ccode\u003e0c20a0f\u003c/code\u003e\u003c/a\u003e Refactor encoding of indefinite-length data item\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/fxamacker/cbor/compare/v2.9.0...v2.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v6` from 6.0.0-20260305211659-2083cf940afa to 6.0.0-alpha.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v6's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev6.0.0-alpha.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport, add git-upload-archive support by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1986\"\u003ego-git/go-git#1986\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eutils: sync, Make zlib compression pluggable via x/plugin by \u003ca href=\"https://github.com/stiak\"\u003e\u003ccode\u003e@​stiak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2012\"\u003ego-git/go-git#2012\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: establish DCO sign-off requirement for all contributions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1914\"\u003ego-git/go-git#1914\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update \u003ccode\u003eCONTRIBUTING.md\u003c/code\u003e, \u003ccode\u003eREADME.md\u003c/code\u003e and add \u003ccode\u003eHISTORY.md\u003c/code\u003e by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1946\"\u003ego-git/go-git#1946\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, close packfile iterators after use by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2027\"\u003ego-git/go-git#2027\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd .github/copilot-instructions.md with PR review guidelines by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2040\"\u003ego-git/go-git#2040\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: update comment to reflect support for the last 2 stable Go versions by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2041\"\u003ego-git/go-git#2041\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e*: clone, resolve relative local URLs against CWD in CloneOptions.Validate by \u003ca href=\"https://github.com/AriehSchneier\"\u003e\u003ccode\u003e@​AriehSchneier\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1891\"\u003ego-git/go-git#1891\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSHA256: Support submodules in SHA256 repositories by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1979\"\u003ego-git/go-git#1979\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: ssh, fix concurrent test failures due to cert key generation by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2043\"\u003ego-git/go-git#2043\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, dedupe object iteration by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2042\"\u003ego-git/go-git#2042\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git-fixtures/v6 to v6.0.0-20260422085740-0c07409f52ec (main) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2045\"\u003ego-git/go-git#2045\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement Git-compatible wildmatch for gitignore patterns by \u003ca href=\"https://github.com/AriehSchneier\"\u003e\u003ccode\u003e@​AriehSchneier\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1940\"\u003ego-git/go-git#1940\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, fix treeContainsDirs test to build a new tree for each… by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2047\"\u003ego-git/go-git#2047\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e_examples: remove deprecated usage of io/ioutil by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2046\"\u003ego-git/go-git#2046\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: transport/upload_pack multi round bugs by \u003ca href=\"https://github.com/manland\"\u003e\u003ccode\u003e@​manland\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2016\"\u003ego-git/go-git#2016\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: filemode, fix typo in comment by \u003ca href=\"https://github.com/shawntoffel\"\u003e\u003ccode\u003e@​shawntoffel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2003\"\u003ego-git/go-git#2003\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-billy/v6 to v6.0.0-20260424211911-732291493fb8 (main) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2051\"\u003ego-git/go-git#2051\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: packp, refactor AdvRefs and capability packages by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1987\"\u003ego-git/go-git#1987\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eworktree: skip ignored directories during Status walk by \u003ca href=\"https://github.com/Soph\"\u003e\u003ccode\u003e@​Soph\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2048\"\u003ego-git/go-git#2048\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/pjbgf/sha1cd to v0.6.0 (main) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2059\"\u003ego-git/go-git#2059\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einternal: servers, add git server implementation by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2014\"\u003ego-git/go-git#2014\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove use of \u003ccode\u003eChrootOS\u003c/code\u003e by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2061\"\u003ego-git/go-git#2061\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: transport, Align flush size with upstream git by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2000\"\u003ego-git/go-git#2000\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003einternal: git, add server timeout test small tolerance by \u003ca href=\"https://github.com/aymanbagabas\"\u003e\u003ccode\u003e@​aymanbagabas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2064\"\u003ego-git/go-git#2064\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAlign object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2066\"\u003ego-git/go-git#2066\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2040\"\u003ego-git/go-git#2040\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/shawntoffel\"\u003e\u003ccode\u003e@​shawntoffel\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2003\"\u003ego-git/go-git#2003\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v6.0.0-alpha.2...v6.0.0-alpha.3\"\u003ehttps://github.com/go-git/go-git/compare/v6.0.0-alpha.2...v6.0.0-alpha.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev6.0.0-alpha.2\u003c/h2\u003e\n\u003ch2\u003e🚀 Release Summary\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e⚠️ \u003cstrong\u003ev6 Alpha Release\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eThis is an \u003cstrong\u003ealpha release of go-git v6\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eWe encourage users to \u003cstrong\u003etest this version in real-world scenarios\u003c/strong\u003e and help us validate the new transport layer and features.\u003c/p\u003e\n\u003cp\u003e👉 Please report any issues, bugs, or unexpected behavior via \u003ca href=\"https://github.com/go-git/go-git/issues/new?template=bug-report.yml\"\u003eGitHub issues\u003c/a\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release brings major improvements across transport, performance, and Git feature support, along with significant internal modernization.\u003c/p\u003e\n\u003ch3\u003e🚀 Highlights\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eMajor refactor of the plumbing/transport API with a new design, improving extensibility and aligning behaviour more closely with upstream Git.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/go-git/go-git/commits/v6.0.0-alpha.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-sql-driver/mysql` from 1.9.3 to 1.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-sql-driver/mysql/releases\"\u003egithub.com/go-sql-driver/mysql's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eadd Go 1.24 to the test matrix by \u003ca href=\"https://github.com/shogo82148\"\u003e\u003ccode\u003e@​shogo82148\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1681\"\u003ego-sql-driver/mysql#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emodernize for Go 1.22 by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1695\"\u003ego-sql-driver/mysql#1695\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest stability improvement. by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1698\"\u003ego-sql-driver/mysql#1698\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esimplify collation tests by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1700\"\u003ego-sql-driver/mysql#1700\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix bigint unsigned null column scan to err type int64 by \u003ca href=\"https://github.com/elonnzhang\"\u003e\u003ccode\u003e@​elonnzhang\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1612\"\u003ego-sql-driver/mysql#1612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eTransaction Commit/Rollback returns conn's cached error, if present by \u003ca href=\"https://github.com/brad-defined\"\u003e\u003ccode\u003e@​brad-defined\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1691\"\u003ego-sql-driver/mysql#1691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd BenchmarkReceive10kRowsCompress by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1704\"\u003ego-sql-driver/mysql#1704\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eoptimize readPacket by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1705\"\u003ego-sql-driver/mysql#1705\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMariaDB Metadata skipping and DEPRECATE_EOF by \u003ca href=\"https://github.com/rusher\"\u003e\u003ccode\u003e@​rusher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1708\"\u003ego-sql-driver/mysql#1708\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimization: statements reuse previous column name by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1711\"\u003ego-sql-driver/mysql#1711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate outdated MySQL internals documentation links by \u003ca href=\"https://github.com/demouth\"\u003e\u003ccode\u003e@​demouth\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1714\"\u003ego-sql-driver/mysql#1714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix PING on compressed connections by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1721\"\u003ego-sql-driver/mysql#1721\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd DeepWiki badge by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1722\"\u003ego-sql-driver/mysql#1722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate edwards25519 dependency to v1.1.1 by \u003ca href=\"https://github.com/williamhaw\"\u003e\u003ccode\u003e@​williamhaw\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1749\"\u003ego-sql-driver/mysql#1749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConfigure Dependabot for Go modules by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1755\"\u003ego-sql-driver/mysql#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump dominikh/staticcheck-action from 1.3.1 to 1.4.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1759\"\u003ego-sql-driver/mysql#1759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump github/codeql-action from 3 to 4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1760\"\u003ego-sql-driver/mysql#1760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1757\"\u003ego-sql-driver/mysql#1757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix staticcheck error by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1761\"\u003ego-sql-driver/mysql#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1758\"\u003ego-sql-driver/mysql#1758\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix getSystemVar buffer reuse by \u003ca href=\"https://github.com/morgo\"\u003e\u003ccode\u003e@​morgo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1754\"\u003ego-sql-driver/mysql#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eConsolidate Dependabot update noise by grouping weekly dependency PRs by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1762\"\u003ego-sql-driver/mysql#1762\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump filippo.io/edwards25519 from 1.1.1 to 1.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1756\"\u003ego-sql-driver/mysql#1756\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: Update GitHub Actions Go matrix to 1.24–1.26 by \u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1763\"\u003ego-sql-driver/mysql#1763\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance interpolateParams to correctly handle placeholders by \u003ca href=\"https://github.com/rusher\"\u003e\u003ccode\u003e@​rusher\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1732\"\u003ego-sql-driver/mysql#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emodernize by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1764\"\u003ego-sql-driver/mysql#1764\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erelease v1.10.0 by \u003ca href=\"https://github.com/methane\"\u003e\u003ccode\u003e@​methane\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1765\"\u003ego-sql-driver/mysql#1765\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elonnzhang\"\u003e\u003ccode\u003e@​elonnzhang\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1612\"\u003ego-sql-driver/mysql#1612\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/brad-defined\"\u003e\u003ccode\u003e@​brad-defined\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1691\"\u003ego-sql-driver/mysql#1691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rusher\"\u003e\u003ccode\u003e@​rusher\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1708\"\u003ego-sql-driver/mysql#1708\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/demouth\"\u003e\u003ccode\u003e@​demouth\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1714\"\u003ego-sql-driver/mysql#1714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/williamhaw\"\u003e\u003ccode\u003e@​williamhaw\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1749\"\u003ego-sql-driver/mysql#1749\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1759\"\u003ego-sql-driver/mysql#1759\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/morgo\"\u003e\u003ccode\u003e@​morgo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1754\"\u003ego-sql-driver/mysql#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Copilot\"\u003e\u003ccode\u003e@​Copilot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/pull/1762\"\u003ego-sql-driver/mysql#1762\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-sql-driver/mysql/compare/v1.9.2...v1.10.0\"\u003ehttps://github.com/go-sql-driver/mysql/compare/v1.9.2...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-sql-driver/mysql/blob/master/CHANGELOG.md\"\u003egithub.com/go-sql-driver/mysql's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.0 (2026-04-28)\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003eFix \u003ccode\u003egetSystemVar(\u0026quot;max_allowed_packet\u0026quot;)\u003c/code\u003e potentially returned wrong value. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1754\"\u003e#1754\u003c/a\u003e)\nThis affects only when \u003ccode\u003emaxAllowedPacket=0\u003c/code\u003e is set.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eBump filippo.io/edwards25519 from 1.1.1 to 1.2.0. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1756\"\u003e#1756\u003c/a\u003e)\nWhile older versions have reported CVEs, they do not affect go-mysql.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eUpdate Go versions to 1.24-1.26. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eEnhance interpolateParams to correctly handle placeholders. (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1732\"\u003e#1732\u003c/a\u003e)\nThe question mark (?) within strings and comments will no longer be treated as a placeholder.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/a065b60ab6d0c8e15468e7709c7f76acf4431647\"\u003e\u003ccode\u003ea065b60\u003c/code\u003e\u003c/a\u003e release v1.10.0 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1765\"\u003e#1765\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/09e4187be9c52bb13449a662d2a36e1e1789ac95\"\u003e\u003ccode\u003e09e4187\u003c/code\u003e\u003c/a\u003e modernize (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1764\"\u003e#1764\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/6c44a9a0a1769e145dc91c08abe1aded2936ab63\"\u003e\u003ccode\u003e6c44a9a\u003c/code\u003e\u003c/a\u003e Enhance interpolateParams to correctly handle placeholders (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1732\"\u003e#1732\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/688ce563a28598a9b733e6fc2b325050a4dcf261\"\u003e\u003ccode\u003e688ce56\u003c/code\u003e\u003c/a\u003e Update supported Go version to 1.24–1.26 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1763\"\u003e#1763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/118d07fdb51f9e523ebcdb00628812e49d7c1881\"\u003e\u003ccode\u003e118d07f\u003c/code\u003e\u003c/a\u003e Bump filippo.io/edwards25519 from 1.1.1 to 1.2.0 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1756\"\u003e#1756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/d6b2d3ee2cc8569b6778a7ae7ac2816e185f616b\"\u003e\u003ccode\u003ed6b2d3e\u003c/code\u003e\u003c/a\u003e Consolidate Dependabot update noise by grouping weekly dependency PRs (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1762\"\u003e#1762\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/037dfd872a7b6c88e63c53f32700dffed560120c\"\u003e\u003ccode\u003e037dfd8\u003c/code\u003e\u003c/a\u003e Fix getSystemVar buffer reuse (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1754\"\u003e#1754\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/900f33035615559b6188e4fa98d57ae20af2b73b\"\u003e\u003ccode\u003e900f330\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 6 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1758\"\u003e#1758\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/ab9e3804c604d6a60b0d3136f4654f81f184757d\"\u003e\u003ccode\u003eab9e380\u003c/code\u003e\u003c/a\u003e fix staticcheck error (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1761\"\u003e#1761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-sql-driver/mysql/commit/f298c66742396b6921732744b9bb075c7faaca81\"\u003e\u003ccode\u003ef298c66\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-sql-driver/mysql/issues/1757\"\u003e#1757\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-sql-driver/mysql/compare/v1.9.3...v1.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/google/cel-go` from 0.27.0 to 0.28.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/google/cel-go/releases\"\u003egithub.com/google/cel-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v0.28.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload by \u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport shorthand types in env yaml and REPL  by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1301\"\u003egoogle/cel-go#1301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreserve operation interrupted in ContextEval error by \u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse shorthand type specifiers in env yaml files by \u003ca href=\"https://github.com/jnthntatum\"\u003e\u003ccode\u003e@​jnthntatum\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1305\"\u003egoogle/cel-go#1305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCost estimation and tracking for strings extension by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1307\"\u003egoogle/cel-go#1307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate repl type string for doubles by \u003ca href=\"https://github.com/TristonianJones\"\u003e\u003ccode\u003e@​TristonianJones\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1308\"\u003egoogle/cel-go#1308\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alexsnaps\"\u003e\u003ccode\u003e@​alexsnaps\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1300\"\u003egoogle/cel-go#1300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dims\"\u003e\u003ccode\u003e@​dims\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1303\"\u003egoogle/cel-go#1303\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/google/cel-go/compare/v0.28.0...v0.28.1\"\u003ehttps://github.com/google/cel-go/compare/v0.28.0...v0.28.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eRelease v0.28.0\u003c/h2\u003e\n\u003ch2\u003eHigh-Level Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eEnhanced JSON Interoperability:\u003c/strong\u003e New support for JSON names across the checker, AST, and runtime allows for more seamless data handling when working with JSON-native structures.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eImproved Developer Tooling:\u003c/strong\u003e Integration is now smoother thanks to new utilities for converting Go errors into \u003ccode\u003ecel.Issues\u003c/code\u003e and more descriptive, context-aware error messages.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eGreater Environment Flexibility:\u003c/strong\u003e You can now redeclare variables as constants and export parse limit options, providing finer control over how CEL environments are configured and constrained.\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eNative Struct Improvements:\u003c/strong\u003e Support for mixing CEL and native values within native structs simplifies the handling of complex, hybrid data types.\u003c/li\u003e\n\u003c/ul\u003e\n\u003chr /\u003e\n\u003ch2\u003e🚀 Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd helper method to check whether a function has a singleton binding in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1266\"\u003egoogle/cel-go#1266\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHelper utility for converting a Go error into \u003ccode\u003ecel.Issues\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1267\"\u003egoogle/cel-go#1267\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePolicy API improvements in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1268\"\u003egoogle/cel-go#1268\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCEL Test usability requirements in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1269\"\u003egoogle/cel-go#1269\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBetter context-related error messages in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1271\"\u003egoogle/cel-go#1271\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSort \u003ccode\u003eenv.Config\u003c/code\u003e values where reasonable in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1273\"\u003egoogle/cel-go#1273\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport redeclaring variables as constants in \u003ccode\u003eNewEnv\u003c/code\u003e in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1275\"\u003egoogle/cel-go#1275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd support for exporting parse limit options in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1277\"\u003egoogle/cel-go#1277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport mixing CEL values and native values in native structs in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1270\"\u003egoogle/cel-go#1270\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd checker, AST, and type-provider support for JSON names in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1283\"\u003egoogle/cel-go#1283\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJSON field names runtime support in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1286\"\u003egoogle/cel-go#1286\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptionally include reachable fieldpaths in prompt in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1285\"\u003egoogle/cel-go#1285\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREPL -- cel-spec pb2 and json name support \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1294\"\u003egoogle/cel-go#1294\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e🐞 Bug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFix support for config-based type references in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1265\"\u003egoogle/cel-go#1265\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCheck arg kinds in \u003ccode\u003eoptional.or\u003c/code\u003e and \u003ccode\u003e.orValue\u003c/code\u003e impl in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1276\"\u003egoogle/cel-go#1276\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBazel fixes for import in \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1278\"\u003egoogle/cel-go#1278\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport zero-value literals in presence test inlining \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1280\"\u003egoogle/cel-go#1280\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCache concatList.Size() to prevent O(N^2) evaluation time \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1291\"\u003egoogle/cel-go#1291\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreserve runtime error node IDs from Resolve  \u003ca href=\"https://redirect.github.com/google/cel-go/pull/1290\"\u003egoogle/cel-go#1290\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/a82c68b770ac0cb67f7b4f76166827c14b145eb8\"\u003e\u003ccode\u003ea82c68b\u003c/code\u003e\u003c/a\u003e Update repl type assessment for doubles (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1308\"\u003e#1308\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/c9d70486a872fbfaf9c4cb383a005de56e499368\"\u003e\u003ccode\u003ec9d7048\u003c/code\u003e\u003c/a\u003e Cost estimation and tracking for strings extension (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1307\"\u003e#1307\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/646cdc1728643aec9499e3a00236ef1007a5d3fa\"\u003e\u003ccode\u003e646cdc1\u003c/code\u003e\u003c/a\u003e Use shorthand type specifiers in env yaml files (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1305\"\u003e#1305\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/7263793b453228e8a47ca742afd124b3eaa8fc68\"\u003e\u003ccode\u003e7263793\u003c/code\u003e\u003c/a\u003e Preserve operation interrupted in ContextEval error (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1303\"\u003e#1303\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/b826162b7b6ac7ae048fbf23b6123ab5c99da11b\"\u003e\u003ccode\u003eb826162\u003c/code\u003e\u003c/a\u003e Support shorthand types in env yaml and REPL  (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1301\"\u003e#1301\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/339269b44af7c3cd477b55530e9cc1fe534c7f09\"\u003e\u003ccode\u003e339269b\u003c/code\u003e\u003c/a\u003e fix: deleted \u003ccode\u003eIntToDuration\u003c/code\u003e overload (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1300\"\u003e#1300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/6b8f6d621e464429f39c01140d7f60a467eef5ae\"\u003e\u003ccode\u003e6b8f6d6\u003c/code\u003e\u003c/a\u003e fix: cap format string precision to prevent memory exhaustion (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1292\"\u003e#1292\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/d94297040dbac661d5b2b7fae1e57f04ed927c98\"\u003e\u003ccode\u003ed942970\u003c/code\u003e\u003c/a\u003e Default enable identifier escaping with backticks (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1295\"\u003e#1295\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/7114ed27a63255f33c689fbff0ee8a08298f70ab\"\u003e\u003ccode\u003e7114ed2\u003c/code\u003e\u003c/a\u003e Preserve runtime error node IDs from Resolve (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1290\"\u003e#1290\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/google/cel-go/commit/d91350b89e575180ed2bb0feb896c33cb118add0\"\u003e\u003ccode\u003ed91350b\u003c/code\u003e\u003c/a\u003e fix: cache concatList.Size() to prevent O(N^2) evaluation time (\u003ca href=\"https://redirect.github.com/google/cel-go/issues/1291\"\u003e#1291\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/google/cel-go/compare/v0.27.0...v0.28.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.8.0 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad...\n\n_Description has been truncated_","html_url":"https://github.com/kunish/wheel/pull/120","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/kunish%2Fwheel/issues/120","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/120/packages"}},{"old_version":"5.5.4","new_version":"5.9.2","update_type":"minor","path":null,"pr_created_at":"2026-05-13T20:14:24.000Z","version_change":"5.5.4 → 5.9.2","issue":{"uuid":"4440876256","node_id":"PR_kwDOLzaLX87bRO1c","number":1,"state":"closed","title":"Bump the go_modules group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-05-30T11:57:45.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T20:14:24.000Z","updated_at":"2026-05-30T11:57:47.000Z","time_to_close":1439001,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":8,"packages":[{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.24.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"google.golang.org/grpc","old_version":"1.62.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/containerd/containerd","old_version":"1.7.12","new_version":"1.7.29","repository_url":"https://github.com/containerd/containerd"},{"name":"github.com/dvsekhvalnov/jose2go","old_version":"1.5.0","new_version":"1.7.0","repository_url":"https://github.com/dvsekhvalnov/jose2go"},{"name":"github.com/jackc/pgx/v5","old_version":"5.5.4","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 5 updates in the /go directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.24.0` | `1.43.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.62.1` | `1.79.3` |\n| [github.com/containerd/containerd](https://github.com/containerd/containerd) | `1.7.12` | `1.7.29` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.5.0` | `1.7.0` |\n| [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) | `5.5.4` | `5.9.2` |\n\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.24.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.24.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.62.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.62.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/containerd/containerd` from 1.7.12 to 1.7.29\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/containerd/containerd/releases\"\u003egithub.com/containerd/containerd's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003econtainerd 1.7.29\u003c/h2\u003e\n\u003cp\u003eWelcome to the v1.7.29 release of containerd!\u003c/p\u003e\n\u003cp\u003eThe twenty-ninth patch release for containerd 1.7 contains various fixes\nand updates including security patches.\u003c/p\u003e\n\u003ch3\u003eSecurity Updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003econtainerd\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/security/advisories/GHSA-pwhc-rpq9-4c8w\"\u003e\u003cstrong\u003eGHSA-pwhc-rpq9-4c8w\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/security/advisories/GHSA-m6hq-p25p-ffr2\"\u003e\u003cstrong\u003eGHSA-m6hq-p25p-ffr2\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003cstrong\u003erunc\u003c/strong\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003e\u003cstrong\u003eGHSA-qw9x-cqr3-wc7r\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003e\u003cstrong\u003eGHSA-cgrx-mc8f-2prm\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003e\u003cstrong\u003eGHSA-9493-h29p-rfm2\u003c/strong\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eHighlights\u003c/h3\u003e\n\u003ch4\u003eImage Distribution\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate differ to handle zstd media types\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12018\"\u003e#12018\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch4\u003eRuntime\u003c/h4\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003eUpdate runc binary to v1.3.3\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12480\"\u003e#12480\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003cstrong\u003eFix lost container logs from quickly closing io\u003c/strong\u003e (\u003ca href=\"https://redirect.github.com/containerd/containerd/pull/12375\"\u003e#12375\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003ePlease try out the release binaries and report any issues at\n\u003ca href=\"https://github.com/containerd/containerd/issues\"\u003ehttps://github.com/containerd/containerd/issues\u003c/a\u003e.\u003c/p\u003e\n\u003ch3\u003eContributors\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDerek McGowan\u003c/li\u003e\n\u003cli\u003eAkihiro Suda\u003c/li\u003e\n\u003cli\u003ePhil Estes\u003c/li\u003e\n\u003cli\u003eAustin Vazquez\u003c/li\u003e\n\u003cli\u003eSebastiaan van Stijn\u003c/li\u003e\n\u003cli\u003eningmingxiao\u003c/li\u003e\n\u003cli\u003eMaksym Pavlenko\u003c/li\u003e\n\u003cli\u003eStepSecurity Bot\u003c/li\u003e\n\u003cli\u003ewheat2018\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanges\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/442cb34bda9a6a0fed82a2ca7cade05c5c749582\"\u003e\u003ccode\u003e442cb34bd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/0450f046e6942e513d0ebf1ef5c2aff13daa187f\"\u003e\u003ccode\u003e0450f046e\u003c/code\u003e\u003c/a\u003e Fix directory permissions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e5cb6ddb7a7730c24253a94d7fdb6bbe13dba6f7\"\u003e\u003ccode\u003ee5cb6ddb7\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/442cb34bda9a6a0fed82a2ca7cade05c5c749582\"\u003e\u003ccode\u003e442cb34\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/e5cb6ddb7a7730c24253a94d7fdb6bbe13dba6f7\"\u003e\u003ccode\u003ee5cb6dd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/9772966401ad3c33a6cd824632f0c61e5049f3a5\"\u003e\u003ccode\u003e9772966\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12486\"\u003e#12486\u003c/a\u003e from dmcgowan/prepare-v1.7.29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/1fc2daaf3ed53f4c9e76fbc5786a6f1ae3bb885f\"\u003e\u003ccode\u003e1fc2daa\u003c/code\u003e\u003c/a\u003e Prepare release notes for v1.7.29\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/93f710a528958474f95a95e54516624ef832d80f\"\u003e\u003ccode\u003e93f710a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12480\"\u003e#12480\u003c/a\u003e from k8s-infra-cherrypick-robot/cherry-pick-12475-t...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/68d04befab3284f1dfe2a9f5691ea5da76daace7\"\u003e\u003ccode\u003e68d04be\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/containerd/containerd/issues/12471\"\u003e#12471\u003c/a\u003e from austinvazquez/1_7_update_ci_go_and_images\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/3f5f9f872707a743563d316e85e530193a2e30ac\"\u003e\u003ccode\u003e3f5f9f8\u003c/code\u003e\u003c/a\u003e runc: Update runc binary to v1.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/667409fb63098cb80280940ab06038114e7712da\"\u003e\u003ccode\u003e667409f\u003c/code\u003e\u003c/a\u003e ci: bump Go 1.24.9, 1.25.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/294f8c027b607c4450b3e52f44280581a737a73f\"\u003e\u003ccode\u003e294f8c0\u003c/code\u003e\u003c/a\u003e Update GHA runners to use latest images for basic binaries build\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/containerd/containerd/commit/cf66b4141defb757dee0fc5653bfd0a7ba1e8fed\"\u003e\u003ccode\u003ecf66b41\u003c/code\u003e\u003c/a\u003e Update GHA runners to use latest image for most jobs\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/containerd/containerd/compare/v1.7.12...v1.7.29\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/dvsekhvalnov/jose2go` from 1.5.0 to 1.7.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/0a0673dd7f2820a446de5b04b9094b2291d77d5d\"\u003e\u003ccode\u003e0a0673d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/34\"\u003e#34\u003c/a\u003e from dvsekhvalnov/issue-33-deflate-limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c3fff7c58065c848ba063d5cee07bd2c5908a14f\"\u003e\u003ccode\u003ec3fff7c\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/e51b47f33c704a31f1f7ad75120759e01de5fb4c\"\u003e\u003ccode\u003ee51b47f\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c7dde528a01b38c96652b99a5d2ed93d8932b39e\"\u003e\u003ccode\u003ec7dde52\u003c/code\u003e\u003c/a\u003e fixing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/a194baa4bb649000dd2266218155727c27297341\"\u003e\u003ccode\u003ea194baa\u003c/code\u003e\u003c/a\u003e added go versions and OSs to matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/f31cfc6b273af924c90bd5305b92ff5f9af10763\"\u003e\u003ccode\u003ef31cfc6\u003c/code\u003e\u003c/a\u003e fixing yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/1a4ba55b88b757ed4533884a014531d3f421462b\"\u003e\u003ccode\u003e1a4ba55\u003c/code\u003e\u003c/a\u003e added matrix to workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/d2baff2f0b24baab11bd34b8268c9aabfeb31914\"\u003e\u003ccode\u003ed2baff2\u003c/code\u003e\u003c/a\u003e go workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/b14c81a7a3261666e4ec76f04438f79d70211272\"\u003e\u003ccode\u003eb14c81a\u003c/code\u003e\u003c/a\u003e added limitation for deflate decompression stream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/48ba0b76bc881767cff2723388f4dd1a47c5104a\"\u003e\u003ccode\u003e48ba0b7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/32\"\u003e#32\u003c/a\u003e from dvsekhvalnov/issue-31-security-tuning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dvsekhvalnov/jose2go/compare/v1.5...v1.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/jackc/pgx/v5` from 5.5.4 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.5.4...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.21.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.21.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.22.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/35e1306bddd863f360fb94480c5fed84229953f0\"\u003e\u003ccode\u003e35e1306\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/7c360367ab7e57c0cfb7aef368fc6acefaaac3b1\"\u003e\u003ccode\u003e7c36036\u003c/code\u003e\u003c/a\u003e http2, webdav, websocket: fix %q verb uses with wrong type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ec11eccf5a0f725281df0cdf40bb7ebef51d57ea\"\u003e\u003ccode\u003eec11ecc\u003c/code\u003e\u003c/a\u003e trace: fix data race in RenderEvents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/bff14c52567061031b9761881907c39e24792736\"\u003e\u003ccode\u003ebff14c5\u003c/code\u003e\u003c/a\u003e http2: don't PING a responsive server when resetting a stream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/88a642172c174ab11f4c56f0ede777de3c8a21d4\"\u003e\u003ccode\u003e88a6421\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: avoid use of \u0026quot;strings\u0026quot; and \u0026quot;math\u0026quot; in dns/dnsmessage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/123d099e1bd872b38247bbcf9856540b8420d18d\"\u003e\u003ccode\u003e123d099\u003c/code\u003e\u003c/a\u003e http2: support net/http.Transport.NewClientConn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/346cc6157ee53301dea14e57a45c22368ab46e55\"\u003e\u003ccode\u003e346cc61\u003c/code\u003e\u003c/a\u003e webdav: relax test to check for any redirect status, not just 301\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.22.0...v0.48.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.16.0 to 0.34.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/acc38155b7f6f36aefcb58faff6f36d314dd915c\"\u003e\u003ccode\u003eacc3815\u003c/code\u003e\u003c/a\u003e endpoints: fix %q verb use with wrong type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/f28b0b5467dda26d56f1240381158f7c334654d1\"\u003e\u003ccode\u003ef28b0b5\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/fd15e0fe894866ebff17ca3503d3706a967b061a\"\u003e\u003ccode\u003efd15e0f\u003c/code\u003e\u003c/a\u003e x/oauth2: populate RetrieveError from DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/792c8776358f0c8689d84eef0d0c966937d560fb\"\u003e\u003ccode\u003e792c877\u003c/code\u003e\u003c/a\u003e oauth2: use strings.Builder instead of bytes.Buffer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/014cf778b444f29c82ececa4f3ec1f6fe3db3eaf\"\u003e\u003ccode\u003e014cf77\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.24.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3c76ce5d23d0d48721316e7631625ce32afaa14b\"\u003e\u003ccode\u003e3c76ce5\u003c/code\u003e\u003c/a\u003e endpoints: correct Naver OAuth2 endpoint URLs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/cf1431934151b3a93e0b3286eb6798ca08ea3770\"\u003e\u003ccode\u003ecf14319\u003c/code\u003e\u003c/a\u003e oauth2: fix expiration time window check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/32d34ef364e670a650fe59267b92301ff7ed08f1\"\u003e\u003ccode\u003e32d34ef\u003c/code\u003e\u003c/a\u003e internal: include clientID in auth style cache key\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/2d34e3091be3f4b4700842fb663dad98a10ddfb6\"\u003e\u003ccode\u003e2d34e30\u003c/code\u003e\u003c/a\u003e oauth2: replace a magic number with AuthStyleUnknown\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/696f7b31289a98558822be146698b7834e477e63\"\u003e\u003ccode\u003e696f7b3\u003c/code\u003e\u003c/a\u003e all: modernize with doc links and any\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.16.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/HarleyCoops/chroma/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/HarleyCoops/chroma/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/HarleyCoops%2Fchroma/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"5.7.2","new_version":"5.9.2","update_type":"minor","path":"/api in the jackc group","pr_created_at":"2026-05-13T12:56:39.000Z","version_change":"5.7.2 → 5.9.2","issue":{"uuid":"4438043620","node_id":"PR_kwDOMbqhdM7bH6Lu","number":18,"state":"open","title":"chore(deps)(deps): bump github.com/jackc/pgx/v5 from 5.7.2 to 5.9.2 in /api in the jackc group","user":"dependabot[bot]","labels":[],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-13T12:56:39.000Z","updated_at":"2026-05-13T12:56:40.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)(deps)","packages":[{"name":"github.com/jackc/pgx/v5","old_version":"5.7.2","new_version":"5.9.2","repository_url":"https://github.com/jackc/pgx"}],"path":"/api in the jackc group","ecosystem":"go"},"body":"Bumps the jackc group in /api with 1 update: [github.com/jackc/pgx/v5](https://github.com/jackc/pgx).\n\nUpdates `github.com/jackc/pgx/v5` from 5.7.2 to 5.9.2\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/jackc/pgx/blob/master/CHANGELOG.md\"\u003egithub.com/jackc/pgx/v5's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003e5.9.2 (April 18, 2026)\u003c/h1\u003e\n\u003cp\u003eFix SQL Injection via placeholder confusion with dollar quoted string literals (GHSA-j88v-2chj-qfwx)\u003c/p\u003e\n\u003cp\u003eSQL injection can occur when:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eThe non-default simple protocol is used.\u003c/li\u003e\n\u003cli\u003eA dollar quoted string literal is used in the SQL query.\u003c/li\u003e\n\u003cli\u003eThat query contains text that would be would be interpreted outside as a placeholder outside of a string literal.\u003c/li\u003e\n\u003cli\u003eThe value of that placeholder is controllable by the attacker.\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003ee.g.\u003c/p\u003e\n\u003cpre lang=\"go\"\u003e\u003ccode\u003eattackValue := `$tag$; drop table canary; --`\n_, err = tx.Exec(ctx, `select $tag$ $1 $tag$, $1`, pgx.QueryExecModeSimpleProtocol, attackValue)\n\u003c/code\u003e\u003c/pre\u003e\n\u003cp\u003eThis is unlikely to occur outside of a contrived scenario.\u003c/p\u003e\n\u003ch1\u003e5.9.1 (March 22, 2026)\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix: batch result format corruption when using cached prepared statements (reported by Dirkjan Bussink)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003e5.9.0 (March 21, 2026)\u003c/h1\u003e\n\u003cp\u003eThis release includes a number of new features such as SCRAM-SHA-256-PLUS support, OAuth authentication support, and\nPostgreSQL protocol 3.2 support.\u003c/p\u003e\n\u003cp\u003eIt significantly reduces the amount of network traffic when using prepared statements (which are used automatically by\ndefault) by avoiding unnecessary Describe Portal messages. This also reduces local memory usage.\u003c/p\u003e\n\u003cp\u003eIt also includes multiple fixes for potential DoS due to panic or OOM if connected to a malicious server that sends\ndeliberately malformed messages.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eRequire Go 1.25+\u003c/li\u003e\n\u003cli\u003eAdd SCRAM-SHA-256-PLUS support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eAdd OAuth authentication support for PostgreSQL 18 (David Schneider)\u003c/li\u003e\n\u003cli\u003eAdd PostgreSQL protocol 3.2 support (Dirkjan Bussink)\u003c/li\u003e\n\u003cli\u003eAdd tsvector type support (Adam Brightwell)\u003c/li\u003e\n\u003cli\u003eSkip Describe Portal for cached prepared statements reducing network round trips\u003c/li\u003e\n\u003cli\u003eMake LoadTypes query easier to support on \u0026quot;postgres-like\u0026quot; servers (Jelte Fennema-Nio)\u003c/li\u003e\n\u003cli\u003eDefault empty user to current OS user matching libpq behavior (ShivangSrivastava)\u003c/li\u003e\n\u003cli\u003eOptimize LRU statement cache with custom linked list and node pooling (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize date scanning by replacing regex with manual parsing (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eOptimize pgio append/set functions with direct byte shifts (Mathias Bogaert)\u003c/li\u003e\n\u003cli\u003eMake RowsAffected faster (Abhishek Chanda)\u003c/li\u003e\n\u003cli\u003eFix: Pipeline.Close panic when server sends multiple FATAL errors (Varun Chawla)\u003c/li\u003e\n\u003cli\u003eFix: ContextWatcher goroutine leak (Hank Donnay)\u003c/li\u003e\n\u003cli\u003eFix: stdlib discard connections with open transactions in ResetSession (Jeremy Schneider)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/0aeabbcf11d859229c1f0b20e710d3596c76bf27\"\u003e\u003ccode\u003e0aeabbc\u003c/code\u003e\u003c/a\u003e Release v5.9.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/60644f84918a8af66d14a4b0d865d4edafd955da\"\u003e\u003ccode\u003e60644f8\u003c/code\u003e\u003c/a\u003e Fix SQL sanitizer bugs with dollar-quoted strings and placeholder overflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/a5680bc945aa7c6ebac2778d859ee7b4ba86db60\"\u003e\u003ccode\u003ea5680bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2531\"\u003e#2531\u003c/a\u003e from dolmen-go/godoc-add-links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/e34e4524007062710c6a4fb9c8655b75a486b5cd\"\u003e\u003ccode\u003ee34e452\u003c/code\u003e\u003c/a\u003e doc: Add godoc links\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/08c9bb1f0d8fa6cc10ed8c713e68b1baa64dfe2c\"\u003e\u003ccode\u003e08c9bb1\u003c/code\u003e\u003c/a\u003e Fix Stringer types encoded as text instead of numeric value in composite fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/96b4dbdfd0458cb425bf8454d292a23978872cc8\"\u003e\u003ccode\u003e96b4dbd\u003c/code\u003e\u003c/a\u003e Remove unstable test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/acf88e0065682e8948696d26fa6438669c4cabee\"\u003e\u003ccode\u003eacf88e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/jackc/pgx/issues/2526\"\u003e#2526\u003c/a\u003e from abrightwell/abrightwell-min-proto\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/2f81f1fc03bef99593e92c64ad9cac954c00e8e6\"\u003e\u003ccode\u003e2f81f1f\u003c/code\u003e\u003c/a\u003e Update \u003ccode\u003emax_protocol_version\u003c/code\u003e and \u003ccode\u003emin_protocol_version\u003c/code\u003e defaults\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/4e4eaedb47b7b3cfba0a1b0a9e6a3f015764f046\"\u003e\u003ccode\u003e4e4eaed\u003c/code\u003e\u003c/a\u003e Release v5.9.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jackc/pgx/commit/62731882651a90348febb43b2119b5f8bd9272de\"\u003e\u003ccode\u003e6273188\u003c/code\u003e\u003c/a\u003e Fix batch result format corruption when using cached prepared statements\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/jackc/pgx/compare/v5.7.2...v5.9.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/jackc/pgx/v5\u0026package-manager=go_modules\u0026previous-version=5.7.2\u0026new-version=5.9.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\n\n\n\u003c/details\u003e","html_url":"https://github.com/alvaroofernaandez/freakfy/pull/18","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/alvaroofernaandez%2Ffreakfy/issues/18","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/18/packages"}}]}